[Apollo] Advisories Statistics light light Login

RLSA-2025:7418

Security Mirrored from RHSA-2025:7418
Issued at: 2025-07-29
Updated at: 2025-07-29

Synopsis

Important: php:8.3 security update



Description

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: Header parser of http stream wrapper does not handle folded headers (CVE-2025-1217)

* php: Stream HTTP wrapper header check might omit basic auth header (CVE-2025-1736)

* php: Streams HTTP wrapper does not fail for headers with invalid name and no colon (CVE-2025-1734)

* php: libxml streams use wrong content-type header when requesting a redirected resource (CVE-2025-1219)

* php: Stream HTTP wrapper truncates redirect location to 1024 bytes (CVE-2025-1861)

* php: Reference counting in php_request_shutdown causes Use-After-Free (CVE-2024-11235)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2355917 2356041 2356042 2356043 2356046 2357531

CVEs

CVE-2024-11235 CVE-2025-1217 CVE-2025-1219 CVE-2025-1734 CVE-2025-1736 CVE-2025-1861

Affected packages

Rocky Linux 9 x86_64 - AppStream

apcu-panel-0:5.1.23-1.module+el9.5.0+29598+58484504.noarch.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.x86_64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.5.0+29598+58484504.x86_64.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el9.5.0+29598+58484504.x86_64.rpm

Rocky Linux 9 aarch64 - AppStream

apcu-panel-0:5.1.23-1.module+el9.5.0+29598+58484504.noarch.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.aarch64.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.5.0+29598+58484504.aarch64.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el9.5.0+29598+58484504.aarch64.rpm

Rocky Linux 9 s390x - AppStream

apcu-panel-0:5.1.23-1.module+el9.5.0+29598+58484504.noarch.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.s390x.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.s390x.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.5.0+29598+58484504.s390x.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el9.5.0+29598+58484504.s390x.rpm

Rocky Linux 9 ppc64le - AppStream

apcu-panel-0:5.1.23-1.module+el9.5.0+29598+58484504.noarch.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-apcu-0:5.1.23-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.ppc64le.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+29598+58484504.src.rpm php-pecl-rrd-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.ppc64le.rpm php-pecl-rrd-debuginfo-0:2.0.3-4.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-rrd-debugsource-0:2.0.3-4.module+el9.5.0+31393+1f1dedb8.ppc64le.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-zip-0:1.22.3-1.module+el9.5.0+29598+58484504.src.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el9.5.0+29598+58484504.ppc64le.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el9.5.0+29598+58484504.ppc64le.rpm