[CLSA-2023:1692817457] Fix CVE(s): CVE-2023-3823, CVE-2023-3824
Type:
security
Severity:
Critical
Release date:
2023-08-23 19:04:22 UTC
Description:
* SECURITY UPDATE: external entity loading in XML without enabling it - debian/patches/CVE-2023-3823.patch: sanitize libxml2 globals before parsing. - CVE-2023-3823 * SECURITY UPDATE: buffer mismanagement in phar_dir_read() - debian/patches/php-upstream-CVE-2023-3824.patch: fix buffer mismanagement in phar_dir_read() - CVE-2023-3824
Updated packages:
  • libapache2-mod-php7.2_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:3bc4163277b22b9be800037dd146a86a2be1f2a1
  • libphp7.2-embed_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:48e94ebb8ffa42f2a3ff6fc860c6dbc54fcfc4f1
  • php7.2_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_all.deb
    sha:948ef68e529f4b83a0d8d7e333b01fd810cca17b
  • php7.2-bcmath_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:c542a322eac2978b28df1ab98249a27cd5c24717
  • php7.2-bz2_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:70c8963a1c540ec952d0df8d0a05150b42d467a5
  • php7.2-cgi_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:b2065e0b2abfc38de683c6c0d9450b4dec9f8296
  • php7.2-cli_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:410905bf77b07769276c6bf65e4acf523d72d8e3
  • php7.2-common_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:5a1f82eb5dae001a3294849a7e185a09ecb699c3
  • php7.2-curl_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:9068835cefe730c35f646e669ab70786cb127a73
  • php7.2-dba_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:b8a3eac7a140d5757ec6ccecf366c6192830112a
  • php7.2-dev_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:b2f6dd4fd9ff1083a340f0c8cb1a45d6f8c9cf72
  • php7.2-enchant_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:16f87640bfac29f86b4abe44c17a52c71ca44d5c
  • php7.2-fpm_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:9bba263ac0c4b1e9bf39ff018dc94d2175a23553
  • php7.2-gd_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:3219bff168d71bb0e2c49a5da05f9cc7140a951a
  • php7.2-gmp_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:02e8236614d9ed97ffb8cf09915aa76faa2c08bf
  • php7.2-imap_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:8dc0930fe8f6622a0371ef2adec27bdb22c9e135
  • php7.2-interbase_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:52afbd7bc51b8d9268f0f976d33a4ff6b2a6d0a8
  • php7.2-intl_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:35b5f05aa2644af3e2ace5615312bcdfe6e16473
  • php7.2-json_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:acce7dbb01ca2bcf1bf61856067b81b18e86be27
  • php7.2-ldap_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:17fcd7275f64a04759b7b1e226a24729279309d8
  • php7.2-mbstring_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:93b99646b3b90a5334cc82f8ec8a73e993ccbab0
  • php7.2-mysql_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:1a4047a303aff297d0b94b00b6c649fe91a1d425
  • php7.2-odbc_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:05ac5a3f28cb2a215ee50924a494f84ad6a95572
  • php7.2-opcache_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:d210133587cab43183d0e8b95efa1221f7f7dafe
  • php7.2-pgsql_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:074f42c5364b274100152e4bc9448b967351f879
  • php7.2-phpdbg_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:8c75ad98086fc45581f276a9279be25940d18f19
  • php7.2-pspell_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:b962d13b9c771d85d75a8cb1fd751433b40de113
  • php7.2-readline_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:c994ba65286122bd15b5decfc1c603660f1e71e9
  • php7.2-recode_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:234f8a3253dbb576e237bb2f37cd8e30c95d3e9f
  • php7.2-snmp_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:45378de20f6bd59bb182b075544565393db6dd18
  • php7.2-soap_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:ceae8e47d604623d34fddb88f43e0754523d29da
  • php7.2-sqlite3_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:7af2f179b56e12f9274a4200f179065ac174bfaa
  • php7.2-sybase_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:d258581a4745a37801c3514b819c56ebcf1cac89
  • php7.2-tidy_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:77ae8d10bed9be6504770a4c090131137795dfd8
  • php7.2-xml_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:1d764cd71a25331480d38a25a0a9a5688a9c375c
  • php7.2-xmlrpc_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:91c75811c083406b9cb8c4049a9a80fc5a21150a
  • php7.2-xsl_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_all.deb
    sha:dd1620d852a5736a2e2e45bb85c97e4a15bc6853
  • php7.2-zip_7.2.24-0ubuntu0.18.04.17+tuxcare.els1_amd64.deb
    sha:fbdcc12e63894279a915acce157699ef5d1bb46f
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.