Release Info

Advisory: CLSA-2022:1668725884

OS: EL 6 PHP

Public date: 2022-11-17

Project: php

Version: 7.0.33-69.el6

Errata link: https://errata.cloudlinux.com/php-els/el6/CLSA-2022-1668725884.html

Changelog

- Fix for harden PHP - CVE-2022-31628: Fix potential infinite recursion in phar wrapper when using quine gzip file - CVE-2022-31629: Add cookie integrity validation

Update

Update command: yum update alt-php*

Packages list

alt-php70-7.0.33-69.el6.x86_64.rpm alt-php70-bcmath-7.0.33-69.el6.x86_64.rpm alt-php70-cli-7.0.33-69.el6.x86_64.rpm alt-php70-common-7.0.33-69.el6.x86_64.rpm alt-php70-dba-7.0.33-69.el6.x86_64.rpm alt-php70-devel-7.0.33-69.el6.x86_64.rpm alt-php70-enchant-7.0.33-69.el6.x86_64.rpm alt-php70-firebird-7.0.33-69.el6.x86_64.rpm alt-php70-gd-7.0.33-69.el6.x86_64.rpm alt-php70-imap-7.0.33-69.el6.x86_64.rpm alt-php70-intl-7.0.33-69.el6.x86_64.rpm alt-php70-ldap-7.0.33-69.el6.x86_64.rpm alt-php70-mbstring-7.0.33-69.el6.x86_64.rpm alt-php70-mcrypt-7.0.33-69.el6.x86_64.rpm alt-php70-mysqlnd-7.0.33-69.el6.x86_64.rpm alt-php70-odbc-7.0.33-69.el6.x86_64.rpm alt-php70-opcache-7.0.33-69.el6.x86_64.rpm alt-php70-pdo-7.0.33-69.el6.x86_64.rpm alt-php70-pgsql-7.0.33-69.el6.x86_64.rpm alt-php70-process-7.0.33-69.el6.x86_64.rpm alt-php70-pspell-7.0.33-69.el6.x86_64.rpm alt-php70-recode-7.0.33-69.el6.x86_64.rpm alt-php70-snmp-7.0.33-69.el6.x86_64.rpm alt-php70-soap-7.0.33-69.el6.x86_64.rpm alt-php70-tidy-7.0.33-69.el6.x86_64.rpm alt-php70-xml-7.0.33-69.el6.x86_64.rpm alt-php70-xmlrpc-7.0.33-69.el6.x86_64.rpm

CVEs

CVE-2022-31628
CVE-2022-31629