RHSA-2023:2903MediumCVSS 8.1

Red Hat Security Advisory: php:7.4 security update

Published
May 16, 2023
Last Modified
June 26, 2026

🔗 CVE IDs covered (6)

📋 Description

CVE-2017-8923 — php: Overflowing the length of string causes crash CVE-2022-31628 — php: phar: infinite loop when decompressing quine gzip file CVE-2022-31629 — php: standard insecure cookie could be treated as a '__Host-' or '__Secure-' cookie by PHP applications CVE-2022-31630 — php: OOB read due to insufficient input validation in imageloadfont() CVE-2022-31631 — php: PDO:: quote() may return unquoted string due to an integer overflow CVE-2022-37454 — XKCP: buffer overflow in the SHA-3 reference implementation

🔗 References (9)