Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

php-xml-8.0.30-4.el9 RPM for ppc64le

From CentOS Stream 9 AppStream for ppc64le

Name: php-xml Distribution: CentOS
Version: 8.0.30 Vendor: CentOS
Release: 4.el9 Build date: Fri Oct 3 10:26:29 2025
Group: Unspecified Build host: ppc64le-02.stream.rdu2.redhat.com
Size: 549534 Source RPM: php-8.0.30-4.el9.src.rpm
Packager: builder@centos.org
Url: http://www.php.net/
Summary: A module for PHP applications which use XML
 
The php-xml package contains dynamic shared objects which add support
to PHP for manipulating XML documents using the DOM tree,
and performing XSL transformations on XML documents.

Provides

Requires

License

PHP

Changelog

* Fri Oct 03 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-4
  - Fix pgsql extension does not check for errors during escaping
    CVE-2025-1735
  - Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
    CVE-2025-6491
  - Fix Null byte termination in hostnames
    CVE-2025-1220
  - Fix soap memory corruption
  - Fix ldap_set_option() not applied on different ldap connections
* Thu Mar 13 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-3
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
* Tue Jan 21 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-2
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458
  - Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
    CVE-2024-2756
  - Fix password_verify can erroneously return true opening ATO risk
    CVE-2024-3096
* Fri Oct 06 2023 Remi Collet <rcollet@redhat.com> - 8.0.30-1
  - rebase to 8.0.30
  - Resolves: RHEL-11946

Files

/etc/php.d/20-dom.ini
/etc/php.d/20-simplexml.ini
/etc/php.d/20-xml.ini
/etc/php.d/20-xmlwriter.ini
/etc/php.d/20-xsl.ini
/etc/php.d/30-xmlreader.ini
/usr/lib/.build-id
/usr/lib/.build-id/25
/usr/lib/.build-id/25/9accf37451eb4c484d1b3b65443f25ec4e55cc
/usr/lib/.build-id/26
/usr/lib/.build-id/26/ad43c95cc1ee9d07ea8c574e0b0ca29bd28711
/usr/lib/.build-id/80
/usr/lib/.build-id/80/6409c596f6b100fb272ab65ba6ca003b50f6d6
/usr/lib/.build-id/90
/usr/lib/.build-id/90/94a9ebff3fd336caf36cf3152367c3b445f756
/usr/lib/.build-id/d9/1dbab69e9957c621fe523c792e3967eb0050dd
/usr/lib/.build-id/e3
/usr/lib/.build-id/e3/a6e92b841b1746eebf3b20189f3b3e890ff066
/usr/lib64/php/modules/dom.so
/usr/lib64/php/modules/simplexml.so
/usr/lib64/php/modules/xml.so
/usr/lib64/php/modules/xmlreader.so
/usr/lib64/php/modules/xmlwriter.so
/usr/lib64/php/modules/xsl.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Nov 18 05:16:08 2025