Fedora 38 : php (2023-2455981016)

high Nessus Plugin ID 177270

Language:

Synopsis

The remote Fedora host is missing one or more security updates.

Description

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-2455981016 advisory.

**PHP version 8.2.7** (08 Jun 2023)

**Core:**

* Fixed bug [GH-11152](https://github.com/php/php-src/issues/11152) (Unable to alias namespaces containing reserved class names). (ilutov)
* Fixed bug [GH-9068](https://github.com/php/php-src/issues/9068) (Conditional jump or move depends on uninitialised value(s)). (nielsdos)
* Fixed bug [GH-11189](https://github.com/php/php-src/issues/11189) (Exceeding memory limit in zend_hash_do_resize leaves the array in an invalid state). (Bob)
* Fixed bug [GH-11063](https://github.com/php/php-src/issues/11063) (Compilation error on old GCC versions). (ingamedeo)
* Fixed bug [GH-11222](https://github.com/php/php-src/issues/11222) (foreach by-ref may jump over keys during a rehash). (Bob)

**Date:**

* Fixed bug [GH-11281](https://github.com/php/php-src/issues/11281) (DateTimeZone::getName() does not include seconds in offset). (nielsdos)

**Exif:**

* Fixed bug [GH-10834](https://github.com/php/php-src/issues/10834) (exif_read_data() cannot read smaller stream wrapper chunk sizes). (nielsdos)

**FPM:**

* Fixed bug [GH-10461](https://github.com/php/php-src/issues/10461) (PHP-FPM segfault due to after free usage of child->ev_std(out|err)). (Jakub Zelenka)
* Fixed bug php#64539 (FPM status page: query_string not properly JSON encoded). (Jakub Zelenka)
* Fixed memory leak for invalid primary script file handle. (Jakub Zelenka)

**Hash:**

* Fixed bug [GH-11180](https://github.com/php/php-src/issues/11180) (hash_file() appears to be restricted to 3 arguments). (nielsdos)

**LibXML:**

* Fixed bug [GH-11160](https://github.com/php/php-src/issues/11160) (Few tests failed building with new libxml 2.11.0). (nielsdos)

**MBString:**

* Fix bug [GH-11217](https://github.com/php/php-src/issues/11217) (Segfault in mb_strrpos / mb_strripos when using negative offset and ASCII encoding). (ilutov)

**Opcache:**

* Fixed bug [GH-11134](https://github.com/php/php-src/issues/11134) (Incorrect match default branch optimization). (ilutov)
* Fixed too wide OR and AND range inference. (nielsdos)
* Fixed missing class redeclaration error with OPcache enabled. (ilutov)
* Fixed bug [GH-11245](https://github.com/php/php-src/issues/11245) (In some specific cases SWITCH with one default statement will cause segfault). (nielsdos)

**PCNTL:**

* Fixed maximum argument count of pcntl_forkx(). (nielsdos)

**PGSQL:**

* Fixed parameter parsing of pg_lo_export(). (kocsismate)

**Phar:**

* Fixed bug [GH-11099](https://github.com/php/php-src/issues/11099) (Generating phar.php during cross- compile can't be done). (peter279k)

**Soap:**

* Fixed bug [GHSA-76gg-c692-v2mw](https://github.com/php/php-src/security/advisories/GHSA-76gg-c692-v2mw) (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP). (nielsdos, timwolla)
* Fixed bug [GH-8426](https://github.com/php/php-src/issues/8426) (make test fail while soap extension build). (nielsdos)

**SPL:**

* Fixed bug [GH-11178](https://github.com/php/php-src/issues/11178) (Segmentation fault in spl_array_it_get_current_data (PHP 8.1.18)). (nielsdos)

**Standard:**

* Fixed bug [GH-11138](https://github.com/php/php-src/issues/11138) (move_uploaded_file() emits open_basedir warning for source file). (ilutov)
* Fixed bug [GH-11274](https://github.com/php/php-src/issues/11274) (POST/PATCH request switches to GET after a HTTP 308 redirect). (nielsdos)

**Streams:**

* Fixed bug [GH-10031](https://github.com/php/php-src/issues/10031) ([Stream] STREAM_NOTIFY_PROGRESS over HTTP emitted irregularly for last chunk of data). (nielsdos)
* Fixed bug [GH-11175](https://github.com/php/php-src/issues/11175) (Stream Socket Timeout). (nielsdos)
* Fixed bug [GH-11177](https://github.com/php/php-src/issues/11177) (ASAN UndefinedBehaviorSanitizer when timeout = -1 passed to stream_socket_accept/stream_socket_client). (nielsdos)



Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected php package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2023-2455981016

Plugin Details

Severity: High

ID: 177270

File Name: fedora_2023-2455981016.nasl

Version: 1.1

Type: local

Agent: unix

Published: 6/14/2023

Updated: 11/14/2024

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Vulnerability Information

CPE: cpe:/o:fedoraproject:fedora:38, p-cpe:/a:fedoraproject:fedora:php

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 6/6/2023

Vulnerability Publication Date: 6/6/2023

Reference Information