[Apollo] Advisories Statistics light light Login

RLSA-2026:1412

Security Mirrored from RHSA-2026:1412
Issued at: 2026-01-28
Updated at: 2026-01-28

Synopsis

Important: php:8.2 security update



Description

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: pgsql extension does not check for errors during escaping (CVE-2025-1735)

* php: NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix (CVE-2025-6491)

* php: PHP Hostname Null Character Vulnerability (CVE-2025-1220)

* php: heap-based buffer overflow in array_merge() (CVE-2025-14178)

* php: PHP: Information disclosure via getimagesize() function when reading multi-chunk images (CVE-2025-14177)

* php: PHP: Denial of Service via invalid character sequence in PDO PostgreSQL prepared statement (CVE-2025-14180)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2378689 2378690 2379792 2425625 2425626 2425627

CVEs

CVE-2025-1220 CVE-2025-14177 CVE-2025-14178 CVE-2025-14180 CVE-2025-1735 CVE-2025-6491

Affected packages

Rocky Linux 8 x86_64 - AppStream

apcu-panel-0:5.1.23-1.module+el8.10.0+1911+f499711e.noarch.rpm libzip-0:1.7.3-1.module+el8.10.0+1605+02e07af7.src.rpm libzip-0:1.7.3-1.module+el8.10.0+1596+477f03f8.src.rpm libzip-0:1.7.3-1.module+el8.10.0+1911+f499711e.src.rpm libzip-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm libzip-debuginfo-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-debuginfo-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm libzip-debugsource-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm libzip-debugsource-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-devel-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-devel-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm libzip-tools-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-tools-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm libzip-tools-debuginfo-0:1.7.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm libzip-tools-debuginfo-0:1.7.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-0:8.2.30-1.module+el8.10.0+40072+7124940c.src.rpm php-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-bcmath-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-bcmath-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-cli-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-cli-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-common-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-common-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-dba-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-dba-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-dbg-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-dbg-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-debugsource-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-devel-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-embedded-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-embedded-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-enchant-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-enchant-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-ffi-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-ffi-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-fpm-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-fpm-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-gd-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-gd-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-gmp-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-gmp-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-intl-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-intl-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-ldap-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-ldap-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-mbstring-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-mbstring-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-mysqlnd-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-mysqlnd-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-odbc-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-odbc-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-opcache-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-opcache-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-pdo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-pdo-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-pear-1:1.10.14-1.module+el8.10.0+1911+f499711e.noarch.rpm php-pear-1:1.10.14-1.module+el8.10.0+1596+477f03f8.src.rpm php-pear-1:1.10.14-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1605+02e07af7.src.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm php-pecl-rrd-debuginfo-0:2.0.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-1.module+el8.10.0+1605+02e07af7.x86_64.rpm php-pecl-rrd-debugsource-0:2.0.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1911+f499711e.src.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el8.10.0+1911+f499711e.x86_64.rpm php-pgsql-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-pgsql-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-process-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-process-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-snmp-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-snmp-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-soap-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-soap-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-xml-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm php-xml-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.x86_64.rpm

Rocky Linux 8 aarch64 - AppStream

apcu-panel-0:5.1.23-1.module+el8.10.0+1911+f499711e.noarch.rpm libzip-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm libzip-0:1.7.3-1.module+el8.10.0+1605+02e07af7.src.rpm libzip-0:1.7.3-1.module+el8.10.0+1911+f499711e.src.rpm libzip-0:1.7.3-1.module+el8.10.0+1596+477f03f8.src.rpm libzip-debuginfo-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-debuginfo-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm libzip-debugsource-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-debugsource-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm libzip-devel-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm libzip-devel-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-tools-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm libzip-tools-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-tools-debuginfo-0:1.7.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm libzip-tools-debuginfo-0:1.7.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-0:8.2.30-1.module+el8.10.0+40072+7124940c.src.rpm php-bcmath-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-bcmath-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-cli-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-cli-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-common-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-common-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-dba-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-dba-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-dbg-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-dbg-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-debugsource-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-devel-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-embedded-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-embedded-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-enchant-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-enchant-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-ffi-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-ffi-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-fpm-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-fpm-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-gd-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-gd-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-gmp-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-gmp-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-intl-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-intl-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-ldap-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-ldap-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-mbstring-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-mbstring-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-mysqlnd-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-mysqlnd-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-odbc-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-odbc-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-opcache-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-opcache-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-pdo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-pdo-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-pear-1:1.10.14-1.module+el8.10.0+1911+f499711e.noarch.rpm php-pear-1:1.10.14-1.module+el8.10.0+1911+f499711e.src.rpm php-pear-1:1.10.14-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-apcu-0:5.1.23-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-apcu-debuginfo-0:5.1.23-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-apcu-debugsource-0:5.1.23-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-apcu-devel-0:5.1.23-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1605+02e07af7.src.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-rrd-0:2.0.3-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-rrd-debuginfo-0:2.0.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-rrd-debuginfo-0:2.0.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-1.module+el8.10.0+1605+02e07af7.aarch64.rpm php-pecl-rrd-debugsource-0:2.0.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-xdebug3-0:3.2.2-2.module+el8.10.0+1911+f499711e.src.rpm php-pecl-xdebug3-debuginfo-0:3.2.2-2.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-xdebug3-debugsource-0:3.2.2-2.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1596+477f03f8.src.rpm php-pecl-zip-0:1.22.3-1.module+el8.10.0+1911+f499711e.src.rpm php-pecl-zip-debuginfo-0:1.22.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pecl-zip-debugsource-0:1.22.3-1.module+el8.10.0+1911+f499711e.aarch64.rpm php-pgsql-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-pgsql-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-process-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-process-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-snmp-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-snmp-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-soap-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-soap-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-xml-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm php-xml-debuginfo-0:8.2.30-1.module+el8.10.0+40072+7124940c.aarch64.rpm