--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2022-ec0491574d
2022-07-15 01:15:23.604929
--------------------------------------------------------------------------------Name        : php
Product     : Fedora 36
Version     : 8.1.8
Release     : 1.fc36
URL         : https://www.php.net/
Summary     : PHP scripting language for creating dynamic web sites
Description :
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.

--------------------------------------------------------------------------------Update Information:

**PHP version 8.1.8** (07 Jul 2022)  **Core:**  * Fixed bug
[GH-8338](https://github.com/php/php-src/issues/8338) (Intel CET is disabled
unintentionally). (Chen, Hu) * Fixed leak in Enum::from/tryFrom for internal
enums when using JIT (ilutov) * Fixed calling internal methods with a static
return type from extension code. (Sara) * Fixed bug
[GH-8655](https://github.com/php/php-src/issues/8655) (Casting an object to
array does not unwrap refcount=1 references). (Nicolas Grekas) * Fixed potential
use after free in php_binary_init(). (Heiko Weber)  **CLI:**  * Fixed
[GH-8827](https://github.com/php/php-src/issues/8827) (Intentionally closing std
handles no longer possible). (cmb)  **Curl:**  * Fixed CURLOPT_TLSAUTH_TYPE is
not treated as a string option. (Pierrick)  **Date:**  * Fixed bug php#72963
(Null-byte injection in CreateFromFormat and related functions). (Derick) *
Fixed bug php#74671 (DST timezone abbreviation has incorrect offset). (Derick) *
Fixed bug php#77243 (Weekdays are calculated incorrectly for negative years).
(Derick) * Fixed bug php#78139 (timezone_open accepts invalid timezone string
argument). (Derick)  **Fileinfo:**  * Fixed bug php#81723 (Heap buffer overflow
in finfo_buffer). (**CVE-2022-31627**) (cmb)  **FPM:**  * Fixed bug php#67764
(fpm: syslog.ident don't work). (Jakub Zelenka)  **GD:**  * Fixed
imagecreatefromavif() memory leak. (cmb)  **MBString:**  * mb_detect_encoding
recognizes all letters in Czech alphabet (alexdowad) * mb_detect_encoding
recognizes all letters in Hungarian alphabet (alexdowad) * Fixed bug
[GH-8685](https://github.com/php/php-src/issues/8685) (pcre not ready at
mbstring startup). (Remi) * Backwards-compatible mappings for 0x5C/0x7E in
Shift-JIS are restored, after they had been changed in 8.1.0. (Alex Dowad)
**ODBC:**  * Fixed handling of single-key connection strings. (Calvin Buckley)
**OPcache:**  * Fixed bug [GH-8591](https://github.com/php/php-src/issues/8591)
(tracing JIT crash after private instance method change). (Arnaud, Dmitry, Oleg
Stepanischev)  **OpenSSL:**  * Fixed bug php#50293 (Several openssl functions
ignore the VCWD). (Jakub Zelenka, cmb) * Fixed bug php#81713 (NULL byte
injection in several OpenSSL functions working with certificates). (Jakub
Zelenka)  **PDO_ODBC:**  * Fixed handling of single-key connection strings.
(Calvin Buckley)
--------------------------------------------------------------------------------ChangeLog:

* Wed Jul  6 2022 Remi Collet  - 8.1.8-1
- Update to 8.1.8 - https://www.php.net/releases/8_1_8.php
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-ec0491574d' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Fedora 36: php 2022-ec0491574d

July 14, 2022
**PHP version 8.1.8** (07 Jul 2022) **Core:** * Fixed bug [GH-8338](https://github.com/php/php-src/issues/8338) (Intel CET is disabled unintentionally)

Summary

PHP is an HTML-embedded scripting language. PHP attempts to make it

easy for developers to write dynamically generated web pages. PHP also

offers built-in database integration for several commercial and

non-commercial database management systems, so writing a

database-enabled webpage with PHP is fairly simple. The most common

use of PHP coding is probably as a replacement for CGI scripts.

**PHP version 8.1.8** (07 Jul 2022) **Core:** * Fixed bug

[GH-8338](https://github.com/php/php-src/issues/8338) (Intel CET is disabled

unintentionally). (Chen, Hu) * Fixed leak in Enum::from/tryFrom for internal

enums when using JIT (ilutov) * Fixed calling internal methods with a static

return type from extension code. (Sara) * Fixed bug

[GH-8655](https://github.com/php/php-src/issues/8655) (Casting an object to

array does not unwrap refcount=1 references). (Nicolas Grekas) * Fixed potential

use after free in php_binary_init(). (Heiko Weber) **CLI:** * Fixed

[GH-8827](https://github.com/php/php-src/issues/8827) (Intentionally closing std

handles no longer possible). (cmb) **Curl:** * Fixed CURLOPT_TLSAUTH_TYPE is

not treated as a string option. (Pierrick) **Date:** * Fixed bug php#72963

(Null-byte injection in CreateFromFormat and related functions). (Derick) *

Fixed bug php#74671 (DST timezone abbreviation has incorrect offset). (Derick) *

Fixed bug php#77243 (Weekdays are calculated incorrectly for negative years).

(Derick) * Fixed bug php#78139 (timezone_open accepts invalid timezone string

argument). (Derick) **Fileinfo:** * Fixed bug php#81723 (Heap buffer overflow

in finfo_buffer). (**CVE-2022-31627**) (cmb) **FPM:** * Fixed bug php#67764

(fpm: syslog.ident don't work). (Jakub Zelenka) **GD:** * Fixed

imagecreatefromavif() memory leak. (cmb) **MBString:** * mb_detect_encoding

recognizes all letters in Czech alphabet (alexdowad) * mb_detect_encoding

recognizes all letters in Hungarian alphabet (alexdowad) * Fixed bug

[GH-8685](https://github.com/php/php-src/issues/8685) (pcre not ready at

mbstring startup). (Remi) * Backwards-compatible mappings for 0x5C/0x7E in

Shift-JIS are restored, after they had been changed in 8.1.0. (Alex Dowad)

**ODBC:** * Fixed handling of single-key connection strings. (Calvin Buckley)

**OPcache:** * Fixed bug [GH-8591](https://github.com/php/php-src/issues/8591)

(tracing JIT crash after private instance method change). (Arnaud, Dmitry, Oleg

Stepanischev) **OpenSSL:** * Fixed bug php#50293 (Several openssl functions

ignore the VCWD). (Jakub Zelenka, cmb) * Fixed bug php#81713 (NULL byte

injection in several OpenSSL functions working with certificates). (Jakub

Zelenka) **PDO_ODBC:** * Fixed handling of single-key connection strings.

(Calvin Buckley)

* Wed Jul 6 2022 Remi Collet - 8.1.8-1

- Update to 8.1.8 - https://www.php.net/releases/8_1_8.php

su -c 'dnf upgrade --advisory FEDORA-2022-ec0491574d' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

FEDORA-2022-ec0491574d 2022-07-15 01:15:23.604929 Product : Fedora 36 Version : 8.1.8 Release : 1.fc36 URL : https://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. **PHP version 8.1.8** (07 Jul 2022) **Core:** * Fixed bug [GH-8338](https://github.com/php/php-src/issues/8338) (Intel CET is disabled unintentionally). (Chen, Hu) * Fixed leak in Enum::from/tryFrom for internal enums when using JIT (ilutov) * Fixed calling internal methods with a static return type from extension code. (Sara) * Fixed bug [GH-8655](https://github.com/php/php-src/issues/8655) (Casting an object to array does not unwrap refcount=1 references). (Nicolas Grekas) * Fixed potential use after free in php_binary_init(). (Heiko Weber) **CLI:** * Fixed [GH-8827](https://github.com/php/php-src/issues/8827) (Intentionally closing std handles no longer possible). (cmb) **Curl:** * Fixed CURLOPT_TLSAUTH_TYPE is not treated as a string option. (Pierrick) **Date:** * Fixed bug php#72963 (Null-byte injection in CreateFromFormat and related functions). (Derick) * Fixed bug php#74671 (DST timezone abbreviation has incorrect offset). (Derick) * Fixed bug php#77243 (Weekdays are calculated incorrectly for negative years). (Derick) * Fixed bug php#78139 (timezone_open accepts invalid timezone string argument). (Derick) **Fileinfo:** * Fixed bug php#81723 (Heap buffer overflow in finfo_buffer). (**CVE-2022-31627**) (cmb) **FPM:** * Fixed bug php#67764 (fpm: syslog.ident don't work). (Jakub Zelenka) **GD:** * Fixed imagecreatefromavif() memory leak. (cmb) **MBString:** * mb_detect_encoding recognizes all letters in Czech alphabet (alexdowad) * mb_detect_encoding recognizes all letters in Hungarian alphabet (alexdowad) * Fixed bug [GH-8685](https://github.com/php/php-src/issues/8685) (pcre not ready at mbstring startup). (Remi) * Backwards-compatible mappings for 0x5C/0x7E in Shift-JIS are restored, after they had been changed in 8.1.0. (Alex Dowad) **ODBC:** * Fixed handling of single-key connection strings. (Calvin Buckley) **OPcache:** * Fixed bug [GH-8591](https://github.com/php/php-src/issues/8591) (tracing JIT crash after private instance method change). (Arnaud, Dmitry, Oleg Stepanischev) **OpenSSL:** * Fixed bug php#50293 (Several openssl functions ignore the VCWD). (Jakub Zelenka, cmb) * Fixed bug php#81713 (NULL byte injection in several OpenSSL functions working with certificates). (Jakub Zelenka) **PDO_ODBC:** * Fixed handling of single-key connection strings. (Calvin Buckley) * Wed Jul 6 2022 Remi Collet - 8.1.8-1 - Update to 8.1.8 - https://www.php.net/releases/8_1_8.php su -c 'dnf upgrade --advisory FEDORA-2022-ec0491574d' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure

Change Log

References

Update Instructions

Severity
Product : Fedora 36
Version : 8.1.8
Release : 1.fc36
URL : https://www.php.net/
Summary : PHP scripting language for creating dynamic web sites

Related News

23.Tablet Connections Esm H320
2 - 3 min read
The release of Ubuntu 24.04 LTS , also known as Noble Numbat, brings various security enhancements and exciting new features . These improvements
4.Lock AbstractDigital Esm H320
2 - 3 min read
Tails 6.2 is a new Linux distribution release that expands its multilingual support and improves security features. The distribution is a
19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved