VDB
ALSA-2024%3A10951
ALSA-2024%3A10951
PUBLISHED
Moderate: php:8.2 security update
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| AlmaLinux:8 | php-pecl-rrd | 0, 0 |
| AlmaLinux:8 | php-pear | 0, 0 |
| AlmaLinux:8 | php-embedded | 0, 0 |
| AlmaLinux:8 | php-opcache | 0, 0 |
| AlmaLinux:8 | php-process | 0, 0 |
| AlmaLinux:8 | php-mbstring | 0, 0 |
| AlmaLinux:8 | php-snmp | 0, 0 |
| AlmaLinux:8 | php | 0, 0 |
| AlmaLinux:8 | php-bcmath | 0, 0 |
| AlmaLinux:8 | php-pecl-apcu-devel | 0, 0 |
| AlmaLinux:8 | php-pecl-apcu | 0, 0 |
| AlmaLinux:8 | libzip-tools | 0, 0, 0 |
| AlmaLinux:8 | apcu-panel | 0, 0 |
| AlmaLinux:8 | php-cli | 0, 0 |
| AlmaLinux:8 | php-soap | 0, 0 |
| AlmaLinux:8 | php-common | 0, 0 |
| AlmaLinux:8 | php-pgsql | 0, 0 |
| AlmaLinux:8 | libzip | 0, 0, 0 |
| AlmaLinux:8 | php-gd | 0, 0 |
| AlmaLinux:8 | php-pecl-xdebug3 | 0, 0 |
…and 15 more
Exploit Intelligence
- CIRCL seen: CVE-2024-2756 (circl-sighting)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZGWIK3HMBACERGB4TSBB2JUOMPYY2VKY/ (circl)
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KJZK3X6B7FBE32FETDSMRLJXTFTHKWSY/ (circl)
- https://github.com/php/php-src/security/advisories/GHSA-wpj3-hf5j-x4v4 (circl)
- http://www.openwall.com/lists/oss-security/2024/04/12/11 (circl)
- https://lists.debian.org/debian-lts-announce/2024/05/msg00005.html (circl)
- https://security.netapp.com/advisory/ntap-20240510-0008/ (circl)
- CVE-2022-31629 POC (github-poc)
- CVE-2022-31629 POC (github-poc)
- CVE-2022-31629 POC (github-poc)
…and 18 more exploits
Timeline
- Apr 29, 2024 CVE Published
- May 2, 2024 PoC Published
- Dec 16, 2024 CVE Updated
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Distribution Patch
- Mar 6, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2024:10951 vendor-advisory
- https://access.redhat.com/security/cve/CVE-2024-2756 third-party-advisory
- https://access.redhat.com/security/cve/CVE-2024-3096 third-party-advisory
- https://access.redhat.com/security/cve/CVE-2024-5458 third-party-advisory
- https://access.redhat.com/security/cve/CVE-2024-8925 third-party-advisory
- https://access.redhat.com/security/cve/CVE-2024-8927 third-party-advisory
- https://access.redhat.com/security/cve/CVE-2024-9026 third-party-advisory
- https://bugzilla.redhat.com/2275058 third-party-advisory
- https://bugzilla.redhat.com/2275061 third-party-advisory
- https://bugzilla.redhat.com/2291252 third-party-advisory
- https://bugzilla.redhat.com/2317049 third-party-advisory
- https://bugzilla.redhat.com/2317051 third-party-advisory
- https://bugzilla.redhat.com/2317144 third-party-advisory
- https://errata.almalinux.org/8/ALSA-2024-10951.html vendor-advisory