Important: Red Hat Security Advisory: php security update

🗓️ 02 Feb 2026 01:57:01Reported by RedHatType

redhat

redhat🔗 access.redhat.com👁 5 Views

Red Hat updates PHP to fix heap overflow in array_merge, image size disclosure, and PostgreSQL DoS.

Reporter	Title	Published	Views	Family All 340
Tenable Nessus	Amazon Linux 2023 : php8.4, php8.4-bcmath, php8.4-cli (ALAS2023-2025-1352)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.3, php8.3-bcmath, php8.3-cli (ALAS2023-2025-1353)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.2, php8.2-bcmath, php8.2-cli (ALAS2023-2025-1354)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : php8.1, php8.1-bcmath, php8.1-cli (ALAS2023-2025-1355)	8 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : php, --advisory ALAS2PHP8.1-2026-008 (ALASPHP8.1-2026-008)	22 Jan 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : php, --advisory ALAS2PHP8.2-2026-009 (ALASPHP8.2-2026-009)	22 Jan 202600:00	–	nessus
Tenable Nessus	Alibaba Cloud Linux 3 : 0043: php:7.4 (ALINUX3-SA-2026:0043)	5 Mar 202600:00	–	nessus
Tenable Nessus	AlmaLinux 9 : php:8.2 (ALSA-2026:1409)	2 Feb 202600:00	–	nessus
Tenable Nessus	AlmaLinux 8 : php:8.2 (ALSA-2026:1412)	2 Feb 202600:00	–	nessus
Tenable Nessus	AlmaLinux 9 : php:8.3 (ALSA-2026:1429)	30 Jan 202600:00	–	nessus

Source	Link
access	www.access.redhat.com/security/updates/classification/
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

19 May 2026 15:26Current

7.5High risk

Vulners AI Score7.5

CVSS 3.16.5 - 8.2

CVSS 48.2

EPSS0.00047

SSVC

heap overflow array merge image size disclosure postgres denial