Release Info

Advisory: CLSA-2023:1692817288

OS: Ubuntu 16.04 ELS

Public date: 2023-08-23 15:01:30

Project: php

Version: 7.0.33-0ubuntu0.16.04.17+tuxcare.els6

Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2023-1692817288.html

Changelog

* SECURITY UPDATE: external entity loading in XML without enabling it - debian/patches/php-7.1-CVE-2023-3823.patch: sanitize libxml2 globals before parsing. - CVE-2023-3823 * SECURITY UPDATE: buffer mismanagement in phar_dir_read() - debian/patches/php-upstream-CVE-2023-3824.patch: fix buffer mismanagement in phar_dir_read() - CVE-2023-3824

Update

Update command: apt-get update apt-get --only-upgrade install php*

Packages list

libapache2-mod-php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb libphp7.0-embed_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_all.deb php7.0-bcmath_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-bz2_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-cgi_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-cli_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-common_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-curl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-dba_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-dev_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-enchant_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-fpm_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-gd_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-gmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-imap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-interbase_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-intl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-json_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-ldap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-mbstring_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-mcrypt_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-mysql_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-odbc_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-opcache_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-pgsql_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-phpdbg_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-pspell_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-readline_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-recode_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-snmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-soap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-sqlite3_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-sybase_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-tidy_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-xml_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-xmlrpc_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb php7.0-xsl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_all.deb php7.0-zip_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb

CVEs

CVE-2023-3823
CVE-2023-3824