Fedora 38 : php (2023-2455981016)

high Nessus Plugin ID 177270

Language:

Synopsis

The remote Fedora host is missing one or more security updates.

Description

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-2455981016 advisory.

- **PHP version 8.2.7** (08 Jun 2023) **Core:** * Fixed bug [GH-11152](https://github.com/php/php- src/issues/11152) (Unable to alias namespaces containing reserved class names). (ilutov) * Fixed bug [GH-9068](https://github.com/php/php-src/issues/9068) (Conditional jump or move depends on uninitialised value(s)). (nielsdos) * Fixed bug [GH-11189](https://github.com/php/php-src/issues/11189) (Exceeding memory limit in zend_hash_do_resize leaves the array in an invalid state). (Bob) * Fixed bug [GH-11063](https://github.com/php/php-src/issues/11063) (Compilation error on old GCC versions).
(ingamedeo) * Fixed bug [GH-11222](https://github.com/php/php-src/issues/11222) (foreach by-ref may jump over keys during a rehash). (Bob) **Date:** * Fixed bug [GH-11281](https://github.com/php/php- src/issues/11281) (DateTimeZone::getName() does not include seconds in offset). (nielsdos) **Exif:** * Fixed bug [GH-10834](https://github.com/php/php-src/issues/10834) (exif_read_data() cannot read smaller stream wrapper chunk sizes). (nielsdos) **FPM:** * Fixed bug [GH-10461](https://github.com/php/php- src/issues/10461) (PHP-FPM segfault due to after free usage of child->ev_std(out|err)). (Jakub Zelenka) * Fixed bug php#64539 (FPM status page: query_string not properly JSON encoded). (Jakub Zelenka) * Fixed memory leak for invalid primary script file handle. (Jakub Zelenka) **Hash:** * Fixed bug [GH-11180](https://github.com/php/php-src/issues/11180) (hash_file() appears to be restricted to 3 arguments). (nielsdos) **LibXML:** * Fixed bug [GH-11160](https://github.com/php/php-src/issues/11160) (Few tests failed building with new libxml 2.11.0). (nielsdos) **MBString:** * Fix bug [GH-11217](https://github.com/php/php-src/issues/11217) (Segfault in mb_strrpos / mb_strripos when using negative offset and ASCII encoding). (ilutov) **Opcache:** * Fixed bug [GH-11134](https://github.com/php/php-src/issues/11134) (Incorrect match default branch optimization).
(ilutov) * Fixed too wide OR and AND range inference. (nielsdos) * Fixed missing class redeclaration error with OPcache enabled. (ilutov) * Fixed bug [GH-11245](https://github.com/php/php-src/issues/11245) (In some specific cases SWITCH with one default statement will cause segfault). (nielsdos) **PCNTL:** * Fixed maximum argument count of pcntl_forkx(). (nielsdos) **PGSQL:** * Fixed parameter parsing of pg_lo_export(). (kocsismate) **Phar:** * Fixed bug [GH-11099](https://github.com/php/php- src/issues/11099) (Generating phar.php during cross-compile can't be done). (peter279k) **Soap:** * Fixed bug [GHSA-76gg-c692-v2mw](https://github.com/php/php-src/security/advisories/GHSA-76gg-c692-v2mw) (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP). (nielsdos, timwolla) * Fixed bug [GH-8426](https://github.com/php/php-src/issues/8426) (make test fail while soap extension build). (nielsdos) **SPL:** * Fixed bug [GH-11178](https://github.com/php/php- src/issues/11178) (Segmentation fault in spl_array_it_get_current_data (PHP 8.1.18)). (nielsdos)
**Standard:** * Fixed bug [GH-11138](https://github.com/php/php-src/issues/11138) (move_uploaded_file() emits open_basedir warning for source file). (ilutov) * Fixed bug [GH-11274](https://github.com/php/php- src/issues/11274) (POST/PATCH request switches to GET after a HTTP 308 redirect). (nielsdos) **Streams:**
* Fixed bug [GH-10031](https://github.com/php/php-src/issues/10031) ([Stream] STREAM_NOTIFY_PROGRESS over HTTP emitted irregularly for last chunk of data). (nielsdos) * Fixed bug [GH-11175](https://github.com/php/php-src/issues/11175) (Stream Socket Timeout). (nielsdos) * Fixed bug [GH-11177](https://github.com/php/php-src/issues/11177) (ASAN UndefinedBehaviorSanitizer when timeout = -1 passed to stream_socket_accept/stream_socket_client). (nielsdos) (FEDORA-2023-2455981016)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected php package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2023-2455981016

Plugin Details

Severity: High

ID: 177270

File Name: fedora_2023-2455981016.nasl

Version: 1.0

Type: local

Agent: unix

Published: 6/14/2023

Updated: 6/14/2023

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: cpe:/o:fedoraproject:fedora:38, p-cpe:/a:fedoraproject:fedora:php

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 6/6/2023

Vulnerability Publication Date: 6/6/2023

Reference Information