Advisories ยป MGASA-2022-0234

Updated php packages fix security vulnerability

Publication date: 18 Jun 2022
Modification date: 18 Jun 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-31625 , CVE-2022-31626


CLI -Fixed bug #8575 (CLI closes standard streams too early).
Core -Fixed Haiku ZTS builds.
Date -Fixed bug #8471 (Segmentation fault when converting immutable and
mutable DateTime instances created using reflection).
php-fpm - Fixed bug #72185 writes empty fcgi record causing nginx 502.
Mysqlnd - Fixed bug #81719: mysqlnd/pdo password buffer overflow.
OPcache - Fixed bug #8466 (ini_get() is optimized out when the option does
not exist).
Pcntl - Fixed Haiku build.
Pgsql - Fixed bug #81720: Uninitialized array in pg_query_params().
Soap - Fixed bug #8578 (Error on wrong parameter on SoapHeader
Fixed bug #8538 (SoapClient may strip parts of nmtokens).
SPL - Fixed bug #8235 (iterator_count() may run indefinitely).
Zip - Fixed type for index in ZipArchive::replaceFile.