[security - high] php:8.3 security update

エラータID: AXSA:2026-122:01

リリース日: 
2026/02/02 Monday - 18:12
題名: 
[security - high] php:8.3 security update
影響のあるチャネル: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

* php: heap-based buffer overflow in array_merge() (CVE-2025-14178)
* php: PHP: Information disclosure via getimagesize() function when reading multi-chunk images (CVE-2025-14177)
* php: PHP: Denial of Service via invalid character sequence in PDO PostgreSQL prepared statement (CVE-2025-14180)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-14177
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.
CVE-2025-14178
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and availability of the target server.
CVE-2025-14180
In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.

Modularity name: "php"
Stream name: "8.3"

解決策: 

Update packages.

CVE: 
CVE-2025-14177
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.
CVE-2025-14178
In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and availability of the target server.
CVE-2025-14180
In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.
追加情報: 

N/A

ダウンロード: 

SRPMS
  1. php-pecl-apcu-5.1.23-1.module+el9+1127+276b1dbf.src.rpm
    MD5: 36c71593488cdc1a1d5e975f21bd558b
    SHA-256: 48d01e21d9f32f5ac05128744fda729dadbe0890482c5c0b309b0290c44e5ef0
    Size: 101.79 kB
  2. php-pecl-redis6-6.1.0-2.module+el9+1127+276b1dbf.src.rpm
    MD5: af54adac5a591ed4919381b3ed511345
    SHA-256: 99204bf099a8d434451598b4799012a09d5067d19cbad8a1c93d250d2f3f022c
    Size: 379.60 kB
  3. php-pecl-rrd-2.0.3-4.module+el9+1127+276b1dbf.src.rpm
    MD5: 51045a8553ad2f3b229bd616aadf5bce
    SHA-256: e4502c0e552a7226d30fe994c91fef0b62f2e0e5cff50fdbbaac833c5e437f7c
    Size: 29.67 kB
  4. php-pecl-xdebug3-3.3.1-1.module+el9+1127+276b1dbf.src.rpm
    MD5: 99b2f2bbce99907151c6aabb5b0a568d
    SHA-256: 7ea9410a6bbc5fe3312a9df498b39b80617e9784191139b4b57bb242ed38c579
    Size: 472.95 kB
  5. php-pecl-zip-1.22.3-1.module+el9+1127+276b1dbf.src.rpm
    MD5: c86c7026f672596d5febae0f77ef538a
    SHA-256: ff0a5b8fccfcb9332948dfcd29cc210422ba690a2cef2560b4d20d1671de5b80
    Size: 365.30 kB
  6. php-8.3.29-1.module+el9+1127+276b1dbf.src.rpm
    MD5: eec8fdc0e460bbf3ec1da8e84c0db080
    SHA-256: 76ef8799059d00f0aad04def0149760604ab5c799a38397df168379c9c475ec7
    Size: 12.16 MB

Asianux Server 9 for x86_64
  1. apcu-panel-5.1.23-1.module+el9+1127+276b1dbf.noarch.rpm
    MD5: 811642a14c61698189f99ede6e84ec4e
    SHA-256: bd1c1f5b421912cdbca829bbb1355f5d656c47b317a83232726be43c118f64c7
    Size: 18.21 kB
  2. php-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: df2722fcf361bc58dfe2a1ee7650197b
    SHA-256: acc5b9f3fc4d74eef99a0de424edc048456d1c19fe42f0d085870b1545ce4831
    Size: 7.52 kB
  3. php-bcmath-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: a022005ef6c9cc4631618e9faac0e03a
    SHA-256: 95cb121b2ea8f510958520f2ebfacd501fa40cef09d726b734eb233fac6e53b4
    Size: 33.03 kB
  4. php-cli-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: c80ff71051c35e762c5624424d493ee7
    SHA-256: 7ef581d6c614b3640e3e142885cd514deeb1afe7033c5f851a35cd8e16ef3dab
    Size: 3.72 MB
  5. php-common-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 867696ce43396b8a74a78c11106ba10c
    SHA-256: a94e110967d587716d37651b0f354618e431be3f410a59af0573a59629f7c030
    Size: 725.25 kB
  6. php-dba-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: d57785c3d58428434442fd5aab9ad87d
    SHA-256: 0909cc55c5effd264a693d701a2c32f2f8ecdb289c535cc6e46ab14415ef0bf9
    Size: 32.76 kB
  7. php-dbg-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 9e1e03d10d23f020925c3871ef34bd0c
    SHA-256: cdc572041d4c6dc1fe8ef90feb30867df5e9e906762573f831b761050f8c90b1
    Size: 1.93 MB
  8. php-debugsource-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 5ecb23b23f70d6b548cb2cee51d810e7
    SHA-256: e1635b7b22b69c7dcd4d89cbf408b344f2dcb0815ef83325a229b49dc22fac11
    Size: 4.35 MB
  9. php-devel-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 77b9a434614868d093084f1bad4a001c
    SHA-256: c842bb790d88ab0b7976703ddfdd76c870999245b10e609c76b1a878bf9ff911
    Size: 787.40 kB
  10. php-embedded-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 597f91635d6daf91fbabb9409f6448c8
    SHA-256: d137ce8ac2282bc72fcebd72eb73900d65899cf163c7455d9a807dbdf57c0b6f
    Size: 1.83 MB
  11. php-enchant-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 8f6e830d44e90f2707ccbdbce2b3aaa3
    SHA-256: 52c71445b235daf7c01972f2a1609fbb164abc65ed839f383b4fe8c40d1f5c52
    Size: 17.06 kB
  12. php-ffi-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 1803422005f111b53c52773d94d22f92
    SHA-256: fd2b4769567916677a41d70a44ef12a22c1372fd9b10fbaf11be387f69967fce
    Size: 77.46 kB
  13. php-fpm-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 6693471c2addcbfa0e704a35962b48c0
    SHA-256: e8164f2c3f7d6b4cf17972d0f922eb65aae05af3324ddb9b320fe7ac28b7e354
    Size: 1.92 MB
  14. php-gd-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 4a94cdf17d0d84225c65adc2e22008f9
    SHA-256: dde3273df1c2d5a23e21a146a47df9ce6eac109c3f1417783492411fe1ad7cff
    Size: 40.16 kB
  15. php-gmp-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 2a721c7abc676c5f8800c238793b9cb5
    SHA-256: 72617b97b6eec1fcbaf6d622834f53cef70ac5b54ab3b613246996f6184bbd34
    Size: 30.04 kB
  16. php-intl-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 98fee4498886005b4248664d818d3f37
    SHA-256: 6c54c15d3cef499a01324d02673481c06af4f05a6859d7371628224fd9804c14
    Size: 168.64 kB
  17. php-ldap-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 91f2eeae767a9ff69fcc7d41d6f40393
    SHA-256: 6203aaaf6cf9e2199551f5090a4ab95625a91850bcc30d0aac812bed36fab99d
    Size: 41.75 kB
  18. php-mbstring-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: a7d91914383eb5f88e098dc122f29149
    SHA-256: 27faa349eab14e423be9c535315350f2ba9f432370942dbea2562b8bcd32f7de
    Size: 523.83 kB
  19. php-mysqlnd-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 79ee84d927188f8c901f4b1a4a7697ec
    SHA-256: aa8148935a6597aedfb22e8b1be5bdbe213edb8984416dddb5735350c757c972
    Size: 143.62 kB
  20. php-odbc-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 924af3ebb63a782ddec31d8fb5ca4e31
    SHA-256: f7870ed9011e1d46f8254d913cb6fd92b87e9aa55b0f46dea3e995d0f9976cbd
    Size: 45.12 kB
  21. php-opcache-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: a6242ca52bb2de910a890b7c0b5ef881
    SHA-256: cbe7f34d12098b6095b3e68c7e69ccea14c0922372aca43ec6925269acddcd5f
    Size: 352.32 kB
  22. php-pdo-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 7bc5bf0cd161d22022dab7571f856afc
    SHA-256: 7be155b87ff7e3cfa8876d23c94304e665c18c571b95e590654b19fb73f6d37f
    Size: 85.69 kB
  23. php-pecl-apcu-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 22364011c8442bc539c46464092143a9
    SHA-256: f353e4ae8550a30f21559bf687c2a40c8de63f88f45ad2a94f8657ad0a9b0829
    Size: 59.42 kB
  24. php-pecl-apcu-debugsource-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: f025dbc63dd3c3361a1337d7b5267971
    SHA-256: d2ce648fea0d969204735e954904fd3ec7d153fcb26eb2d23fa2ef26e4d37e7e
    Size: 52.54 kB
  25. php-pecl-apcu-devel-5.1.23-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 77c73da71e19a943131b927acb3a0a3c
    SHA-256: 713dd20c40eb3f23ff3ced6d58ea4047c6b2cb566cf40f063a05b94faefe68dd
    Size: 61.67 kB
  26. php-pecl-redis6-6.1.0-2.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: b4ecd264c6977b119d049acaeae9d5b4
    SHA-256: f183c0e96fad4f57cab2a4179ae17f04707d003a13bdf122448186823262af2a
    Size: 274.00 kB
  27. php-pecl-redis6-debugsource-6.1.0-2.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: a448181e4bc97a3c9edc72e0a8707d0f
    SHA-256: 5d28bc445cff241f8a8b0af1f79d0f9e85d9b0caf8c553a517be5cbe3e7f6281
    Size: 151.39 kB
  28. php-pecl-rrd-2.0.3-4.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: ed6c25ad131988b74bf600f8cdc46bb8
    SHA-256: 7d83d40ae8f9c4fc7e1ac286d415a34084858d1c0441ae6be13a33f634a26292
    Size: 26.61 kB
  29. php-pecl-rrd-debugsource-2.0.3-4.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: e8b9956b5734b3249592056d90c14521
    SHA-256: 468c86d92e0e6ad5eba85e3fbe904e9e38e32c672bb7469776e182786188f1d5
    Size: 17.68 kB
  30. php-pecl-xdebug3-3.3.1-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: d748decca183a85a28670d696f596244
    SHA-256: 933c9a0a7b6cb77f5ca9764d8c460f2fe5b1a76e3999006dba15564c7e9f300c
    Size: 209.64 kB
  31. php-pecl-xdebug3-debugsource-3.3.1-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 1ba7875e8b6da3143349ad1069b2c711
    SHA-256: e730043230dc83ac1e6f45877d296313b0bdeb84c10659c40d56d84f13d84853
    Size: 166.00 kB
  32. php-pecl-zip-1.22.3-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: a680eae93b3f5aa5f3d9b8f55e1ac7e1
    SHA-256: f610e4781243ff982f806ebd1fb72b49ff3471ce6d6eecdf5d078098318898a1
    Size: 63.42 kB
  33. php-pecl-zip-debugsource-1.22.3-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: c72278aa23cf6872aafe099ecb21b8dd
    SHA-256: 177c1b18c36e4a0ca91e66a1d4fed66b2f9484f4b5d739666a7f0541d61c7bfa
    Size: 30.79 kB
  34. php-pgsql-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 30f900e3f2b1e0d211094e4b1eafddef
    SHA-256: 8f62dcc548890c39037eddf9500eb0e767ea61b2b8c9fbefcfd5d5c520846f70
    Size: 74.35 kB
  35. php-process-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 891c94bdcbc3116318b80f44a1bc54bb
    SHA-256: 437d1aa19be82ed99f47365c5abc2133aba798f921b0db664f781e75e318d9d6
    Size: 41.04 kB
  36. php-snmp-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 73a767af3967bfb3bc9c2f98efafa29c
    SHA-256: c97528c41171b1dc737fd86e49082bace887d98c882f0d3a845a154046307974
    Size: 31.35 kB
  37. php-soap-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 937315b0026a5d6b5728882926d69287
    SHA-256: dbc575fe82f760d8f0fef621be89c831869eab76247938731ca0eab21fc34bbb
    Size: 140.84 kB
  38. php-xml-8.3.29-1.module+el9+1127+276b1dbf.x86_64.rpm
    MD5: 9620af2c44e6fbb39a3c68a37e5a9059
    SHA-256: d59efe231d0ad6ac2f1b82f0a8bc74ba1190549aa774112c196938a2a4b7037a
    Size: 149.82 kB