php-process-8.0.30-3.el9 RPM for x86_64

From CentOS Stream 9 AppStream for x86_64

The php-process package contains dynamic shared objects which add
support to PHP using system interfaces for inter-process
communication.

Provides

• php-process
• config(php-process)
• php-posix
• php-posix(x86-64)
• php-process(x86-64)
• php-shmop
• php-shmop(x86-64)
• php-sysvmsg
• php-sysvmsg(x86-64)
• php-sysvsem
• php-sysvsem(x86-64)
• php-sysvshm
• php-sysvshm(x86-64)

Requires

• config(php-process) = 8.0.30-3.el9
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• php-common(x86-64) = 8.0.30-3.el9
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

PHP

Changelog

* Thu Mar 13 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-3
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
* Tue Jan 21 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-2
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458
  - Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
    CVE-2024-2756
  - Fix password_verify can erroneously return true opening ATO risk
    CVE-2024-3096
* Fri Oct 06 2023 Remi Collet <rcollet@redhat.com> - 8.0.30-1
  - rebase to 8.0.30
  - Resolves: RHEL-11946

Files

/etc/php.d/20-posix.ini
/etc/php.d/20-shmop.ini
/etc/php.d/20-sysvmsg.ini
/etc/php.d/20-sysvsem.ini
/etc/php.d/20-sysvshm.ini
/usr/lib/.build-id
/usr/lib/.build-id/31
/usr/lib/.build-id/31/9f4c8d081f8ca8d39e0b4e0db4e9a6b3d76af8
/usr/lib/.build-id/41
/usr/lib/.build-id/41/8d051eebabbe5bfb09b012ccfa55166fba7c19
/usr/lib/.build-id/4f
/usr/lib/.build-id/4f/386f7716ba2a597961951121ecd3a7a21ede58
/usr/lib/.build-id/b3
/usr/lib/.build-id/b3/d36296c7065475ca063be4d177881819088996
/usr/lib/.build-id/cd
/usr/lib/.build-id/cd/5617efa56ec66d39e948031be8b50c6cea2028
/usr/lib64/php/modules/posix.so
/usr/lib64/php/modules/shmop.so
/usr/lib64/php/modules/sysvmsg.so
/usr/lib64/php/modules/sysvsem.so
/usr/lib64/php/modules/sysvshm.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed May 21 03:00:01 2025