Release Info

Advisory: CLSA-2022:1668727005

OS: EL 6 PHP

Public date: 2022-11-17 00:00:00

Project: php

Version: 7.2.34-22.el6

Errata link: https://errata.cloudlinux.com/php-els/el6/CLSA-2022-1668727005.html

Changelog

- Fix for harden PHP - CVE-2022-31628: Fix potential infinite recursion in phar wrapper when using quine gzip file - CVE-2022-31629: Add cookie integrity validation

Update

Update command: yum update alt-php*

Packages list

alt-php72-7.2.34-22.el6.x86_64.rpm alt-php72-bcmath-7.2.34-22.el6.x86_64.rpm alt-php72-cli-7.2.34-22.el6.x86_64.rpm alt-php72-common-7.2.34-22.el6.x86_64.rpm alt-php72-dba-7.2.34-22.el6.x86_64.rpm alt-php72-devel-7.2.34-22.el6.x86_64.rpm alt-php72-enchant-7.2.34-22.el6.x86_64.rpm alt-php72-firebird-7.2.34-22.el6.x86_64.rpm alt-php72-gd-7.2.34-22.el6.x86_64.rpm alt-php72-imap-7.2.34-22.el6.x86_64.rpm alt-php72-intl-7.2.34-22.el6.x86_64.rpm alt-php72-ldap-7.2.34-22.el6.x86_64.rpm alt-php72-mbstring-7.2.34-22.el6.x86_64.rpm alt-php72-mysqlnd-7.2.34-22.el6.x86_64.rpm alt-php72-odbc-7.2.34-22.el6.x86_64.rpm alt-php72-opcache-7.2.34-22.el6.x86_64.rpm alt-php72-pdo-7.2.34-22.el6.x86_64.rpm alt-php72-pgsql-7.2.34-22.el6.x86_64.rpm alt-php72-process-7.2.34-22.el6.x86_64.rpm alt-php72-pspell-7.2.34-22.el6.x86_64.rpm alt-php72-recode-7.2.34-22.el6.x86_64.rpm alt-php72-snmp-7.2.34-22.el6.x86_64.rpm alt-php72-soap-7.2.34-22.el6.x86_64.rpm alt-php72-sodium-7.2.34-22.el6.x86_64.rpm alt-php72-tidy-7.2.34-22.el6.x86_64.rpm alt-php72-xml-7.2.34-22.el6.x86_64.rpm alt-php72-xmlrpc-7.2.34-22.el6.x86_64.rpm alt-php72-zts-7.2.34-22.el6.x86_64.rpm alt-php72-zts-devel-7.2.34-22.el6.x86_64.rpm

CVEs

CVE-2022-31629
CVE-2022-31628