[CLSA-2023:1692817288] Fix CVE(s): CVE-2023-3824, CVE-2023-3823
Type:
security
Severity:
Critical
Release date:
2023-08-23 19:01:36 UTC
Description:
* SECURITY UPDATE: external entity loading in XML without enabling it - debian/patches/php-7.1-CVE-2023-3823.patch: sanitize libxml2 globals before parsing. - CVE-2023-3823 * SECURITY UPDATE: buffer mismanagement in phar_dir_read() - debian/patches/php-upstream-CVE-2023-3824.patch: fix buffer mismanagement in phar_dir_read() - CVE-2023-3824
Updated packages:
  • libapache2-mod-php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:20d8308086a5674424dd871c178d882a10032e7e
  • libphp7.0-embed_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:20949b81b3c21025685f565970560a676c4b7108
  • php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_all.deb
    sha:340b7d1cf628dc66b2047bb1ba8ff5107fa85ed6
  • php7.0-bcmath_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:b6e9058483b54b14e49de2e58614c0b1a16113e7
  • php7.0-bz2_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:1c9fa5643fda39866925410e0f3c3ea0a7d537ec
  • php7.0-cgi_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:28fe1eeba3a2b3e2e3a773c861eccdf06f0fb64b
  • php7.0-cli_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:4c91e9a06197d7ad189e556731e17dece6dc18f4
  • php7.0-common_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:a0edeaa6174b09134a8699b1ea1a5e23d876fc68
  • php7.0-curl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:9deaeff9d19448508392241843a2d1f7844e4c37
  • php7.0-dba_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:5df3a2b76a85e91bf9dadc1c7148ac30d2c50885
  • php7.0-dev_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:eafd2425123173d927853243e4dd89abe8632bb7
  • php7.0-enchant_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:537e18f3d125aa4098ac55307718e111279ebe52
  • php7.0-fpm_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:7b61f5f2034197b8b673a4b8bfa70a823d5cf08b
  • php7.0-gd_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:d939d7b86f173397913ef72fb86b6f023aa71d50
  • php7.0-gmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:917ba3d3049205e0436def1d307064e543154f9c
  • php7.0-imap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:c871662d9ad78e31d75a3cd440aa872e3637c09c
  • php7.0-interbase_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:04d0d6d938aaef314b8a7b038674f329b79897ea
  • php7.0-intl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:8b916a2d16bee5722bcc86d1c2f31287ae22ffea
  • php7.0-json_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:37f563cb99571cd7f8206cf80c0c73499fdf8afc
  • php7.0-ldap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:3890dd783e4eb85c3cfa12b95b530a8d1ec04dab
  • php7.0-mbstring_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:4410c76e6b64dfbe8180acc546ac93a1429f766b
  • php7.0-mcrypt_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:238849574257867c79a2b42ec8fc65704a818183
  • php7.0-mysql_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:3ad972e44cbd62a95f41dec0117eca88a42fb7a4
  • php7.0-odbc_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:29d3d8c955f00d55f115f56517b01be0e267e494
  • php7.0-opcache_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:13ca1fcd716438aa6e25be95dab34cf93f9cecec
  • php7.0-pgsql_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:65ee797125cd6d32524fe91632cb7ad6ee703016
  • php7.0-phpdbg_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:7d17cb9c67023be276622799cd7e5258e03b36d3
  • php7.0-pspell_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:bfa6d133d1efb89d744e9fe2a043b2bde8c90647
  • php7.0-readline_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:6e67eb6f418766ab9e4386859ba2edb2ab0acaa4
  • php7.0-recode_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:bdb2a95ddca74df280d4daacc8aea8a40d0bcf56
  • php7.0-snmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:107180ebf4f385fcfe35f7d90d7b09d63c1053c9
  • php7.0-soap_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:a8b7018f19a337d6825191bc410845e403c993ff
  • php7.0-sqlite3_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:0b7106297fbaf08dc277504203d846ce94aee164
  • php7.0-sybase_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:ffca82cdd8d9f24b69291930085ffbf8036bbf21
  • php7.0-tidy_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:1e97f69581a19335efe9affd1298d74ff40e432a
  • php7.0-xml_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:8438602241c4596ac6c7684bd193f382dcd4f278
  • php7.0-xmlrpc_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:932101e958c52e800cadf3ba09ab51f5abfad4e6
  • php7.0-xsl_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_all.deb
    sha:1122b1d324321ee851a996ca43b5d1d8523e9042
  • php7.0-zip_7.0.33-0ubuntu0.16.04.17+tuxcare.els6_amd64.deb
    sha:055acf91f5aa95aa8e8325a693ec0466041fa161
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.