| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: php-pdo | Distribution: CentOS |
| Version: 8.0.30 | Vendor: CentOS |
| Release: 6.el9 | Build date: Fri Jun 5 15:17:32 2026 |
| Group: Unspecified | Build host: aarch64-02.stream.rdu2.redhat.com |
| Size: 274085 | Source RPM: php-8.0.30-6.el9.src.rpm |
| Packager: builder@centos.org | |
| Url: http://www.php.net/ | |
| Summary: A database access abstraction module for PHP applications | |
The php-pdo package contains a dynamic shared object that will add a database access abstraction layer to PHP. This module provides a common interface for accessing MySQL, PostgreSQL or other databases.
PHP
* Fri Jun 05 2026 Remi Collet <rcollet@redhat.com> - 8.0.30-6
- Fix XSS within status endpoint
CVE-2026-6735
- Fix Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init()
CVE-2026-7259
- Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map
CVE-2026-6722
- Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION
CVE-2026-7261
- Fix Broken Apache map value NULL check
CVE-2026-7262
- Fix Signed integer overflow of char array offset
CVE-2026-7568
- Fix Consistently pass unsigned char to ctype.h functions
CVE-2026-7258
* Fri Jan 16 2026 Remi Collet <rcollet@redhat.com> - 8.0.30-5
- Fix Null byte termination in dns_get_record()
GHSA-www2-q4fc-65wf
- Fix Heap buffer overflow in array_merge()
CVE-2025-14178
- Fix Information Leak of Memory in getimagesize
CVE-2025-14177
* Fri Oct 03 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-4
- Fix pgsql extension does not check for errors during escaping
CVE-2025-1735
- Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
CVE-2025-6491
- Fix Null byte termination in hostnames
CVE-2025-1220
- Fix soap memory corruption
- Fix ldap_set_option() not applied on different ldap connections
* Thu Mar 13 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-3
- Fix libxml streams use wrong `content-type` header when requesting a redirected resource
CVE-2025-1219
- Fix Stream HTTP wrapper header check might omit basic auth header
CVE-2025-1736
- Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
CVE-2025-1861
- Fix Streams HTTP wrapper does not fail for headers without colon
CVE-2025-1734
- Fix Header parser of `http` stream wrapper does not handle folded headers
CVE-2025-1217
* Tue Jan 21 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-2
- Fix Leak partial content of the heap through heap buffer over-read
CVE-2024-8929
- Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
CVE-2024-11234
- Fix Single byte overread with convert.quoted-printable-decode filter
CVE-2024-11233
- Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
CVE-2024-8927
- Fix Logs from childrens may be altered
CVE-2024-9026
- Fix Erroneous parsing of multipart form data
CVE-2024-8925
- Fix filter bypass in filter_var FILTER_VALIDATE_URL
CVE-2024-5458
- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
CVE-2024-2756
- Fix password_verify can erroneously return true opening ATO risk
CVE-2024-3096
/etc/php.d/20-pdo.ini /etc/php.d/20-sqlite3.ini /etc/php.d/30-pdo_sqlite.ini /usr/lib/.build-id /usr/lib/.build-id/01 /usr/lib/.build-id/01/aa8054401a315bbdd56f586703856ae0b4ec54 /usr/lib/.build-id/0d /usr/lib/.build-id/0d/645856255ca569d2328a9c690321bdc2db9144 /usr/lib/.build-id/14 /usr/lib/.build-id/14/7c32a4bd33ada411a7c53b42c7a452663abb67 /usr/lib64/php/modules/pdo.so /usr/lib64/php/modules/pdo_sqlite.so /usr/lib64/php/modules/sqlite3.so
Generated by rpm2html 1.8.1
Fabrice Bellet, Thu Jun 11 04:42:20 2026