Release Info

Advisory: CLSA-2023:1695502666

OS: EL 7 PHP

Public date: 2023-09-23 16:57:48

Project: php

Version: 7.1.33-47.el7

Errata link: https://errata.cloudlinux.com/php-els/el7/CLSA-2023-1695502666.html

Changelog

- Fix for hardened PHP - CVE-2023-3823: Fix external entity loading in XML without enabling by sanitizing libxml2 globals before parsing - CVE-2023-3824: Fix buffer mismanagement in phar_dir_read()

Update

Update command: yum update alt-php*

Packages list

alt-php71-7.1.33-47.el7.x86_64.rpm alt-php71-bcmath-7.1.33-47.el7.x86_64.rpm alt-php71-cli-7.1.33-47.el7.x86_64.rpm alt-php71-common-7.1.33-47.el7.x86_64.rpm alt-php71-dba-7.1.33-47.el7.x86_64.rpm alt-php71-devel-7.1.33-47.el7.x86_64.rpm alt-php71-enchant-7.1.33-47.el7.x86_64.rpm alt-php71-firebird-7.1.33-47.el7.x86_64.rpm alt-php71-gd-7.1.33-47.el7.x86_64.rpm alt-php71-imap-7.1.33-47.el7.x86_64.rpm alt-php71-intl-7.1.33-47.el7.x86_64.rpm alt-php71-ldap-7.1.33-47.el7.x86_64.rpm alt-php71-mbstring-7.1.33-47.el7.x86_64.rpm alt-php71-mcrypt-7.1.33-47.el7.x86_64.rpm alt-php71-mysqlnd-7.1.33-47.el7.x86_64.rpm alt-php71-odbc-7.1.33-47.el7.x86_64.rpm alt-php71-opcache-7.1.33-47.el7.x86_64.rpm alt-php71-pdo-7.1.33-47.el7.x86_64.rpm alt-php71-pgsql-7.1.33-47.el7.x86_64.rpm alt-php71-process-7.1.33-47.el7.x86_64.rpm alt-php71-pspell-7.1.33-47.el7.x86_64.rpm alt-php71-recode-7.1.33-47.el7.x86_64.rpm alt-php71-snmp-7.1.33-47.el7.x86_64.rpm alt-php71-soap-7.1.33-47.el7.x86_64.rpm alt-php71-tidy-7.1.33-47.el7.x86_64.rpm alt-php71-xml-7.1.33-47.el7.x86_64.rpm alt-php71-xmlrpc-7.1.33-47.el7.x86_64.rpm

CVEs

CVE-2023-3824
CVE-2023-3823