VDB
WID-SEC-W-2025-2887
WID-SEC-W-2025-2887
PUBLISHED
PHP ist eine Programmiersprache, die zur Implementierung von Web-Applikationen genutzt wird.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source PHP <8.2.30 | ||
| Open Source PHP 8.1.34 | ||
| Open Source PHP <8.4.16 | ||
| Ubuntu Linux | ||
| Open Source PHP 8.2.30 | ||
| Red Hat Enterprise Linux | ||
| Open Source PHP <8.3.29 | ||
| Open Source PHP 8.4.16 | ||
| SUSE openSUSE | ||
| Open Source PHP <8.1.34 | ||
| Open Source PHP <8.5.1 | ||
| Debian Linux | ||
| Open Source PHP 8.5.1 | ||
| Oracle Linux | ||
| cPanel cPanel/WHM <130.0.17 | ||
| SUSE Linux | ||
| Open Source PHP 8.3.29 | ||
| RESF Rocky Linux | ||
| Red Hat Enterprise Linux 10 | ||
| Amazon Linux 2 |
Timeline
- Dec 18, 2025 CVE Published
- Mar 2, 2026 CVE Updated
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2887.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2887 advisory
- https://php.net/ChangeLog-8.php#8.2.30 url
- https://php.net/ChangeLog-8.php#8.3.29 url
- https://php.net/ChangeLog-8.php#8.4.16 url
- https://php.net/ChangeLog-8.php#8.5.1 url
- https://github.com/php/php-src/security/advisories/GHSA-www2-q4fc-65wf url
- https://github.com/php/php-src/security/advisories/GHSA-3237-qqm7-mfv7 url
- https://github.com/php/php-src/security/advisories/GHSA-h96m-rvf9-jgm2 url
- https://github.com/php/php-src/security/advisories/GHSA-8xr5-qppj-gvwj url
- https://github.com/advisories/GHSA-h2vr-rqqp-xv8m url
- https://github.com/uriparser/uriparser/issues/282 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DDSH47GX6NJKQ4QIEKKO6GWB72JZ2GU6/ url
- https://docs.cpanel.net/changelogs/110-change-log/ url
- https://docs.cpanel.net/changelogs/130-change-log/ url
- https://docs.cpanel.net/changelogs/132-change-log/ url
- https://docs.cpanel.net/changelogs/126-change-log/ url
- https://lists.debian.org/debian-security-announce/2025/msg00254.html url
- https://lists.suse.com/pipermail/sle-security-updates/2026-January/023706.html url
- https://lists.suse.com/pipermail/sle-security-updates/2026-January/023729.html url
…and 32 more