ALSA-2019:3736

[ALSA-2019:3736] Critical: php:7.3 security update

Type:

security

Severity:

critical

Release date:

2019-11-06

Description:

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: underflow in env_path_info in fpm_main.c (CVE-2019-11043)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	php-pecl-apcu-devel-5.1.17-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	1964ccb8f135e7feacfd9edeb562fa728fe97bd3922411a8809f869eca97bbaa
aarch64	libzip-tools-1.5.2-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	317043760c5e314a2cfab23b0d0e5c5d75ee697da36d7ceae2b128f5e4ed42e2
aarch64	libzip-devel-1.5.2-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	3cc6b6aec436ec73817275970a9e75c779ce5e5454cd351fdbbf6c684d49a3ac
aarch64	php-pecl-zip-1.15.4-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	53b1c944ad4bcbb756600983eb3c0122cdeec9f4cb8518d553364b1d658d1ce2
aarch64	php-pecl-apcu-5.1.17-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	94c2f0b475915bcbdd2a1f81da42806e32818c563bae51e2cc622aa7099beb54
aarch64	libzip-1.5.2-1.module_el8.4.0+2229+b272fdef.aarch64.rpm	9f5cefe2545a165a3b7a986027f1b73dbacd0da3a26cc31c6c56428da8f71b6f
noarch	apcu-panel-5.1.17-1.module_el8.3.0+2009+b272fdef.noarch.rpm	f0b7523c820252955de32c9e55195b1026fbc037b717be1df3b9b8add1db16ae
noarch	php-pear-1.10.9-1.module_el8.3.0+2009+b272fdef.noarch.rpm	fd312ba9b6fdb8eacac6d6ffd2c4fa47ed4f1ce4fb727a901e4d4d961188604e
ppc64le	libzip-tools-1.5.2-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	00b6add9a5651c1f19ce769a9df4ca7033dc49757ea263dd8c2bb98aa4588002
ppc64le	libzip-1.5.2-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	386d4e3f4998245eae070ecf79e7554caf8b8ea57db1a5bcbf0434dc8dceb08f
ppc64le	php-pecl-apcu-5.1.17-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	4587c4165d6292d8298cd0dd920e2b1350889da6af0251e6b28bc94835da9545
ppc64le	php-pecl-apcu-devel-5.1.17-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	a23206ddc1a7dd1269f0278f5a2de7199dbe50da7183fa7b8ab08e541ce0b559
ppc64le	libzip-devel-1.5.2-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	b2f166ae39731fbd6a25e2c76baf769b0b2d08dfbd063afa412f5b0165a6618c
ppc64le	php-pecl-zip-1.15.4-1.module_el8.5.0+152+112d3b8c.ppc64le.rpm	be4d6df79288e8402acfaec75565517d89801c7dda110fdaa660a0ee0f4ace7f
x86_64	php-pecl-apcu-devel-5.1.17-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	015a9f482f6f91a480c056286a2ffd956ef5c6bd0ee43b09e38488b1e8cde96e
x86_64	php-pecl-apcu-5.1.17-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	4ca3d708cc868cb4aba8de45311fb0f4fd3acbb68673d276ec8ed8048c53cddf
x86_64	libzip-1.5.2-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	74ddf5829b9c377fba7790983f57139e2f58a2553b99940d638d439c71f59a31
x86_64	libzip-devel-1.5.2-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	9d9d44bd367e1b6ca63336fdc90475d2f41271da03e6c9e2af56b9dd824966d4
x86_64	libzip-tools-1.5.2-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	c002d0bc75bc864c63147f13c1c1821c7193db44ac165128ec18f15d2029f7c6
x86_64	php-pecl-zip-1.15.4-1.module_el8.3.0+2009+b272fdef.x86_64.rpm	f4a151bc46ecf13f5b8a083c59c4bfec82647805a9850c5febf0298da5d68f15

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.