Release Info

Advisory: CLSA-2022:1663862855

OS: EL 6 PHP

Public date: 2022-09-22

Project: php

Version: 5.6.40-66.el6

Errata link: https://errata.cloudlinux.com/php-els/el6/CLSA-2022-1663862855.html

Changelog

- ELS-189: Fix for Harden PHP - CVE-2022-31625: Fix freeing of uninitialized memory leading to RCE - CVE-2022-31626: Fix buffer overflow in mysqlnd driver leading to RCE

Update

Update command: yum update alt-php*

Packages list

alt-php56-snmp-5.6.40-66.el6.x86_64.rpm alt-php56-mcrypt-5.6.40-66.el6.x86_64.rpm alt-php56-ldap-5.6.40-66.el6.x86_64.rpm alt-php56-xml-5.6.40-66.el6.x86_64.rpm alt-php56-soap-5.6.40-66.el6.x86_64.rpm alt-php56-pgsql-5.6.40-66.el6.x86_64.rpm alt-php56-xmlrpc-5.6.40-66.el6.x86_64.rpm alt-php56-odbc-5.6.40-66.el6.x86_64.rpm alt-php56-devel-5.6.40-66.el6.x86_64.rpm alt-php56-bcmath-5.6.40-66.el6.x86_64.rpm alt-php56-tidy-5.6.40-66.el6.x86_64.rpm alt-php56-sybase-5.6.40-66.el6.x86_64.rpm alt-php56-recode-5.6.40-66.el6.x86_64.rpm alt-php56-pspell-5.6.40-66.el6.x86_64.rpm alt-php56-5.6.40-66.el6.x86_64.rpm alt-php56-mysqlnd-5.6.40-66.el6.x86_64.rpm alt-php56-gd-5.6.40-66.el6.x86_64.rpm alt-php56-intl-5.6.40-66.el6.x86_64.rpm alt-php56-dba-5.6.40-66.el6.x86_64.rpm alt-php56-dbx-5.6.40-66.el6.x86_64.rpm alt-php56-imap-5.6.40-66.el6.x86_64.rpm alt-php56-process-5.6.40-66.el6.x86_64.rpm alt-php56-cli-5.6.40-66.el6.x86_64.rpm alt-php56-mssql-5.6.40-66.el6.x86_64.rpm alt-php56-enchant-5.6.40-66.el6.x86_64.rpm alt-php56-pdo-5.6.40-66.el6.x86_64.rpm alt-php56-mbstring-5.6.40-66.el6.x86_64.rpm alt-php56-firebird-5.6.40-66.el6.x86_64.rpm alt-php56-common-5.6.40-66.el6.x86_64.rpm

CVEs

CVE-2022-31626
CVE-2022-31625