Release Info

Advisory: CLSA-2022:1669070441

OS: Ubuntu 18.04 PHP

Public date: 2022-11-21

Project: php

Version: 7.0.33-70

Errata link: https://errata.cloudlinux.com/php-els/ubuntu18_04/CLSA-2022-1669070441.html

Changelog

* Fix for harden PHP - CVE-2022-31628: Fix potential infinite recursion in phar wrapper when using quine gzip file - CVE-2022-31629: Add cookie integrity validation

Update

Update command: apt-get update apt-get --only-upgrade install alt-php*

Packages list

alt-php70_7.0.33-70_amd64.deb alt-php70-bcmath_7.0.33-70_amd64.deb alt-php70-cli_7.0.33-70_amd64.deb alt-php70-common_7.0.33-70_amd64.deb alt-php70-dba_7.0.33-70_amd64.deb alt-php70-dev_7.0.33-70_amd64.deb alt-php70-enchant_7.0.33-70_amd64.deb alt-php70-firebird_7.0.33-70_amd64.deb alt-php70-gd_7.0.33-70_amd64.deb alt-php70-imap_7.0.33-70_amd64.deb alt-php70-intl_7.0.33-70_amd64.deb alt-php70-ldap_7.0.33-70_amd64.deb alt-php70-mbstring_7.0.33-70_amd64.deb alt-php70-mcrypt_7.0.33-70_amd64.deb alt-php70-mysqlnd_7.0.33-70_amd64.deb alt-php70-odbc_7.0.33-70_amd64.deb alt-php70-opcache_7.0.33-70_amd64.deb alt-php70-pdo_7.0.33-70_amd64.deb alt-php70-pgsql_7.0.33-70_amd64.deb alt-php70-process_7.0.33-70_amd64.deb alt-php70-pspell_7.0.33-70_amd64.deb alt-php70-recode_7.0.33-70_amd64.deb alt-php70-snmp_7.0.33-70_amd64.deb alt-php70-soap_7.0.33-70_amd64.deb alt-php70-tidy_7.0.33-70_amd64.deb alt-php70-xml_7.0.33-70_amd64.deb alt-php70-xmlrpc_7.0.33-70_amd64.deb

CVEs

CVE-2022-31629
CVE-2022-31628