RLSA-2024:10949

Security

Mirrored from RHSA-2024:10949

Issued at: 2024-12-19

Updated at: 2024-12-19

Synopsis

Moderate: php:8.2 security update

Description

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: host/secure cookie bypass due to partial CVE-2022-31629 fix (CVE-2024-2756)

* php: password_verify can erroneously return true, opening ATO risk (CVE-2024-3096)

* php: Filter bypass in filter_var (FILTER_VALIDATE_URL) (CVE-2024-5458)

* php: Erroneous parsing of multipart form data (CVE-2024-8925)

* php: cgi.force_redirect configuration is bypassable due to the environment variable collision (CVE-2024-8927)

* php: PHP-FPM Log Manipulation Vulnerability (CVE-2024-9026)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Affected products

Rocky Linux 9 aarch64

Rocky Linux 9 ppc64le

Rocky Linux 9 s390x

Rocky Linux 9 x86_64

Fixes

2275058

2275061

2291252

2317049

2317051

2317144

CVEs

CVE-2024-2756

CVE-2024-3096

CVE-2024-5458

CVE-2024-8925

CVE-2024-8927

CVE-2024-9026

Affected packages

Rocky Linux 9 x86_64 - AppStream

apcu-panel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.noarch.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-apcu-devel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.src.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.x86_64.rpm

php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.x86_64.rpm

php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.x86_64.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

php-pecl-zip-debugsource-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.x86_64.rpm

Rocky Linux 9 aarch64 - AppStream

apcu-panel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.noarch.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-apcu-devel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.aarch64.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.src.rpm

php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.aarch64.rpm

php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.aarch64.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

php-pecl-zip-debugsource-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.aarch64.rpm

Rocky Linux 9 s390x - AppStream

apcu-panel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.noarch.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-apcu-devel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.s390x.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.src.rpm

php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.s390x.rpm

php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.s390x.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

php-pecl-zip-debugsource-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.s390x.rpm

Rocky Linux 9 ppc64le - AppStream

apcu-panel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.noarch.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-apcu-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-apcu-devel-0:5.1.23-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.ppc64le.rpm

php-pecl-rrd-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.src.rpm

php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.ppc64le.rpm

php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.3.0+16050+d5cd6ed5.ppc64le.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-xdebug3-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-zip-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.src.rpm

php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm

php-pecl-zip-debugsource-0:1.22.3-1.module+el9.4.0+20013+b017aa8e.ppc64le.rpm