Bugs fixes in "php8.1"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2024-3096 | In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00 | 2024-05-03 |
| CVE | CVE-2024-2756 | Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard in | 2024-05-03 |
| CVE | CVE-2022-4900 | A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow. | 2024-05-03 |
| CVE | CVE-2024-3096 | In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00 | 2024-05-03 |
| CVE | CVE-2024-2756 | Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard in | 2024-05-03 |
| CVE | CVE-2022-4900 | A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow. | 2024-05-03 |
| CVE | CVE-2024-3096 | In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00 | 2024-05-02 |
| CVE | CVE-2024-2756 | Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard in | 2024-05-02 |
| CVE | CVE-2022-4900 | A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow. | 2024-05-02 |
| CVE | CVE-2024-3096 | In PHP version 8.1.* before 8.1.28, 8.2.* before 8.2.18, 8.3.* before 8.3.5, if a password stored with password_hash() starts with a null byte (\x00 | 2024-05-02 |
| CVE | CVE-2024-2756 | Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard in | 2024-05-02 |
| CVE | CVE-2022-4900 | A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow. | 2024-05-02 |
| Launchpad | 2057576 | php-fpm sometimes SIGSEGVs (signal 11) when running fpm_get_status | 2024-04-26 |
| Launchpad | 2057576 | php-fpm sometimes SIGSEGVs (signal 11) when running fpm_get_status | 2024-04-26 |
| Launchpad | 2054621 | Fix PHP crashes due to accessing dangling pointers | 2024-04-11 |
| Launchpad | 2054621 | Fix PHP crashes due to accessing dangling pointers | 2024-04-11 |
| Launchpad | 2054621 | Fix PHP crashes due to accessing dangling pointers | 2024-03-29 |
| Launchpad | 2054621 | Fix PHP crashes due to accessing dangling pointers | 2024-03-29 |
| CVE | CVE-2023-3247 | GHSA-76gg-c692-v2mw: Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP | 2023-07-03 |
| CVE | CVE-2023-3247 | GHSA-76gg-c692-v2mw: Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP | 2023-07-03 |
About
-
Send Feedback to @ubuntu_updates
