Release Info

Advisory: CLSA-2023:1695504797

OS: EL 7 PHP

Public date: 2023-09-23 17:33:19

Project: php

Version: 7.4.33-12.el7

Errata link: https://errata.cloudlinux.com/php-els/el7/CLSA-2023-1695504797.html

Changelog

- Fix for hardened PHP - CVE-2023-3823: Fix external entity loading in XML without enabling by sanitizing libxml2 globals before parsing - CVE-2023-3824: Fix buffer mismanagement in phar_dir_read()

Update

Update command: yum update alt-php*

Packages list

alt-php74-7.4.33-12.el7.x86_64.rpm alt-php74-bcmath-7.4.33-12.el7.x86_64.rpm alt-php74-cli-7.4.33-12.el7.x86_64.rpm alt-php74-common-7.4.33-12.el7.x86_64.rpm alt-php74-dba-7.4.33-12.el7.x86_64.rpm alt-php74-devel-7.4.33-12.el7.x86_64.rpm alt-php74-enchant-7.4.33-12.el7.x86_64.rpm alt-php74-firebird-7.4.33-12.el7.x86_64.rpm alt-php74-gd-7.4.33-12.el7.x86_64.rpm alt-php74-imap-7.4.33-12.el7.x86_64.rpm alt-php74-intl-7.4.33-12.el7.x86_64.rpm alt-php74-ldap-7.4.33-12.el7.x86_64.rpm alt-php74-mbstring-7.4.33-12.el7.x86_64.rpm alt-php74-mysqlnd-7.4.33-12.el7.x86_64.rpm alt-php74-odbc-7.4.33-12.el7.x86_64.rpm alt-php74-opcache-7.4.33-12.el7.x86_64.rpm alt-php74-pdo-7.4.33-12.el7.x86_64.rpm alt-php74-pgsql-7.4.33-12.el7.x86_64.rpm alt-php74-process-7.4.33-12.el7.x86_64.rpm alt-php74-pspell-7.4.33-12.el7.x86_64.rpm alt-php74-snmp-7.4.33-12.el7.x86_64.rpm alt-php74-soap-7.4.33-12.el7.x86_64.rpm alt-php74-sodium-7.4.33-12.el7.x86_64.rpm alt-php74-tidy-7.4.33-12.el7.x86_64.rpm alt-php74-xml-7.4.33-12.el7.x86_64.rpm alt-php74-xmlrpc-7.4.33-12.el7.x86_64.rpm

CVEs

CVE-2023-3823
CVE-2023-3824