CVE-2022-4900

Updated: 2024-11-30 04:45:52.049653

Description:

A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x 0
CVSS Version 3.x MEDIUM 5.5

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

EL 6 PHP php 5.4 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 5.1 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 7.3 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 5.2 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 5.3 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 7.2 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
EL 6 PHP php 7.4 5.5 MEDIUM Released CLSA-2024:1705243530 2024-01-14 10:06:30
EL 6 PHP php 8.0 5.5 MEDIUM Already Fixed 2023-11-29 10:06:09
EL 6 PHP php 8.2 5.5 MEDIUM Already Fixed 2023-11-29 10:06:08
EL 6 PHP php 7.1 5.5 MEDIUM Not Vulnerable 2023-11-29 10:06:14
Total: 86