Lucene search
OracleLinuxELSA-2022-7628HistoryNov 15, 2022 - 12:00 a.m.
php:7.4 security, bug fix, and enhancement update
2022-11-1500:00:00
linux.oracle.com
19
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
libzip
[1.6.1-1]
- update to 1.6.1
- enable lzma support
php
[7.4.30-1] - rebase to 7.4.30 #2099615
[7.4.19-3] - fix password of excessive length triggers buffer overflow leading to RCE
CVE-2022-31626
[7.4.19-2] - fix SSRF bypass in FILTER_VALIDATE_URL
CVE-2021-21705 - fix Local privilege escalation via PHP-FPM
CVE-2021-21703
[7.4.19-1] - rebase to 7.4.19 #1944110
Related
nessus
nessus
CentOS 8 : php:7.4 (CESA-2022:7628)
2022-11-09 00:00:00
RHEL 8 : php:7.4 (RHSA-2022:7628)
2022-11-08 00:00:00
AlmaLinux 8 : php:7.4 (ALSA-2022:7628)
2022-11-14 00:00:00
almalinux
almalinux
Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: php:8.0 security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: php security, bug fix, and enhancement update
2022-11-15 00:00:00
osv
osv
Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 00:00:00
Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 06:25:00
php7.4 - security update
2022-02-18 00:00:00
rocky
rocky
php:7.4 security, bug fix, and enhancement update
2022-11-08 06:25:00
php security, bug fix, and enhancement update
2022-11-15 06:18:21
php:8.0 security, bug fix, and enhancement update
2022-11-08 06:24:57
redhat
redhat
(RHSA-2022:7628) Moderate: php:7.4 security, bug fix, and enhancement update
2022-11-08 06:25:00
(RHSA-2022:7624) Moderate: php:8.0 security, bug fix, and enhancement update
2022-11-08 06:24:57
(RHSA-2022:8197) Moderate: php security, bug fix, and enhancement update
2022-11-15 06:18:21
debian
debian
[SECURITY] [DSA 5082-1] php7.4 security update
2022-02-18 19:09:20
[SECURITY] [DLA 2721-1] drupal7 security update
2021-07-26 17:58:13
[SECURITY] [DLA 3243-1] php7.3 security update
2022-12-15 18:33:17
nextcloud
nextcloud
Nextcloud Server shipped insecure Archive_Tar version
2021-10-25 11:03:17
drupal
drupal
ubuntu
ubuntu
PEAR vulnerability
2021-07-29 00:00:00
PEAR vulnerability
2021-08-04 00:00:00
PHP vulnerability
2022-02-28 00:00:00
veracode
veracode
Directory Traversal
2021-07-22 08:18:53
Denial Of Service (DoS)
2022-02-18 16:08:38
XML External Entity (XXE)
2021-11-21 10:33:56
fedora
fedora
[SECURITY] Fedora 33 Update: php-pear-1.10.12-9.fc33
2021-07-30 01:00:46
[SECURITY] Fedora 34 Update: php-pear-1.10.12-9.fc34
2021-07-30 01:02:14
[SECURITY] Fedora 34 Update: php-7.4.28-1.fc34
2022-02-23 16:15:14
ibm
ibm
mageia
mageia
Updated php-pear packages fix security vulnerability
2021-08-06 12:33:48
Updated php packages fix security vulnerability
2021-11-20 22:31:06
prion
prion
Code injection
2021-11-29 07:15:00
Memory corruption
2022-02-27 08:15:00
Design/Logic Flaw
2021-07-30 14:15:00
f5
f5
K14492558 : PHP vulnerability CVE-2021-21708
2022-03-23 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-21708 affecting package php 7.4.14-3
2024-04-16 09:09:07
CVE-2021-21707 affecting package php 7.4.14-3
2024-04-16 09:09:07
altlinux
altlinux
Security fix for the ALT Linux 9 package php7 version 7.3.33-alt1
2021-11-29 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 8.0.13-alt1
2021-12-01 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 8.0.16-alt1
2022-02-28 00:00:00
redhatcve
redhatcve
cve
cve
debiancve
debiancve
slackware
slackware
[slackware-security] php
2022-02-18 05:43:10
checkpoint_advisories
checkpoint_advisories
PHP XML Parser Remote Code Execution (CVE-2021-21707)
2022-02-20 00:00:00
ubuntucve
ubuntucve
alpinelinux
alpinelinux
suse
suse
Security update for php7 (important)
2022-03-15 00:00:00
Recommended update for php7 (moderate)
2021-12-10 00:00:00
Recommended update for php7 (moderate)
2021-12-06 00:00:00
github
github
Directory Traversal in Archive_Tar
2021-08-09 20:40:06
attackerkb
attackerkb
CVE-2021-32610
2021-07-30 00:00:00
amazon
amazon
Medium: php-pear
2021-09-08 23:35:00
oraclelinux
oraclelinux
php security, bug fix, and enhancement update
2022-11-22 00:00:00
php:8.0 security, bug fix, and enhancement update
2022-11-15 00:00:00
gentoo
gentoo
PHP: Multiple Vulnerabilities
2022-09-29 00:00:00
redos
redos
ROS-20220826-01
2022-08-26 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2022
2022-10-18 00:00:00
Oracle Critical Patch Update Advisory - January 2023
2023-01-17 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related for ELSA-2022-7628