| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: php-common | Distribution: Unknown |
| Version: 7.4.33 | Vendor: Remi's RPM repository <https://rpms.remirepo.net/> #StandWithUkraine |
| Release: 23.fc40.remi | Build date: Tue Mar 18 07:36:53 2025 |
| Group: Development/Languages | Build host: builder.remirepo.net |
| Size: 13624420 | Source RPM: php-7.4.33-23.fc40.remi.src.rpm |
| Packager: Remi Collet | |
| Url: http://www.php.net/ | |
| Summary: Common files for PHP | |
The php-common package contains files used by both the php package and the php-cli package.
PHP and BSD
* Mon Mar 17 2025 Remi Collet <remi@remirepo.net> - 7.4.33-23
- Fix libxml streams use wrong `content-type` header when requesting a redirected resource
CVE-2025-1219
- Fix Stream HTTP wrapper header check might omit basic auth header
CVE-2025-1736
- Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
CVE-2025-1861
- Fix Streams HTTP wrapper does not fail for headers without colon
CVE-2025-1734
- Fix Header parser of `http` stream wrapper does not handle folded headers
CVE-2025-1217
- use oracle client library version 23.7 on x86_64 and aarch64
* Thu Feb 13 2025 Remi Collet <remi@remirepo.net> - 7.4.33-22
- backport fix for ICU 74+
- backport fix strict prototypes
* Wed Nov 27 2024 Remi Collet <remi@remirepo.net> - 7.4.33-21
- Fix Leak partial content of the heap through heap buffer over-read
CVE-2024-8929
* Fri Nov 22 2024 Remi Collet <remi@remirepo.net> - 7.4.33-20
- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface
GHSA-4w77-75f9-2c8w
- Fix OOB access in ldap_escape
CVE-2024-8932
- Fix Integer overflow in the dblib/firebird quoter causing OOB writes
CVE-2024-11236
- Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
CVE-2024-11234
- Fix Single byte overread with convert.quoted-printable-decode filter
CVE-2024-11233
* Fri Nov 15 2024 Remi Collet <remi@remirepo.net> - 7.4.33-19
- disable firebird on EL-10
* Thu Sep 26 2024 Remi Collet <remi@remirepo.net> - 7.4.33-18
- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI
CVE-2024-4577
- Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability
CVE-2024-8926
- Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
CVE-2024-8927
- Fix Logs from childrens may be altered
CVE-2024-9026
- Fix Erroneous parsing of multipart form data
CVE-2024-8925
- use ICU 74.2
* Mon Aug 26 2024 Remi Collet <remi@remirepo.net> - 7.4.33-17
- add backport for https://bugs.php.net/79589
error:14095126:SSL routines:ssl3_read_n:unexpected eof while reading
* Wed Jul 31 2024 Remi Collet <remi@remirepo.net> - 7.4.33-16
- use oracle client library version 23.5 on x86_64
* Tue Jun 04 2024 Remi Collet <remi@remirepo.net> - 7.4.33-15
- Fix filter bypass in filter_var FILTER_VALIDATE_URL
CVE-2024-5458
* Wed Apr 10 2024 Remi Collet <remi@remirepo.net> - 7.4.33-14
- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
CVE-2024-2756
- Fix password_verify can erroneously return true opening ATO risk
CVE-2024-3096
* Wed Mar 06 2024 Remi Collet <remi@remirepo.net> - 7.4.33-13
- patch test suite for zlib-ng
* Mon Feb 19 2024 Remi Collet <remi@remirepo.net> - 7.4.33-12
- more build patch for GCC 14
* Wed Feb 14 2024 Remi Collet <remi@remirepo.net> - 7.4.33-11
- add build patch for GCC 14
- use oracle client library version 21.13 on x86_64
* Tue Dec 12 2023 Remi Collet <remi@remirepo.net> - 7.4.33-10
- use ICU 73.2
- use oracle client library version 21.12 on x86_64, 19.19 on aarch64
- add fixes for libxml 2.11 and 2.12 from 8.1
* Thu Sep 21 2023 Remi Collet <remi@remirepo.net> - 7.4.33-9
- use oracle client library version 21.11 on x86_64, 19.19 on aarch64
- use official Oracle Instant Client RPM
* Tue Aug 01 2023 Remi Collet <remi@remirepo.net> - 7.4.33-8
- Fix Security issue with external entity loading in XML without enabling it
GHSA-3qrf-m4j2-pcrr CVE-2023-3823
- Fix Buffer mismanagement in phar_dir_read()
GHSA-jqcx-ccgc-xwhv CVE-2023-3824
- move httpd/nginx wants directive to config files in /etc
* Tue Jun 06 2023 Remi Collet <remi@remirepo.net> - 7.4.33-7
- Fix Missing error check and insufficient random bytes in HTTP Digest
authentication for SOAP
GHSA-76gg-c692-v2mw CVE-2023-3247
* Fri Apr 14 2023 Remi Collet <remi@remirepo.net> - 7.4.33-6
- use ICU 72.1
- use oracle client library version 21.10
- fix possible buffer overflow in date
- define %__phpize and %__phpconfig
/etc/php-zts.d /etc/php-zts.d/20-bz2.ini /etc/php-zts.d/20-calendar.ini /etc/php-zts.d/20-ctype.ini /etc/php-zts.d/20-curl.ini /etc/php-zts.d/20-exif.ini /etc/php-zts.d/20-fileinfo.ini /etc/php-zts.d/20-ftp.ini /etc/php-zts.d/20-gettext.ini /etc/php-zts.d/20-iconv.ini /etc/php-zts.d/20-phar.ini /etc/php-zts.d/20-sockets.ini /etc/php-zts.d/20-tokenizer.ini /etc/php.d /etc/php.d/20-bz2.ini /etc/php.d/20-calendar.ini /etc/php.d/20-ctype.ini /etc/php.d/20-curl.ini /etc/php.d/20-exif.ini /etc/php.d/20-fileinfo.ini /etc/php.d/20-ftp.ini /etc/php.d/20-gettext.ini /etc/php.d/20-iconv.ini /etc/php.d/20-phar.ini /etc/php.d/20-sockets.ini /etc/php.d/20-tokenizer.ini /etc/php.ini /usr/lib/.build-id /usr/lib/.build-id/15 /usr/lib/.build-id/15/a5565ff665b29f88a8e3bc4b7e6b8cf9b42284 /usr/lib/.build-id/31 /usr/lib/.build-id/31/a91de560af00601dfbf854dec8bea4a6d082ab /usr/lib/.build-id/34 /usr/lib/.build-id/34/cd108b1d4e2db922ac1ca0a17c8da4b359233f /usr/lib/.build-id/38 /usr/lib/.build-id/38/af5635242b05c5c5500f5250cfe3d7b9463698 /usr/lib/.build-id/42 /usr/lib/.build-id/42/a2e84f0d406994aa924e0b399229d1a585a63d /usr/lib/.build-id/44 /usr/lib/.build-id/44/1571556f1de74bb433409db33100b53d66eae9 /usr/lib/.build-id/48 /usr/lib/.build-id/48/095930f39b6be9851a1245455df5569c5797e3 /usr/lib/.build-id/48/572419f292ed482805b7dfc39351cff4c7fdaf /usr/lib/.build-id/4a /usr/lib/.build-id/4a/f0b6d81b38072c05f33f50ea877582a2df9aab /usr/lib/.build-id/56 /usr/lib/.build-id/56/0da58c86e5d5ccee3a5b35206ef929821463f4 /usr/lib/.build-id/6f /usr/lib/.build-id/6f/61739ffc0af30c6097e55bae57ed7cb71fae3a /usr/lib/.build-id/76 /usr/lib/.build-id/76/212048cc1f153bef5ed25122b3562dabbfe693 /usr/lib/.build-id/85 /usr/lib/.build-id/85/ad57c243132c5a1e54e1fe2a1a138cbfc015c5 /usr/lib/.build-id/89 /usr/lib/.build-id/89/8651ad91875fbecd4b677cb1d53bd503175a2f /usr/lib/.build-id/a1 /usr/lib/.build-id/a1/b31959ab560fb14494b1a0e1a13d1cf00066e5 /usr/lib/.build-id/b0 /usr/lib/.build-id/b0/62fc331db1f19c390d6bd196f473d173caf032 /usr/lib/.build-id/b4 /usr/lib/.build-id/b4/4799168359663204c960cf53a462d7808dd0f6 /usr/lib/.build-id/be /usr/lib/.build-id/be/5980ce6d46e5c08f5f8849c840eb7199bd6fc6 /usr/lib/.build-id/cf /usr/lib/.build-id/cf/2189015a3d5ebcc7cc53ed50d765192bbb2001 /usr/lib/.build-id/ea /usr/lib/.build-id/ea/26435806cfb24c8684cbe81a5951160fb7a8b2 /usr/lib/.build-id/eb /usr/lib/.build-id/eb/bac8d528d51f36432e015f9dd803669d7aeb39 /usr/lib/.build-id/f1 /usr/lib/.build-id/f1/ad037bf4290b1b8ba60e84a9abac84c23a4bad /usr/lib/.build-id/f2 /usr/lib/.build-id/f2/c1b4ccabcc1d4ce974c6586c27a6c2ac1c36fb /usr/lib/.build-id/f2/cdf486241e8ffe66086dd2e7cd4a3e2235123e /usr/lib64/php /usr/lib64/php-zts /usr/lib64/php-zts/modules /usr/lib64/php-zts/modules/bz2.so /usr/lib64/php-zts/modules/calendar.so /usr/lib64/php-zts/modules/ctype.so /usr/lib64/php-zts/modules/curl.so /usr/lib64/php-zts/modules/exif.so /usr/lib64/php-zts/modules/fileinfo.so /usr/lib64/php-zts/modules/ftp.so /usr/lib64/php-zts/modules/gettext.so /usr/lib64/php-zts/modules/iconv.so /usr/lib64/php-zts/modules/phar.so /usr/lib64/php-zts/modules/sockets.so /usr/lib64/php-zts/modules/tokenizer.so /usr/lib64/php/modules /usr/lib64/php/modules/bz2.so /usr/lib64/php/modules/calendar.so /usr/lib64/php/modules/ctype.so /usr/lib64/php/modules/curl.so /usr/lib64/php/modules/exif.so /usr/lib64/php/modules/fileinfo.so /usr/lib64/php/modules/ftp.so /usr/lib64/php/modules/gettext.so /usr/lib64/php/modules/iconv.so /usr/lib64/php/modules/phar.so /usr/lib64/php/modules/sockets.so /usr/lib64/php/modules/tokenizer.so /usr/share/doc/pecl /usr/share/doc/php-common /usr/share/doc/php-common/CODING_STANDARDS.md /usr/share/doc/php-common/CONTRIBUTING.md /usr/share/doc/php-common/EXTENSIONS /usr/share/doc/php-common/NEWS /usr/share/doc/php-common/README.REDIST.BINS /usr/share/doc/php-common/README.md /usr/share/doc/php-common/UPGRADING /usr/share/doc/php-common/UPGRADING.INTERNALS /usr/share/doc/php-common/docs /usr/share/doc/php-common/docs/input-filter.md /usr/share/doc/php-common/docs/mailinglist-rules.md /usr/share/doc/php-common/docs/output-api.md /usr/share/doc/php-common/docs/parameter-parsing-api.md /usr/share/doc/php-common/docs/release-process.md /usr/share/doc/php-common/docs/self-contained-extensions.md /usr/share/doc/php-common/docs/streams.md /usr/share/doc/php-common/docs/unix-build-system.md /usr/share/doc/php-common/php.ini-development /usr/share/doc/php-common/php.ini-production /usr/share/licenses/php-common /usr/share/licenses/php-common/LICENSE /usr/share/licenses/php-common/TSRM_LICENSE /usr/share/licenses/php-common/ZEND_LICENSE /usr/share/licenses/php-common/libmagic_LICENSE /usr/share/licenses/php-common/timelib_LICENSE /usr/share/php /usr/share/tests /usr/share/tests/pecl /var/lib/php /var/lib/php/peclxml
Generated by rpm2html 1.8.1
Fabrice Bellet, Fri Mar 21 05:47:15 2025