ALSA-2026:1409 Important: php:8.2 security update

🗓️ 27 Jan 2026 00:00:00Reported by GoogleType

osv🔗 osv.dev👁 3 Views

ALSA-2026: PHP 8.2 security update fixes CVEs in postgresql, soap, hostname, heap, and image handling.

Reporter	Title	Published	Views	Family All 574
Tenable Nessus	Amazon Linux 2023 : php8.1, php8.1-bcmath, php8.1-cli (ALAS2023-2025-1087)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.2, php8.2-bcmath, php8.2-cli (ALAS2023-2025-1088)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.4, php8.4-bcmath, php8.4-cli (ALAS2023-2025-1113)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.3, php8.3-bcmath, php8.3-cli (ALAS2023-2025-1114)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.4, php8.4-bcmath, php8.4-cli (ALAS2023-2025-1352)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.3, php8.3-bcmath, php8.3-cli (ALAS2023-2025-1353)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.2, php8.2-bcmath, php8.2-cli (ALAS2023-2025-1354)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.1, php8.1-bcmath, php8.1-cli (ALAS2023-2025-1355)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : php (ALASPHP8.1-2025-007)	4 Aug 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : php, --advisory ALAS2PHP8.1-2026-008 (ALASPHP8.1-2026-008)	22 Jan 202600:00	–	nessus

Source	Link
access	www.access.redhat.com/errata/RHSA-2026:1409
access	www.access.redhat.com/security/cve/CVE-2025-1220
access	www.access.redhat.com/security/cve/CVE-2025-14177
access	www.access.redhat.com/security/cve/CVE-2025-14178
access	www.access.redhat.com/security/cve/CVE-2025-14180
access	www.access.redhat.com/security/cve/CVE-2025-1735
access	www.access.redhat.com/security/cve/CVE-2025-6491
bugzilla	www.bugzilla.redhat.com/2378689
bugzilla	www.bugzilla.redhat.com/2378690
bugzilla	www.bugzilla.redhat.com/2379792

04 Feb 2026 04:07Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.16.5 - 8.2

CVSS 48.2

EPSS0.00772

SSVC