php:7.4 security update

エラータID: AXSA:2022-3752:01

リリース日: 
2022/08/30 Tuesday - 02:15
題名: 
php:7.4 security update
影響のあるチャネル: 
Asianux Server 8 for x86_64
Severity: 
High
Description: 

以下項目について対処しました。

[Security Fix]
- php の mysqlnd ドライバーの pdo_mysql 拡張機能には、
第三者にホストへの接続用パスワードの設定を許可している
場合、長過ぎるパスワードによってバッファオーバーフローが
発生する問題があるため、リモートの攻撃者により長過ぎる
パスワードを介して任意のコード実行を可能とする脆弱性が
存在します。(CVE-2022-31626)

Modularity name: php
Stream name: 7.4

解決策: 

パッケージをアップデートしてください。

CVE: 
CVE-2022-31626
In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdo_mysql extension with mysqlnd driver, if the third party is allowed to supply host to connect to and the password for the connection, password of excessive length can trigger a buffer overflow in PHP, which can lead to a remote code execution vulnerability.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. libzip-1.6.1-1.module+el8+1501+403ee0bf.src.rpm
    MD5: 3fa6fbf577e2cdaf5916ea71a998f1fc
    SHA-256: 379669bcef695042fb9d4f8ce1bbd154e3da8980b4f289d6e9e998cff3852a59
    Size: 732.66 kB
  2. php-pear-1.10.12-1.module+el8+1501+403ee0bf.src.rpm
    MD5: 465dba7bb9514c6b07a57256216e3ed4
    SHA-256: 7cc680675638b5727b4dcd3133a4e020c21caa2a8f4f797838bbade32aacffe9
    Size: 379.33 kB
  3. php-pecl-apcu-5.1.18-1.module+el8+1501+403ee0bf.src.rpm
    MD5: fadc95d3a650b0a4fb85f9e0655acf66
    SHA-256: bb5ffcf357f28828312ee56f46f05386d5717db48e1b5ef26b0296702cddf0de
    Size: 107.49 kB
  4. php-pecl-rrd-2.0.1-1.module+el8+1501+403ee0bf.src.rpm
    MD5: eb01ca9ac0ea755f95f6438f794329fc
    SHA-256: 53c7e10e81bc31acf53e56a34526a4425bd9b29cc9254ab2f276c67abea12b5e
    Size: 33.11 kB
  5. php-pecl-xdebug-2.9.5-1.module+el8+1501+403ee0bf.src.rpm
    MD5: f00f3880c8be18559c909bcfd52033d4
    SHA-256: 296e9f6e443fb44a023c0ec3bad48dff543ac91ab8eb85868a707feef7c116b7
    Size: 442.81 kB
  6. php-pecl-zip-1.18.2-1.module+el8+1501+403ee0bf.src.rpm
    MD5: eabe7477cfd902c9a91be7936d767d4e
    SHA-256: f0041cd87893f51c7497c735c8b0b63114683e4c923d1e57e4ffd3adc9a89f51
    Size: 307.81 kB
  7. php-7.4.19-3.module+el8+1501+403ee0bf.src.rpm
    MD5: d917fe616ee27f59ce79b0cc3faeb5f0
    SHA-256: 928f96aab2f0c7d9666d465dd09e7ab7195eec4d3ace798b87b184cdd4cf57d9
    Size: 10.01 MB

Asianux Server 8 for x86_64
  1. libzip-1.6.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: e19c1bea982840a16f74d549ee594230
    SHA-256: 14c76b80bab860cda786528526d4df29fa90c4b0fe3a437db4101507a8bb4a02
    Size: 63.24 kB
  2. libzip-debugsource-1.6.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 8dc2221f62018f3e6515c24acca42841
    SHA-256: ad2de1be14f6afef537763636f4814bc4e72f81af97b31d6d4fe4cbc77c0264a
    Size: 100.34 kB
  3. libzip-devel-1.6.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: d853dc5b59c1c68b2dfda534cf575de3
    SHA-256: 3020383120319f37d2fa5694c923d73f7c04059f53a4055255d72d2a9fa52c5d
    Size: 180.03 kB
  4. libzip-tools-1.6.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: d7834f88f824e1970ac5a5019d23006d
    SHA-256: 4798483f2fe5d71c3b35a2794f48eface39307b9089c32884ba6862e221684c7
    Size: 42.90 kB
  5. php-pear-1.10.12-1.module+el8+1501+403ee0bf.noarch.rpm
    MD5: 450158eabff7432e0d8e1768688b78e2
    SHA-256: 3a4e9b8fdd8ff87d47c01b4380f56c6237612fa5c0190f1528bd45f1a68e02e0
    Size: 359.61 kB
  6. apcu-panel-5.1.18-1.module+el8+1501+403ee0bf.noarch.rpm
    MD5: f54cbca2c5696124cfa4754bb73f709b
    SHA-256: 18760ef80d74b16338a7e28e756b06409b53f605c75eb50fae1790daa30adae6
    Size: 22.29 kB
  7. php-pecl-apcu-5.1.18-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 3f0c935103af9f84592e67f91ae0a567
    SHA-256: 9121dcbf4b8e95bd343bd83c0ded906cfb4f6c7d46410d9c1abe2681b5a877fd
    Size: 62.81 kB
  8. php-pecl-apcu-debugsource-5.1.18-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: e484e2d7a156f7fe559be1ac8b545e89
    SHA-256: b1be508a9886b73707387c1348be610184f9fec8049cf5193f93f1a9a9199afe
    Size: 49.52 kB
  9. php-pecl-apcu-devel-5.1.18-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: a88f6ff169aee9325ca8309e7fc82d01
    SHA-256: 9530405a035246c461af7fd985f26061306452ae0e9957bdb8757d308d36f2b3
    Size: 46.15 kB
  10. php-pecl-rrd-2.0.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 47639c0d1bd5769562a9ade10a4ab7c1
    SHA-256: dd2ad5d53f2e18d4d6dfb288c41501335149edee4936c0b528dd232289aef2b8
    Size: 30.51 kB
  11. php-pecl-rrd-debugsource-2.0.1-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 6fc1750bca5ac63ea39767cc7bf8e41c
    SHA-256: 4c4a6f778ad1b8e71d4bf10834620c690da3c2945173fbd685c3cd389a6037b1
    Size: 22.38 kB
  12. php-pecl-xdebug-2.9.5-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 083c3cddc003aa5c0c5c850197b4e474
    SHA-256: ca50c043ff8a45f0bcd642d7590179ddcfb7736e38947e4bc011e45cfc8b9f0d
    Size: 176.16 kB
  13. php-pecl-xdebug-debugsource-2.9.5-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 3fb9b8b3dd83692f38fd744fafb591d9
    SHA-256: bde809b74083bb938e6a609b50143c6f074a00505b06fd77216fc1f5730485d1
    Size: 134.23 kB
  14. php-pecl-zip-1.18.2-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: c29972f7b2599c7af7112813311085ac
    SHA-256: 086749204459f3d3a4c3ef76bc9a49f4ac8ca7198c37e2ab12b901a0d26140d8
    Size: 53.55 kB
  15. php-pecl-zip-debugsource-1.18.2-1.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: b7dd20fb22393125a941ae17f499263d
    SHA-256: b50092b87fb412d5371c9331cd8db062a079189eb9a58eec5462882e3091a42c
    Size: 31.19 kB
  16. php-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: bc87a46beb6b98aa15aa2626b433f1b2
    SHA-256: d89fb016b1e4adb3d2de241301a8c0fa0b1ae55be133fe7a56b1014ec21708ef
    Size: 1.52 MB
  17. php-bcmath-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 8ae671a367456275486062c1ca3112c0
    SHA-256: 227e98fa33cd1a2007197616d5bd57fe3996e7d0258cde3500a4a62f37f86bc2
    Size: 78.93 kB
  18. php-cli-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 2752e8a6281f93a053f8c02d9019c93c
    SHA-256: e6ae2898534d177b799e092851ceb5df8f5f6da82a5c2fc54b44ba5f6e24c1a2
    Size: 3.07 MB
  19. php-common-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 93c102a7536155dadccfe4f2847102f2
    SHA-256: 1ab13a95cdd72e5515356af7d7ce859eda1c953195c01933de6cc7b665bed9a6
    Size: 701.20 kB
  20. php-dba-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 740481c76cfe4e69160e01781e94d7ee
    SHA-256: 938e7d768e35eb92a4e045171c75875dacc9760e7f0d85e0913004c4295d2e22
    Size: 77.74 kB
  21. php-dbg-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 824f27cc567d50e395f5832341c42777
    SHA-256: 80cfeae4fef881c138e4af97c76d68e0a6bf15ecda470d8b6ddc367692b25366
    Size: 1.63 MB
  22. php-debugsource-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 53aedbdf291658e5f99b15974bef35ff
    SHA-256: 7c67a6121894f72a8315461ae3904361fd7647ee28cc7f50242a7e03bb5560ef
    Size: 4.11 MB
  23. php-devel-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 63c426af072643120281f9886d3d9fa1
    SHA-256: 156b7e946e6c47f770bd744376796793f041a4542c67af23654d178b1d3d125f
    Size: 727.13 kB
  24. php-embedded-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: de4ef4256c330fd4fc75b1ffdc85e44a
    SHA-256: cbaafd25c679e9aecae2b03d9c444ede0c61145de39eedb49ddc0aca24858556
    Size: 1.51 MB
  25. php-enchant-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 3d1a6a7baf94676cbe533a83d9996afc
    SHA-256: 80a43c9298f55f1c947671ce4381510a9f5bcb01acd046d0c89c9388b884adf3
    Size: 63.66 kB
  26. php-ffi-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 63d9d477dda6977c1f2365273ee96881
    SHA-256: 1b7d55ef2a2c30adc656c055710f06f2c08d6d1d72a957594a824f410d4e9ed8
    Size: 115.91 kB
  27. php-fpm-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 593b4c9b1304e25fcd971b9fda8875d2
    SHA-256: 71dad36b078dc29585abe5c2291d2c9571b3b199f6f7da313ce998e37d74b455
    Size: 1.60 MB
  28. php-gd-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 94657090fd9af21cccfa3ad05f56e625
    SHA-256: 4349cfa4f037c271319b9603ddda75250e57d2d16b7b6ce869c568e9920f2f2d
    Size: 83.89 kB
  29. php-gmp-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: f15a44a053c41dd6d442b64f3063e9d8
    SHA-256: a4a2e1d4e85aabf481fd6c6df6120c60915ec5089ba1656203fdf792e3f59816
    Size: 75.71 kB
  30. php-intl-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 9d021281dac76cfa10476f81ac7b935f
    SHA-256: 657dcb44c707a677e4b9c0fa0c30b8594077b295b3e654ced32eda7a25266067
    Size: 191.81 kB
  31. php-json-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 53260092b10c4d61e370aed36b5ebe09
    SHA-256: 0d189836c2653d66ed9d29cce62d68bfb40bc7fbaa07ae2e5f599b0938fac707
    Size: 73.20 kB
  32. php-ldap-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 2ab1b7b0c42d3b908a84eb462106dd91
    SHA-256: de193b2ab4a02fda55c57f4940c112ca549c5755be6a899eee64f301ca0368b0
    Size: 85.00 kB
  33. php-mbstring-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: c04c9df5d0615792a6e572dc2f5ba687
    SHA-256: 65ceeed31794774c8523978e5d46fadd442efb1579bba7e9120e3495be34947e
    Size: 482.72 kB
  34. php-mysqlnd-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: bef318ceb242a62046c30837979cc55e
    SHA-256: fa5e7c03ca1faf06a9980829c58413cd6f702625ee01127b636d8d12f7e62f78
    Size: 191.73 kB
  35. php-odbc-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: be64982654a46fc8c619a72a210526c9
    SHA-256: 159016f25a1278e9305b0a0ef42e7ba06acec201d9107340ed0fba0efe4fae37
    Size: 88.79 kB
  36. php-opcache-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: ae8d83833b342ccf8a8e8a1217c833d3
    SHA-256: 7dc01a7e0ab2226ffb1b15f0a00135d7af38d914e25a3e19c978ec610ef50fc4
    Size: 266.25 kB
  37. php-pdo-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: dd03aa2483e9331a29947f0169084a12
    SHA-256: 0632fe0c10bbb78e754ba5eb67ca5234736611c68c59ddbff6c570b72a90a699
    Size: 122.08 kB
  38. php-pgsql-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: d467ac1f0ba2727893e657e74ebbf1ac
    SHA-256: 55c14f65d8c16608c8d7aa674c4890a80e433327a09369bd584a32c342035a2e
    Size: 117.29 kB
  39. php-process-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: dc2dd94250128371440cb0ec5ecdb62c
    SHA-256: baa6f85f3753ece86ccc735b1a8a17dbb4bb663d8688287016d6641ec0d8027f
    Size: 84.10 kB
  40. php-snmp-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 3f28208e6446c5aaeeb328338394014e
    SHA-256: bf5e382faa71e2f34bea4c39d69ea77d1aca1310fe697673039751d416962e3a
    Size: 73.45 kB
  41. php-soap-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: a1a609ecc6eb58710a0ea0dde61551a0
    SHA-256: 54a86859250707c9dd7194218b44f382cde0350f3757cd077074c02fe627f8af
    Size: 175.44 kB
  42. php-xml-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 01283a58157928021504e9a451beac64
    SHA-256: 4c3f7971e0cf6c0ac95a9125cb88eab04c50c91012f28c01061c8fcdb4250d36
    Size: 172.57 kB
  43. php-xmlrpc-7.4.19-3.module+el8+1501+403ee0bf.x86_64.rpm
    MD5: 202d4ba07a913753d52928dd67615dc3
    SHA-256: c1b7ecfc91210687b5f0e676a584ee70323eaa733a513b623dc401fbec7d13d2
    Size: 88.83 kB