CVE-2024-8929

Updated: 2024-11-30 05:14:48.815214

Description:

In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, a hostile MySQL server can cause the client to disclose the content of its heap containing data from other SQL requests and possible other data belonging to different users of the same server.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x NONE 0
CVSS Version 3.x MEDIUM 5.8

Status

OS name Project name Version Score Severity Status Errata Last updated

Statement

EL 6 PHP php 8.1 5.8 MEDIUM Not Vulnerable 2025-01-13 23:38:20
EL 6 PHP php 8.0 5.8 MEDIUM In Progress 2024-12-16 11:54:03
EL 6 PHP php 7.2 5.8 MEDIUM In Progress 2024-12-16 11:54:08
EL 6 PHP php 5.4 5.8 MEDIUM In Progress 2024-12-16 11:54:08
EL 6 PHP php 5.3 5.8 MEDIUM In Progress 2024-12-16 11:54:09
EL 6 PHP php 5.2 5.8 MEDIUM In Progress 2024-12-16 11:54:09
EL 6 PHP php 5.1 5.8 MEDIUM In Progress 2024-12-16 11:54:09
EL 6 PHP php 7.4 5.8 MEDIUM In Progress 2024-12-16 11:54:06
EL 6 PHP php 5.5 5.8 MEDIUM In Progress 2024-12-16 11:54:03
EL 6 PHP php 5.6 5.8 MEDIUM In Progress 2024-12-16 11:54:01
Total: 86