ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
ELS for PHP
- CVEs
- Releases
- Projects
- Documentation
ELS for Python
- CVEs
- Releases
- Projects
- Documentation
ELS for Dotnet
- CVEs
- Releases
- Projects
- Documentation
ELS for Node.js
- CVEs
- Releases
- Projects
- Documentation

CVE-2022-31628

Updated: 2025-08-20 00:19:29.383321

Description:

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x		0.0
CVSS Version 3.x	MEDIUM	5.5

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated	Statement
Debian 10	php	8.0	5.5	MEDIUM	Not Vulnerable		2025-05-29 03:53:42
Debian 10	php	5.6	5.5	MEDIUM	Released		2025-05-29 03:53:43
Debian 10	php	7.3	5.5	MEDIUM	Released		2025-05-29 03:53:43
Debian 10	php	8.2	5.5	MEDIUM	Not Vulnerable		2025-05-29 03:53:42
Debian 10	php	8.1	5.5	MEDIUM	Not Vulnerable		2025-05-29 03:53:42
Debian 10	php	7.0	5.5	MEDIUM	Released		2025-05-29 03:53:43
Debian 10	php	7.1	5.5	MEDIUM	Released		2025-05-29 03:53:43
Debian 10	php	7.2	5.5	MEDIUM	Released		2025-05-29 03:53:43
Debian 10	php	7.4	5.5	MEDIUM	Not Vulnerable		2025-05-29 03:53:43
Debian 11	php	8.1	5.5	MEDIUM	Not Vulnerable		2025-05-29 03:53:40

1
2
3
4
5
6
7
8
9
10
...
14
15
›

Total: 146