MGASA-2022-0234

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2022-0234.html

Import Source

https://advisories.mageia.org/MGASA-2022-0234.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2022-0234

Related

Published

2022-06-18T21:30:41Z

Modified

2022-06-18T20:40:12Z

Summary

Updated php packages fix security vulnerability

Details

CLI -Fixed bug #8575 (CLI closes standard streams too early). Core -Fixed Haiku ZTS builds. Date -Fixed bug #8471 (Segmentation fault when converting immutable and mutable DateTime instances created using reflection). php-fpm - Fixed bug #72185 writes empty fcgi record causing nginx 502. Mysqlnd - Fixed bug #81719: mysqlnd/pdo password buffer overflow. (CVE-2022-31626) OPcache - Fixed bug #8466 (iniget() is optimized out when the option does not exist). Pcntl - Fixed Haiku build. Pgsql - Fixed bug #81720: Uninitialized array in pgqueryparams(). (CVE-2022-31625) Soap - Fixed bug #8578 (Error on wrong parameter on SoapHeader constructor). Fixed bug #8538 (SoapClient may strip parts of nmtokens). SPL - Fixed bug #8235 (iteratorcount() may run indefinitely). Zip - Fixed type for index in ZipArchive::replaceFile.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:8 / php

Package

Name: php
Purl: pkg:rpm/mageia/php?distro=mageia-8

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

8.0.20-3.mga8

Ecosystem specific

{
    "section": "core"
}