ALSA-2019:3735

[ALSA-2019:3735] Critical: php:7.2 security update

Type:

security

Severity:

critical

Release date:

2019-11-06

Description:

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: underflow in env_path_info in fpm_main.c (CVE-2019-11043)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libzip-devel-1.5.1-2.module_el8.4.0+2228+7c76a223.aarch64.rpm	30e1eb53154934def2303456e3ff6f98e8be58426e1c3834508f18c5154b5cf0
aarch64	libzip-tools-1.5.1-2.module_el8.4.0+2228+7c76a223.aarch64.rpm	3590f60911fcbc12b3636fa2371d9d527f2f4b26a176684f178ae525b30a84f5
aarch64	php-pecl-zip-1.15.3-1.module_el8.4.0+2228+7c76a223.aarch64.rpm	651e03228c81c03113cd3044bfdf9946b9c389344707bf13dd77e89647ed6195
aarch64	php-pecl-apcu-5.1.12-2.module_el8.4.0+2228+7c76a223.aarch64.rpm	87678c8fc296edbb0ad16891b3f19a0573ab388922b246e356894ebbb940bd05
aarch64	libzip-1.5.1-2.module_el8.4.0+2228+7c76a223.aarch64.rpm	9f09d96fb6676ee1b29ef6a41cf71cde13126d1da701b3203dd871de1b0ff5f6
aarch64	php-pecl-apcu-devel-5.1.12-2.module_el8.4.0+2228+7c76a223.aarch64.rpm	baa334289981799ca0543114b5f22076c85366333c5e0df9e5beef9efc6a2995
noarch	apcu-panel-5.1.12-2.module_el8.3.0+2010+7c76a223.noarch.rpm	a8150cc85924eac6c55d84d57cf416b40b5a97a341a5d5ae298bd77a7274da5a
noarch	php-pear-1.10.5-9.module_el8.3.0+2010+7c76a223.noarch.rpm	d395dd7c89f997659fde7691c83af4d57154ca41e0f6d661e7dde08bf1fc95f9
ppc64le	php-pecl-apcu-devel-5.1.12-2.module_el8.5.0+53+9945c2af.ppc64le.rpm	12ced60dd6cc11f4c97178f7fd9625d7b631899a8597978c10902f2f37785ee3
ppc64le	php-pecl-zip-1.15.3-1.module_el8.5.0+53+9945c2af.ppc64le.rpm	58a0964fd732b3dd3289fddebdac6b44eaf1128485b8f53eac16bf4f1cbc4cbf
ppc64le	php-pecl-apcu-5.1.12-2.module_el8.5.0+53+9945c2af.ppc64le.rpm	5c9e6894dd88460f839b8405823d706edcf37bdc331c31a2c70254548f86e7c7
ppc64le	libzip-devel-1.5.1-2.module_el8.5.0+53+9945c2af.ppc64le.rpm	990119a66f05a49bdc10b6737eff0c3f1b8b0fac76231fc31ebdcaaef7701803
ppc64le	libzip-1.5.1-2.module_el8.5.0+53+9945c2af.ppc64le.rpm	a28578327b37904da03606632cf8d7f0f28773e2a4ea30101b9d2e01ebea020b
ppc64le	libzip-tools-1.5.1-2.module_el8.5.0+53+9945c2af.ppc64le.rpm	ab61b23a5c38de84b64871d74ed144dcad54625231b35a2749de4561efc1575c
x86_64	libzip-devel-1.5.1-2.module_el8.3.0+2010+7c76a223.x86_64.rpm	437005e26b646de6f6e48c072ba5bd4ceac744b40060bf963dfb1f7d8361dd57
x86_64	libzip-1.5.1-2.module_el8.3.0+2010+7c76a223.x86_64.rpm	6b451d0ae8231903a160e7786cfa74ea523d797cf8d941477d84d2d8f45a62e2
x86_64	php-pecl-apcu-devel-5.1.12-2.module_el8.3.0+2010+7c76a223.x86_64.rpm	71c6cb656ada194f35365e55348574442616dbbc4847ee8c78045785c62ed5fc
x86_64	libzip-tools-1.5.1-2.module_el8.3.0+2010+7c76a223.x86_64.rpm	7a46d39e59bd3847a9f8b0762b5936075a823f1a9bf8a5108b33bb23663ed529
x86_64	php-pecl-zip-1.15.3-1.module_el8.3.0+2010+7c76a223.x86_64.rpm	acd6695d6318e64647a5cc4414fc018e8be25214be3534385b3db3ba03baeef4
x86_64	php-pecl-apcu-5.1.12-2.module_el8.3.0+2010+7c76a223.x86_64.rpm	e924ff6d12d6e0138cef4d68b8090ed97893236646b9faf52d7f9b6d7938088c

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.