RHSA-2024:10950

Description

Red Hat Security Advisory: php:8.1 security update

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Systems

• redhat•apcu-panel

  < 0:5.1.21-1.module+el9.1.0.z+15477+cb86791d

• redhat•php

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-bcmath

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-bcmath-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-cli

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-cli-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-common

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-common-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-dba

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-dba-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-dbg

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-dbg-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-debugsource

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-devel

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-embedded

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-embedded-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-enchant

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-enchant-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-ffi

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-ffi-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-fpm

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-fpm-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-gd

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-gd-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-gmp

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-gmp-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-intl

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-intl-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-ldap

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-ldap-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-mbstring

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-mbstring-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-mysqlnd

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-mysqlnd-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-odbc

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-odbc-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-opcache

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-opcache-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-pdo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-pdo-debuginfo

  < 0:8.1.30-1.module+el9.5.0+22481+3e1c6d75

• redhat•php-pecl-apcu

  < 0:5.1.21-1.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-apcu-debuginfo

  < 0:5.1.21-1.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-apcu-debugsource

  < 0:5.1.21-1.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-apcu-devel

  < 0:5.1.21-1.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-rrd

  < 0:2.0.3-4.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-rrd-debuginfo

  < 0:2.0.3-4.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-rrd-debugsource

  < 0:2.0.3-4.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-xdebug3

  < 0:3.1.4-1.module+el9.1.0.z+15477+cb86791d

• redhat•php-pecl-xdebug3-debuginfo

  < 0:3.1.4-1.module+el9.1.0.z+15477+cb86791d

Showing first 50 affected entries in server-rendered view.

References (34)

• https://access.redhat.com/errata/RHSA-2024:10950
• https://access.redhat.com/security/updates/classification/#moderate
• https://bugzilla.redhat.com/show_bug.cgi?id=2275058
• https://bugzilla.redhat.com/show_bug.cgi?id=2275061
• https://bugzilla.redhat.com/show_bug.cgi?id=2291252
• https://bugzilla.redhat.com/show_bug.cgi?id=2317049
• https://bugzilla.redhat.com/show_bug.cgi?id=2317051
• https://bugzilla.redhat.com/show_bug.cgi?id=2317144
• https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_10950.json
• https://access.redhat.com/security/cve/CVE-2024-2756
• https://www.cve.org/CVERecord?id=CVE-2024-2756
• https://nvd.nist.gov/vuln/detail/CVE-2024-2756
• https://github.com/php/php-src/security/advisories/GHSA-wpj3-hf5j-x4v4
• https://access.redhat.com/security/cve/CVE-2024-3096
• https://www.cve.org/CVERecord?id=CVE-2024-3096
• https://nvd.nist.gov/vuln/detail/CVE-2024-3096
• https://github.com/php/php-src/security/advisories/GHSA-h746-cjrr-wfmr
• https://access.redhat.com/security/cve/CVE-2024-5458
• https://www.cve.org/CVERecord?id=CVE-2024-5458
• https://nvd.nist.gov/vuln/detail/CVE-2024-5458
• https://github.com/php/php-src/security/advisories/GHSA-w8qr-v226-r27w
• https://access.redhat.com/security/cve/CVE-2024-8925
• https://www.cve.org/CVERecord?id=CVE-2024-8925
• https://nvd.nist.gov/vuln/detail/CVE-2024-8925
• https://github.com/php/php-src/commit/48808d98f4fc2a05193cdcc1aedd6c66816450f1
• https://github.com/php/php-src/security/advisories/GHSA-9pqp-7h25-4f32
• https://access.redhat.com/security/cve/CVE-2024-8927
• https://www.cve.org/CVERecord?id=CVE-2024-8927
• https://nvd.nist.gov/vuln/detail/CVE-2024-8927
• https://github.com/php/php-src/security/advisories/GHSA-94p6-54jq-9mwp
• https://access.redhat.com/security/cve/CVE-2024-9026
• https://www.cve.org/CVERecord?id=CVE-2024-9026
• https://nvd.nist.gov/vuln/detail/CVE-2024-9026
• https://github.com/php/php-src/security/advisories/GHSA-865w-9rf3-2wh5