Mageia 9: 2024-0328 critical: php FPM log modification and security fixes

mageia

October 11, 2024

HTTP_REDIRECT_STATUS might be controlled via user request FPM log output might be modified by an attacker HTTP POST can be modified by an attacker For other bug fixes consult refer...

Summary

HTTP_REDIRECT_STATUS might be controlled via user request FPM log output might be modified by an attacker HTTP POST can be modified by an attacker For other bug fixes consult references

References

- https://bugs.mageia.org/show_bug.cgi?id=33623

- https://www.php.net/ChangeLog-8.php#8.2.24

- https://www.cve.org/CVERecord?id=CVE-2024-8927

- https://www.cve.org/CVERecord?id=CVE-2024-9026

Topics Covered

security advisory php bug fix Mageia HTTP POST FPM log modification

Resolution

SRPMS

- 9/core/php-8.2.24-1.mga9

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 11 Oct 2024

URL: https://advisories.mageia.org/MGASA-2024-0328.html

Type: security

CVE: CVE-2024-8927, CVE-2024-9026

Topics Covered

security advisory php bug fix Mageia HTTP POST FPM log modification

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9: 2024-0328 critical: php FPM log modification and security fixes

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9: 2024-0328 critical: php FPM log modification and security fixes

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!