RHSA-2023:2417MediumCVSS 8.1

Red Hat Security Advisory: php:8.1 security update

Published
May 9, 2023
Last Modified
June 26, 2026

🔗 CVE IDs covered (5)

📋 Description

CVE-2022-31628 — php: phar: infinite loop when decompressing quine gzip file CVE-2022-31629 — php: standard insecure cookie could be treated as a '__Host-' or '__Secure-' cookie by PHP applications CVE-2022-31630 — php: OOB read due to insufficient input validation in imageloadfont() CVE-2022-31631 — php: PDO:: quote() may return unquoted string due to an integer overflow CVE-2022-37454 — XKCP: buffer overflow in the SHA-3 reference implementation

🔗 References (9)