RHSA-2020:3662

Description

Red Hat Security Advisory: php:7.3 security, bug fix, and enhancement update

CVSS Metrics

• v3.1•HIGH•Score: 8.8CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Systems

• redhat•apcu-panel

  < 0:5.1.17-1.module+el8.1.0+3189+a1bff096

• redhat•libzip

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•libzip-debuginfo

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•libzip-debugsource

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•libzip-devel

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•libzip-tools

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•libzip-tools-debuginfo

  < 0:1.5.2-1.module+el8.1.0+3189+a1bff096

• redhat•php

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-bcmath

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-bcmath-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-cli

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-cli-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-common

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-common-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-dba

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-dba-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-dbg

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-dbg-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-debugsource

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-devel

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-embedded

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-embedded-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-enchant

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-enchant-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-fpm

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-fpm-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-gd

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-gd-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-gmp

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-gmp-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-intl

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-intl-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-json

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-json-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-ldap

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-ldap-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-mbstring

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-mbstring-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-mysqlnd

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-mysqlnd-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-odbc

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-odbc-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-opcache

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-opcache-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-pdo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-pdo-debuginfo

  < 0:7.3.20-1.module+el8.2.0+7373+b272fdef

• redhat•php-pear

  < 1:1.10.9-1.module+el8.1.0+3189+a1bff096

• redhat•php-pecl-apcu

  < 0:5.1.17-1.module+el8.1.0+3189+a1bff096

• redhat•php-pecl-apcu-debuginfo

  < 0:5.1.17-1.module+el8.1.0+3189+a1bff096

Showing first 50 affected entries in server-rendered view.

References (95)

• https://access.redhat.com/errata/RHSA-2020:3662
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=1724152
• https://bugzilla.redhat.com/show_bug.cgi?id=1724154
• https://bugzilla.redhat.com/show_bug.cgi?id=1728965
• https://bugzilla.redhat.com/show_bug.cgi?id=1728970
• https://bugzilla.redhat.com/show_bug.cgi?id=1735494
• https://bugzilla.redhat.com/show_bug.cgi?id=1739459
• https://bugzilla.redhat.com/show_bug.cgi?id=1739465
• https://bugzilla.redhat.com/show_bug.cgi?id=1768997
• https://bugzilla.redhat.com/show_bug.cgi?id=1777537
• https://bugzilla.redhat.com/show_bug.cgi?id=1786570
• https://bugzilla.redhat.com/show_bug.cgi?id=1786572
• https://bugzilla.redhat.com/show_bug.cgi?id=1788258
• https://bugzilla.redhat.com/show_bug.cgi?id=1797776
• https://bugzilla.redhat.com/show_bug.cgi?id=1797779
• https://bugzilla.redhat.com/show_bug.cgi?id=1802061
• https://bugzilla.redhat.com/show_bug.cgi?id=1802068
• https://bugzilla.redhat.com/show_bug.cgi?id=1808532
• https://bugzilla.redhat.com/show_bug.cgi?id=1808536
• https://bugzilla.redhat.com/show_bug.cgi?id=1820601
• https://bugzilla.redhat.com/show_bug.cgi?id=1820604
• https://bugzilla.redhat.com/show_bug.cgi?id=1820627
• https://bugzilla.redhat.com/show_bug.cgi?id=1837842
• https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhsa-2020_3662.json
• https://access.redhat.com/security/cve/CVE-2019-11039
• https://www.cve.org/CVERecord?id=CVE-2019-11039
• https://nvd.nist.gov/vuln/detail/CVE-2019-11039
• https://access.redhat.com/security/cve/CVE-2019-11040
• https://www.cve.org/CVERecord?id=CVE-2019-11040
• https://nvd.nist.gov/vuln/detail/CVE-2019-11040
• https://access.redhat.com/security/cve/CVE-2019-11041
• https://www.cve.org/CVERecord?id=CVE-2019-11041
• https://nvd.nist.gov/vuln/detail/CVE-2019-11041
• https://access.redhat.com/security/cve/CVE-2019-11042
• https://www.cve.org/CVERecord?id=CVE-2019-11042
• https://nvd.nist.gov/vuln/detail/CVE-2019-11042
• https://access.redhat.com/security/cve/CVE-2019-11045
• https://www.cve.org/CVERecord?id=CVE-2019-11045
• https://nvd.nist.gov/vuln/detail/CVE-2019-11045
• https://access.redhat.com/security/cve/CVE-2019-11047
• https://www.cve.org/CVERecord?id=CVE-2019-11047
• https://nvd.nist.gov/vuln/detail/CVE-2019-11047
• https://access.redhat.com/security/cve/CVE-2019-11048
• https://www.cve.org/CVERecord?id=CVE-2019-11048
• https://nvd.nist.gov/vuln/detail/CVE-2019-11048
• https://access.redhat.com/security/cve/CVE-2019-11050
• https://www.cve.org/CVERecord?id=CVE-2019-11050
• https://nvd.nist.gov/vuln/detail/CVE-2019-11050
• https://access.redhat.com/security/cve/CVE-2019-13224
• https://www.cve.org/CVERecord?id=CVE-2019-13224
• https://nvd.nist.gov/vuln/detail/CVE-2019-13224
• https://access.redhat.com/security/cve/CVE-2019-13225
• https://www.cve.org/CVERecord?id=CVE-2019-13225
• https://nvd.nist.gov/vuln/detail/CVE-2019-13225
• https://access.redhat.com/security/cve/CVE-2019-16163
• https://www.cve.org/CVERecord?id=CVE-2019-16163
• https://nvd.nist.gov/vuln/detail/CVE-2019-16163
• https://access.redhat.com/security/cve/CVE-2019-19203
• https://www.cve.org/CVERecord?id=CVE-2019-19203
• https://nvd.nist.gov/vuln/detail/CVE-2019-19203
• https://access.redhat.com/security/cve/CVE-2019-19204
• https://www.cve.org/CVERecord?id=CVE-2019-19204
• https://nvd.nist.gov/vuln/detail/CVE-2019-19204
• https://access.redhat.com/security/cve/CVE-2019-19246
• https://www.cve.org/CVERecord?id=CVE-2019-19246
• https://nvd.nist.gov/vuln/detail/CVE-2019-19246
• https://access.redhat.com/security/cve/CVE-2019-20454
• https://www.cve.org/CVERecord?id=CVE-2019-20454
• https://nvd.nist.gov/vuln/detail/CVE-2019-20454
• https://access.redhat.com/security/cve/CVE-2020-7059
• https://www.cve.org/CVERecord?id=CVE-2020-7059
• https://nvd.nist.gov/vuln/detail/CVE-2020-7059
• https://access.redhat.com/security/cve/CVE-2020-7060
• https://www.cve.org/CVERecord?id=CVE-2020-7060
• https://nvd.nist.gov/vuln/detail/CVE-2020-7060
• https://access.redhat.com/security/cve/CVE-2020-7062
• https://www.cve.org/CVERecord?id=CVE-2020-7062
• https://nvd.nist.gov/vuln/detail/CVE-2020-7062
• https://access.redhat.com/security/cve/CVE-2020-7063
• https://www.cve.org/CVERecord?id=CVE-2020-7063
• https://nvd.nist.gov/vuln/detail/CVE-2020-7063
• https://access.redhat.com/security/cve/CVE-2020-7064
• https://www.cve.org/CVERecord?id=CVE-2020-7064
• https://nvd.nist.gov/vuln/detail/CVE-2020-7064
• https://bugs.php.net/bug.php?id=79282
• https://access.redhat.com/security/cve/CVE-2020-7065
• https://www.cve.org/CVERecord?id=CVE-2020-7065
• https://nvd.nist.gov/vuln/detail/CVE-2020-7065
• https://www.php.net/ChangeLog-7.php#PHP_7_3
• https://www.php.net/ChangeLog-7.php#PHP_7_4
• https://access.redhat.com/security/cve/CVE-2020-7066
• https://www.cve.org/CVERecord?id=CVE-2020-7066
• https://nvd.nist.gov/vuln/detail/CVE-2020-7066
• https://bugs.php.net/bug.php?id=79329