php:8.3 security update
エラータID: AXSA:2026-122:01
リリース日:
2026/02/02 Monday - 18:12
題名:
php:8.3 security update
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- PHP の getimagesize() 関数には、メモリ領域の範囲外読み取りの
問題があるため、リモートの攻撃者により、情報の漏洩を可能とする
脆弱性が存在します。(CVE-2025-14177)
- PHP の array_merge() 関数には、メモリ領域の範囲外書き込み
の問題があるため、リモートの攻撃者により、データ破壊、および
サービス拒否攻撃を可能とする脆弱性が存在します。
(CVE-2025-14178)
- PHP の PDO PostgreSQL ドライバには、NULL ポインタデリファレンス
の問題があるため、リモートの攻撃者により、サービス拒否攻撃を可能と
する脆弱性が存在します。(CVE-2025-14180)
Modularity name: php
Stream name: 8.3
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2025-14177
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.
CVE-2025-14178
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and availability of the target server.
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and availability of the target server.
CVE-2025-14180
In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.
In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.
追加情報:
N/A
ダウンロード:
SRPMS
- php-pecl-apcu-5.1.23-1.module+el9+1127+276b1dbf.src.rpm
MD5: 36c71593488cdc1a1d5e975f21bd558b
SHA-256: 48d01e21d9f32f5ac05128744fda729dadbe0890482c5c0b309b0290c44e5ef0
Size: 101.79 kB - php-pecl-redis6-6.1.0-2.module+el9+1127+276b1dbf.src.rpm
MD5: af54adac5a591ed4919381b3ed511345
SHA-256: 99204bf099a8d434451598b4799012a09d5067d19cbad8a1c93d250d2f3f022c
Size: 379.60 kB - php-pecl-rrd-2.0.3-4.module+el9+1127+276b1dbf.src.rpm
MD5: 51045a8553ad2f3b229bd616aadf5bce
SHA-256: e4502c0e552a7226d30fe994c91fef0b62f2e0e5cff50fdbbaac833c5e437f7c
Size: 29.67 kB - php-pecl-xdebug3-3.3.1-1.module+el9+1127+276b1dbf.src.rpm
MD5: 99b2f2bbce99907151c6aabb5b0a568d
SHA-256: 7ea9410a6bbc5fe3312a9df498b39b80617e9784191139b4b57bb242ed38c579
Size: 472.95 kB - php-pecl-zip-1.22.3-1.module+el9+1127+276b1dbf.src.rpm
MD5: c86c7026f672596d5febae0f77ef538a
SHA-256: ff0a5b8fccfcb9332948dfcd29cc210422ba690a2cef2560b4d20d1671de5b80
Size: 365.30 kB - php-8.3.29-1.module+el9+1127+276b1dbf.src.rpm
MD5: eec8fdc0e460bbf3ec1da8e84c0db080
SHA-256: 76ef8799059d00f0aad04def0149760604ab5c799a38397df168379c9c475ec7
Size: 12.16 MB
Asianux Server 9 for x86_64
- apcu-panel-5.1.23-1.module+el9+1127+276b1dbf.noarch.rpm
MD5: 811642a14c61698189f99ede6e84ec4e
SHA-256: bd1c1f5b421912cdbca829bbb1355f5d656c47b317a83232726be43c118f64c7
Size: 18.21 kB - php-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: df2722fcf361bc58dfe2a1ee7650197b
SHA-256: acc5b9f3fc4d74eef99a0de424edc048456d1c19fe42f0d085870b1545ce4831
Size: 7.52 kB - php-bcmath-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: a022005ef6c9cc4631618e9faac0e03a
SHA-256: 95cb121b2ea8f510958520f2ebfacd501fa40cef09d726b734eb233fac6e53b4
Size: 33.03 kB - php-cli-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: c80ff71051c35e762c5624424d493ee7
SHA-256: 7ef581d6c614b3640e3e142885cd514deeb1afe7033c5f851a35cd8e16ef3dab
Size: 3.72 MB - php-common-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 867696ce43396b8a74a78c11106ba10c
SHA-256: a94e110967d587716d37651b0f354618e431be3f410a59af0573a59629f7c030
Size: 725.25 kB - php-dba-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: d57785c3d58428434442fd5aab9ad87d
SHA-256: 0909cc55c5effd264a693d701a2c32f2f8ecdb289c535cc6e46ab14415ef0bf9
Size: 32.76 kB - php-dbg-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 9e1e03d10d23f020925c3871ef34bd0c
SHA-256: cdc572041d4c6dc1fe8ef90feb30867df5e9e906762573f831b761050f8c90b1
Size: 1.93 MB - php-debugsource-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 5ecb23b23f70d6b548cb2cee51d810e7
SHA-256: e1635b7b22b69c7dcd4d89cbf408b344f2dcb0815ef83325a229b49dc22fac11
Size: 4.35 MB - php-devel-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 77b9a434614868d093084f1bad4a001c
SHA-256: c842bb790d88ab0b7976703ddfdd76c870999245b10e609c76b1a878bf9ff911
Size: 787.40 kB - php-embedded-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 597f91635d6daf91fbabb9409f6448c8
SHA-256: d137ce8ac2282bc72fcebd72eb73900d65899cf163c7455d9a807dbdf57c0b6f
Size: 1.83 MB - php-enchant-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 8f6e830d44e90f2707ccbdbce2b3aaa3
SHA-256: 52c71445b235daf7c01972f2a1609fbb164abc65ed839f383b4fe8c40d1f5c52
Size: 17.06 kB - php-ffi-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 1803422005f111b53c52773d94d22f92
SHA-256: fd2b4769567916677a41d70a44ef12a22c1372fd9b10fbaf11be387f69967fce
Size: 77.46 kB - php-fpm-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 6693471c2addcbfa0e704a35962b48c0
SHA-256: e8164f2c3f7d6b4cf17972d0f922eb65aae05af3324ddb9b320fe7ac28b7e354
Size: 1.92 MB - php-gd-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 4a94cdf17d0d84225c65adc2e22008f9
SHA-256: dde3273df1c2d5a23e21a146a47df9ce6eac109c3f1417783492411fe1ad7cff
Size: 40.16 kB - php-gmp-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 2a721c7abc676c5f8800c238793b9cb5
SHA-256: 72617b97b6eec1fcbaf6d622834f53cef70ac5b54ab3b613246996f6184bbd34
Size: 30.04 kB - php-intl-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 98fee4498886005b4248664d818d3f37
SHA-256: 6c54c15d3cef499a01324d02673481c06af4f05a6859d7371628224fd9804c14
Size: 168.64 kB - php-ldap-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 91f2eeae767a9ff69fcc7d41d6f40393
SHA-256: 6203aaaf6cf9e2199551f5090a4ab95625a91850bcc30d0aac812bed36fab99d
Size: 41.75 kB - php-mbstring-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: a7d91914383eb5f88e098dc122f29149
SHA-256: 27faa349eab14e423be9c535315350f2ba9f432370942dbea2562b8bcd32f7de
Size: 523.83 kB - php-mysqlnd-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 79ee84d927188f8c901f4b1a4a7697ec
SHA-256: aa8148935a6597aedfb22e8b1be5bdbe213edb8984416dddb5735350c757c972
Size: 143.62 kB - php-odbc-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 924af3ebb63a782ddec31d8fb5ca4e31
SHA-256: f7870ed9011e1d46f8254d913cb6fd92b87e9aa55b0f46dea3e995d0f9976cbd
Size: 45.12 kB - php-opcache-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: a6242ca52bb2de910a890b7c0b5ef881
SHA-256: cbe7f34d12098b6095b3e68c7e69ccea14c0922372aca43ec6925269acddcd5f
Size: 352.32 kB - php-pdo-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 7bc5bf0cd161d22022dab7571f856afc
SHA-256: 7be155b87ff7e3cfa8876d23c94304e665c18c571b95e590654b19fb73f6d37f
Size: 85.69 kB - php-pecl-apcu-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 22364011c8442bc539c46464092143a9
SHA-256: f353e4ae8550a30f21559bf687c2a40c8de63f88f45ad2a94f8657ad0a9b0829
Size: 59.42 kB - php-pecl-apcu-debugsource-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: f025dbc63dd3c3361a1337d7b5267971
SHA-256: d2ce648fea0d969204735e954904fd3ec7d153fcb26eb2d23fa2ef26e4d37e7e
Size: 52.54 kB - php-pecl-apcu-devel-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 77c73da71e19a943131b927acb3a0a3c
SHA-256: 713dd20c40eb3f23ff3ced6d58ea4047c6b2cb566cf40f063a05b94faefe68dd
Size: 61.67 kB - php-pecl-redis6-6.1.0-2.module+el9+1127+276b1dbf.x86_64.rpm
MD5: b4ecd264c6977b119d049acaeae9d5b4
SHA-256: f183c0e96fad4f57cab2a4179ae17f04707d003a13bdf122448186823262af2a
Size: 274.00 kB - php-pecl-redis6-debugsource-6.1.0-2.module+el9+1127+276b1dbf.x86_64.rpm
MD5: a448181e4bc97a3c9edc72e0a8707d0f
SHA-256: 5d28bc445cff241f8a8b0af1f79d0f9e85d9b0caf8c553a517be5cbe3e7f6281
Size: 151.39 kB - php-pecl-rrd-2.0.3-4.module+el9+1127+276b1dbf.x86_64.rpm
MD5: ed6c25ad131988b74bf600f8cdc46bb8
SHA-256: 7d83d40ae8f9c4fc7e1ac286d415a34084858d1c0441ae6be13a33f634a26292
Size: 26.61 kB - php-pecl-rrd-debugsource-2.0.3-4.module+el9+1127+276b1dbf.x86_64.rpm
MD5: e8b9956b5734b3249592056d90c14521
SHA-256: 468c86d92e0e6ad5eba85e3fbe904e9e38e32c672bb7469776e182786188f1d5
Size: 17.68 kB - php-pecl-xdebug3-3.3.1-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: d748decca183a85a28670d696f596244
SHA-256: 933c9a0a7b6cb77f5ca9764d8c460f2fe5b1a76e3999006dba15564c7e9f300c
Size: 209.64 kB - php-pecl-xdebug3-debugsource-3.3.1-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 1ba7875e8b6da3143349ad1069b2c711
SHA-256: e730043230dc83ac1e6f45877d296313b0bdeb84c10659c40d56d84f13d84853
Size: 166.00 kB - php-pecl-zip-1.22.3-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: a680eae93b3f5aa5f3d9b8f55e1ac7e1
SHA-256: f610e4781243ff982f806ebd1fb72b49ff3471ce6d6eecdf5d078098318898a1
Size: 63.42 kB - php-pecl-zip-debugsource-1.22.3-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: c72278aa23cf6872aafe099ecb21b8dd
SHA-256: 177c1b18c36e4a0ca91e66a1d4fed66b2f9484f4b5d739666a7f0541d61c7bfa
Size: 30.79 kB - php-pgsql-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 30f900e3f2b1e0d211094e4b1eafddef
SHA-256: 8f62dcc548890c39037eddf9500eb0e767ea61b2b8c9fbefcfd5d5c520846f70
Size: 74.35 kB - php-process-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 891c94bdcbc3116318b80f44a1bc54bb
SHA-256: 437d1aa19be82ed99f47365c5abc2133aba798f921b0db664f781e75e318d9d6
Size: 41.04 kB - php-snmp-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 73a767af3967bfb3bc9c2f98efafa29c
SHA-256: c97528c41171b1dc737fd86e49082bace887d98c882f0d3a845a154046307974
Size: 31.35 kB - php-soap-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 937315b0026a5d6b5728882926d69287
SHA-256: dbc575fe82f760d8f0fef621be89c831869eab76247938731ca0eab21fc34bbb
Size: 140.84 kB - php-xml-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
MD5: 9620af2c44e6fbb39a3c68a37e5a9059
SHA-256: d59efe231d0ad6ac2f1b82f0a8bc74ba1190549aa774112c196938a2a4b7037a
Size: 149.82 kB
English