RHSA-2019:3299
Advisory lineage Upstream: 21 Downstream: 0
Published: 13 Sept 2024, 22:02
Last modified:13 May 2026, 10:37
Vulnerability Summary
Overall Risk (default)
medium
32/100 CVSS Score
8.1 HIGH
3.0 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
13 Sept 2024, 22:02
Published
Vulnerability first disclosed
13 May 2026, 10:37
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: rh-php72-php security update
CVSS Metrics
- v3.0•HIGH•Score: 8.1CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Systems
- redhat•rh-php72-php
< 0:7.2.24-1.el7
- redhat•rh-php72-php-bcmath
< 0:7.2.24-1.el7
- redhat•rh-php72-php-cli
< 0:7.2.24-1.el7
- redhat•rh-php72-php-common
< 0:7.2.24-1.el7
- redhat•rh-php72-php-dba
< 0:7.2.24-1.el7
- redhat•rh-php72-php-dbg
< 0:7.2.24-1.el7
- redhat•rh-php72-php-debuginfo
< 0:7.2.24-1.el7
- redhat•rh-php72-php-devel
< 0:7.2.24-1.el7
- redhat•rh-php72-php-embedded
< 0:7.2.24-1.el7
- redhat•rh-php72-php-enchant
< 0:7.2.24-1.el7
- redhat•rh-php72-php-fpm
< 0:7.2.24-1.el7
- redhat•rh-php72-php-gd
< 0:7.2.24-1.el7
- redhat•rh-php72-php-gmp
< 0:7.2.24-1.el7
- redhat•rh-php72-php-intl
< 0:7.2.24-1.el7
- redhat•rh-php72-php-json
< 0:7.2.24-1.el7
- redhat•rh-php72-php-ldap
< 0:7.2.24-1.el7
- redhat•rh-php72-php-mbstring
< 0:7.2.24-1.el7
- redhat•rh-php72-php-mysqlnd
< 0:7.2.24-1.el7
- redhat•rh-php72-php-odbc
< 0:7.2.24-1.el7
- redhat•rh-php72-php-opcache
< 0:7.2.24-1.el7
- redhat•rh-php72-php-pdo
< 0:7.2.24-1.el7
- redhat•rh-php72-php-pgsql
< 0:7.2.24-1.el7
- redhat•rh-php72-php-process
< 0:7.2.24-1.el7
- redhat•rh-php72-php-pspell
< 0:7.2.24-1.el7
- redhat•rh-php72-php-recode
< 0:7.2.24-1.el7
- redhat•rh-php72-php-snmp
< 0:7.2.24-1.el7
- redhat•rh-php72-php-soap
< 0:7.2.24-1.el7
- redhat•rh-php72-php-xml
< 0:7.2.24-1.el7
- redhat•rh-php72-php-xmlrpc
< 0:7.2.24-1.el7
- redhat•rh-php72-php-zip
< 0:7.2.24-1.el7
References (89)
- https://access.redhat.com/errata/RHSA-2019:3299
- https://access.redhat.com/security/updates/classification/#critical
- https://bugzilla.redhat.com/show_bug.cgi?id=1418983
- https://bugzilla.redhat.com/show_bug.cgi?id=1672207
- https://bugzilla.redhat.com/show_bug.cgi?id=1680545
- https://bugzilla.redhat.com/show_bug.cgi?id=1685123
- https://bugzilla.redhat.com/show_bug.cgi?id=1685132
- https://bugzilla.redhat.com/show_bug.cgi?id=1685398
- https://bugzilla.redhat.com/show_bug.cgi?id=1685404
- https://bugzilla.redhat.com/show_bug.cgi?id=1685412
- https://bugzilla.redhat.com/show_bug.cgi?id=1688897
- https://bugzilla.redhat.com/show_bug.cgi?id=1688922
- https://bugzilla.redhat.com/show_bug.cgi?id=1688934
- https://bugzilla.redhat.com/show_bug.cgi?id=1688939
- https://bugzilla.redhat.com/show_bug.cgi?id=1702246
- https://bugzilla.redhat.com/show_bug.cgi?id=1702256
- https://bugzilla.redhat.com/show_bug.cgi?id=1707299
- https://bugzilla.redhat.com/show_bug.cgi?id=1724149
- https://bugzilla.redhat.com/show_bug.cgi?id=1724152
- https://bugzilla.redhat.com/show_bug.cgi?id=1724154
- https://bugzilla.redhat.com/show_bug.cgi?id=1739459
- https://bugzilla.redhat.com/show_bug.cgi?id=1739465
- https://bugzilla.redhat.com/show_bug.cgi?id=1766378
- https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_3299.json
- https://access.redhat.com/security/cve/CVE-2016-10166
- https://www.cve.org/CVERecord?id=CVE-2016-10166
- https://nvd.nist.gov/vuln/detail/CVE-2016-10166
- https://access.redhat.com/security/cve/CVE-2018-20783
- https://www.cve.org/CVERecord?id=CVE-2018-20783
- https://nvd.nist.gov/vuln/detail/CVE-2018-20783
- https://access.redhat.com/security/cve/CVE-2019-6977
- https://www.cve.org/CVERecord?id=CVE-2019-6977
- https://nvd.nist.gov/vuln/detail/CVE-2019-6977
- https://access.redhat.com/security/cve/CVE-2019-9020
- https://www.cve.org/CVERecord?id=CVE-2019-9020
- https://nvd.nist.gov/vuln/detail/CVE-2019-9020
- https://access.redhat.com/security/cve/CVE-2019-9021
- https://www.cve.org/CVERecord?id=CVE-2019-9021
- https://nvd.nist.gov/vuln/detail/CVE-2019-9021
- https://access.redhat.com/security/cve/CVE-2019-9022
- https://www.cve.org/CVERecord?id=CVE-2019-9022
- https://nvd.nist.gov/vuln/detail/CVE-2019-9022
- https://access.redhat.com/security/cve/CVE-2019-9023
- https://www.cve.org/CVERecord?id=CVE-2019-9023
- https://nvd.nist.gov/vuln/detail/CVE-2019-9023
- https://access.redhat.com/security/cve/CVE-2019-9024
- https://www.cve.org/CVERecord?id=CVE-2019-9024
- https://nvd.nist.gov/vuln/detail/CVE-2019-9024
- https://access.redhat.com/security/cve/CVE-2019-9637
- https://www.cve.org/CVERecord?id=CVE-2019-9637
- https://nvd.nist.gov/vuln/detail/CVE-2019-9637
- https://access.redhat.com/security/cve/CVE-2019-9638
- https://www.cve.org/CVERecord?id=CVE-2019-9638
- https://nvd.nist.gov/vuln/detail/CVE-2019-9638
- https://access.redhat.com/security/cve/CVE-2019-9639
- https://www.cve.org/CVERecord?id=CVE-2019-9639
- https://nvd.nist.gov/vuln/detail/CVE-2019-9639
- https://access.redhat.com/security/cve/CVE-2019-9640
- https://www.cve.org/CVERecord?id=CVE-2019-9640
- https://nvd.nist.gov/vuln/detail/CVE-2019-9640
- https://access.redhat.com/security/cve/CVE-2019-11034
- https://www.cve.org/CVERecord?id=CVE-2019-11034
- https://nvd.nist.gov/vuln/detail/CVE-2019-11034
- https://access.redhat.com/security/cve/CVE-2019-11035
- https://www.cve.org/CVERecord?id=CVE-2019-11035
- https://nvd.nist.gov/vuln/detail/CVE-2019-11035
- https://access.redhat.com/security/cve/CVE-2019-11036
- https://www.cve.org/CVERecord?id=CVE-2019-11036
- https://nvd.nist.gov/vuln/detail/CVE-2019-11036
- https://access.redhat.com/security/cve/CVE-2019-11038
- https://www.cve.org/CVERecord?id=CVE-2019-11038
- https://nvd.nist.gov/vuln/detail/CVE-2019-11038
- https://access.redhat.com/security/cve/CVE-2019-11039
- https://www.cve.org/CVERecord?id=CVE-2019-11039
- https://nvd.nist.gov/vuln/detail/CVE-2019-11039
- https://access.redhat.com/security/cve/CVE-2019-11040
- https://www.cve.org/CVERecord?id=CVE-2019-11040
- https://nvd.nist.gov/vuln/detail/CVE-2019-11040
- https://access.redhat.com/security/cve/CVE-2019-11041
- https://www.cve.org/CVERecord?id=CVE-2019-11041
- https://nvd.nist.gov/vuln/detail/CVE-2019-11041
- https://access.redhat.com/security/cve/CVE-2019-11042
- https://www.cve.org/CVERecord?id=CVE-2019-11042
- https://nvd.nist.gov/vuln/detail/CVE-2019-11042
- https://access.redhat.com/security/cve/CVE-2019-11043
- https://www.cve.org/CVERecord?id=CVE-2019-11043
- https://nvd.nist.gov/vuln/detail/CVE-2019-11043
- https://www.nginx.com/blog/php-fpm-cve-2019-11043-vulnerability-nginx/
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog