Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-202211-03
HistoryNov 19, 2022 - 12:00 a.m.

PHP: Multiple Vulnerabilities

2022-11-1900:00:00
Gentoo Foundation
security.gentoo.org
16

0.016 Low

EPSS

Percentile

87.4%

JSON

Background

PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML.

Description

Multiple vulnerabilities have been discovered in PHP. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All PHP 7.4 users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-lang/php-7.4.33"

All PHP 8.0 users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-lang/php-8.0.25"

All PHP 8.1 users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-lang/php-8.1.12"
OSVersionArchitecturePackageVersionFilename
Gentooanyalldev-lang/php< 8.1.12UNKNOWN

Related

openvas 35
osv 19
nessus 65
ubuntu 5
fedora 8
debian 5
almalinux 4
redhat 4
rocky 2
oraclelinux 4
mageia 1
slackware 3
altlinux 6
suse 2
cnvd 1
cvelist 3
debiancve 4
veracode 3
redhatcve 3
redos 1
prion 3
alpinelinux 3
cve 4
ubuntucve 3
ibm 1
githubexploit 1
cbl_mariner 2
checkpoint_advisories 1
amazon 2
github 1
openvas
openvas
Debian: Security Advisory (DSA-5277-1)
2022-11-15 00:00:00
Ubuntu: Security Advisory (USN-5717-1)
2022-11-09 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2023-1332)
2023-02-09 00:00:00
osv
osv
php7.2, php7.4, php8.1 vulnerabilities
2022-11-08 14:42:27
php7.4 - security update
2022-11-13 00:00:00
Moderate: php security update
2023-04-06 15:53:36
nessus
nessus
Debian DSA-5277-1 : php7.4 - security update
2022-11-14 00:00:00
GLSA-202211-03 : PHP: Multiple Vulnerabilities
2022-11-22 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : PHP vulnerabilities (USN-5717-1)
2022-11-09 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2022-11-08 00:00:00
PHP vulnerabilities
2023-03-02 00:00:00
Python vulnerability
2023-03-07 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: php-8.1.12-1.fc37
2022-11-10 22:53:48
[SECURITY] Fedora 36 Update: php-8.1.12-1.fc36
2022-11-03 15:58:44
[SECURITY] Fedora 36 Update: php-8.1.11-1.fc36
2022-10-06 15:15:28
debian
debian
[SECURITY] [DSA 5277-1] php7.4 security update
2022-11-13 18:52:43
[SECURITY] [DLA 3243-1] php7.3 security update
2022-12-15 18:33:40
[SECURITY] [DLA 3174-1] pysha3 security update
2022-10-31 10:47:43
almalinux
almalinux
Moderate: php:8.0 security update
2023-02-21 00:00:00
Moderate: php:8.1 security update
2023-05-09 00:00:00
Moderate: php security update
2023-02-28 00:00:00
redhat
redhat
(RHSA-2023:2417) Moderate: php:8.1 security update
2023-05-09 05:10:10
(RHSA-2023:2903) Moderate: php:7.4 security update
2023-05-16 05:57:44
(RHSA-2023:0965) Moderate: php security update
2023-02-28 07:53:30
rocky
rocky
php security update
2023-04-06 15:53:36
php:8.0 security update
2023-02-22 01:08:53
oraclelinux
oraclelinux
8.1 security update
2023-05-15 00:00:00
php security update
2023-02-28 00:00:00
php:7.4 security update
2023-05-24 00:00:00
mageia
mageia
Updated php packages fix security vulnerability
2022-10-08 23:22:22
slackware
slackware
[slackware-security] php
2022-09-30 18:00:43
[slackware-security] php
2022-11-10 19:52:56
[slackware-security] php80/php81
2022-10-31 23:47:05
altlinux
altlinux
Security fix for the ALT Linux 10 package php8.2 version 8.1.12-alt1
2022-10-31 00:00:00
Security fix for the ALT Linux 10 package php8.1 version 8.1.11-alt1
2022-10-11 00:00:00
Security fix for the ALT Linux 10 package php8.2 version 8.1.11-alt1
2022-09-30 00:00:00
suse
suse
Security update for php7 (moderate)
2022-11-01 00:00:00
Security update for php8 (important)
2022-10-19 00:00:00
cnvd
cnvd
PHP Denial of Service Vulnerability
2022-09-30 00:00:00
cvelist
cvelist
CVE-2022-31630 OOB read due to insufficient input validation in imageloadfont()
2022-11-14 06:53:06
CVE-2022-31629 $_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
2022-09-28 00:00:00
CVE-2022-31628 phar wrapper can occur dos when using quine gzip file
2022-09-27 00:00:00
debiancve
debiancve
CVE-2022-31630
2022-11-14 07:15:00
CVE-2022-31628
2022-09-28 23:15:00
CVE-2022-31629
2022-09-28 23:15:00
veracode
veracode
Denial Of Service (DoS)
2022-09-30 11:08:30
Arbitrary Code Execution
2022-10-27 03:36:20
Insecure Cookie
2022-09-30 11:10:30
redhatcve
redhatcve
CVE-2022-31628
2022-10-13 14:29:46
CVE-2022-31630
2022-11-02 04:55:54
CVE-2022-31629
2022-10-13 14:29:56
redos
redos
ROS-20221222-04
2022-12-22 00:00:00
prion
prion
Design/Logic Flaw
2022-11-14 07:15:00
Code injection
2022-09-28 23:15:00
Code injection
2022-09-28 23:15:00
alpinelinux
alpinelinux
CVE-2022-31630
2022-11-14 07:15:00
CVE-2022-31628
2022-09-28 23:15:00
CVE-2022-31629
2022-09-28 23:15:00
cve
cve
CVE-2022-31630
2022-11-14 07:15:00
CVE-2022-31629
2022-09-28 23:15:00
CVE-2022-31628
2022-09-28 23:15:00
ubuntucve
ubuntucve
CVE-2022-31630
2022-10-31 00:00:00
CVE-2022-31628
2022-09-28 00:00:00
CVE-2022-31629
2022-09-28 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in PHP may affect IBM Spectrum Sentinel Anomaly Scan Engine (CVE-2021-21703, CVE-2021-21708, CVE-2021-21707, CVE-2022-31629, CVE-2022-31628)
2022-12-16 17:01:05
githubexploit
githubexploit
Exploit for Vulnerability in Php
2022-10-07 08:15:23
cbl_mariner
cbl_mariner
CVE-2022-31629 affecting package php 7.4.14-3
2024-05-19 21:07:24
CVE-2022-31628 affecting package php 7.4.14-3
2024-05-19 21:07:24
checkpoint_advisories
checkpoint_advisories
PHP Authentication Bypass (CVE-2022-31629)
2022-11-24 00:00:00
amazon
amazon
Important: python3
2022-12-01 20:31:00
Important: python36
2022-12-01 17:34:00
github
github
Buffer overflow in sponge queue functions
2023-04-26 17:39:58

0.016 Low

EPSS

Percentile

87.4%

JSON
Related for GLSA-202211-03
openvas35osv19nessus65ubuntu5fedora8debian5almalinux4redhat4rocky2oraclelinux4mageia1slackware3altlinux6suse2cnvd1cvelist3debiancve4veracode3redhatcve3redos1prion3alpinelinux3cve4ubuntucve3ibm1githubexploit1cbl_mariner2checkpoint_advisories1amazon2github1