Name: php-process	Distribution: CentOS
Version: 8.0.30	Vendor: CentOS
Release: 3.el9	Build date: Mon Apr 28 11:28:08 2025
Group: Unspecified	Build host: aarch64-04.stream.rdu2.redhat.com
Size: 343972	Source RPM: php-8.0.30-3.el9.src.rpm
Packager: builder@centos.org
Url: http://www.php.net/
Summary: Modules for PHP script using system process interfaces

The php-process package contains dynamic shared objects which add
support to PHP using system interfaces for inter-process
communication.

Provides

Requires

config(php-process) = 8.0.30-3.el9
ld-linux-aarch64.so.1()(64bit)
ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
libc.so.6()(64bit)
libc.so.6(GLIBC_2.17)(64bit)
libc.so.6(GLIBC_2.33)(64bit)
php-common(aarch-64) = 8.0.30-3.el9
rpmlib(CompressedFileNames) <= 3.0.4-1
rpmlib(FileDigests) <= 4.6.0-1
rpmlib(PayloadFilesHavePrefix) <= 4.0-1
rpmlib(PayloadIsZstd) <= 5.4.18-1
rtld(GNU_HASH)

License

PHP

Changelog

* Thu Mar 13 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-3
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
* Tue Jan 21 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-2
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458
  - Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
    CVE-2024-2756
  - Fix password_verify can erroneously return true opening ATO risk
    CVE-2024-3096
* Fri Oct 06 2023 Remi Collet <rcollet@redhat.com> - 8.0.30-1
  - rebase to 8.0.30
  - Resolves: RHEL-11946

Files

/etc/php.d/20-posix.ini
/etc/php.d/20-shmop.ini
/etc/php.d/20-sysvmsg.ini
/etc/php.d/20-sysvsem.ini
/etc/php.d/20-sysvshm.ini
/usr/lib/.build-id
/usr/lib/.build-id/04
/usr/lib/.build-id/04/2ea7774d54dc1aee5c1505be7223a0032a90e5
/usr/lib/.build-id/20
/usr/lib/.build-id/20/8cff6b6eae56d91e0865d773c14e1d098bc947
/usr/lib/.build-id/7f
/usr/lib/.build-id/7f/c85bdd37fd006686daabaa50cc2628188a8efb
/usr/lib/.build-id/85
/usr/lib/.build-id/85/da6fb837b73d2ed3bf5a02e2812ca06948a437
/usr/lib/.build-id/b8
/usr/lib/.build-id/b8/719a3c8e58ba0e39c37002b556db85c873dcd6
/usr/lib64/php/modules/posix.so
/usr/lib64/php/modules/shmop.so
/usr/lib64/php/modules/sysvmsg.so
/usr/lib64/php/modules/sysvsem.so
/usr/lib64/php/modules/sysvshm.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed May 21 03:05:34 2025

php-process-8.0.30-3.el9 RPM for aarch64

From CentOS Stream 9 AppStream for aarch64

Provides

Requires

License

Changelog

Files