Mageia 9: php Critical Memory Leak Buffer Overflow Vuln 2025-0330
mageia
December 21, 2025
MGASA-2025-0330 - Updated php packages fix security vulnerabilities
Summary
Description:
Opcache:
- Reset global pointers to prevent use-after-free in zend_jit_status.
PDO:
- Fixed PDO quoting result null deref.
Standard:
- Fixed Null byte termination in dns_get_record
- Heap buffer overflow in array_merge
- Information Leak of Memory in getimagesize
References
- https://bugs.mageia.org/show_bug.cgi?id=34873
- https://www.php.net/ChangeLog-8.php#8.2.30
- https://www.cve.org/CVERecord?id=CVE-2025-14180
- https://www.cve.org/CVERecord?id=CVE-2025-14178
- https://www.cve.org/CVERecord?id=CVE-2025-14177
Topics Covered
Resolution
SRPMS
- 9/core/php-8.2.30-1.mga9
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 21 Dec 2025
URL: https://advisories.mageia.org/MGASA-2025-0330.html
Type: security
CVE: CVE-2025-14180,
CVE-2025-14178,
CVE-2025-14177
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!