Alerts This Week
Warning Icon 1 1,220
Alerts This Week
Warning Icon 1 1,220

Slackware: 2025-073-02: php Security Advisory Update

slackware
Calendar Grey March 14, 2025
Dist Slackware Esm H88
New php packages fix security issues in Slackware 15.0. Immediate update recommended to address significant risks.
New php packages are available for Slackware 15.0 and -current to fix security issues

Summary

Here are the details from the Slackware 15.0 ChangeLog: extra/php81/php81-8.1.32-i586-1_slack15.0.txz: Upgraded. This update fixes security issues: LibXML: libxml streams use wrong `content-type` header when requesting a redirected resource. Streams: Stream HTTP wrapper header check might omit basic auth header. Streams: Stream HTTP wrapper truncate redirect location to 1024 bytes. Streams: Streams HTTP wrapper does not fail for headers without colon. Streams: Header parser of http stream wrapper does not handle folded headers. For more information, see: https://www.php.net/ChangeLog-8.php#8.1.32 https://www.cve.org/CVERecord?id=CVE-2025-1219 https://www.cve.org/CVERecord?id=CVE-2025-1736 https://www.cve.org/CVERecord?id=CVE-2025-1861 https://www.cve.org/CVERecord?id=CVE-2025-1734 https://www.cve.org/CVERecord?id=CVE-2025-1217 (* Security fix *)

Topics%20covered

Topics Covered

security advisory php package update security fix Slackware stream vulnerabilities

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (http://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated packages for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/extra/php81/php81-8.1.32-i586-1_slack15.0.txz
Updated packages for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/extra/php81/php81-8.1.32-x86_64-1_slack15.0.txz
Updated packages for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/php-8.3.19-i686-1.txz ftp://ftp.slackware.com/pub/slackware/slackware-current/testing/packages/php-8.4.5-i686-1.txz
Updated packages for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/php-8.3.19-x86_64-1.txz ftp://ftp.slackware.com/pub/slackware/slackware64-current/testing/packages/php-8.4.5-x86_64-1.txz

MD5 Signatures

Slackware 15.0 packages: 7ba31f70c3300ea55ebfa9bd48c8e001 php81-8.1.32-i586-1_slack15.0.txz
Slackware x86_64 15.0 packages: 453e0b70f68ee1bc3fd5f55a2b87a46f php81-8.1.32-x86_64-1_slack15.0.txz
Slackware -current packages: 8a17a8d98cc13ebf3ff21febfcff9534 n/php-8.3.19-i686-1.txz 762cd3257676a5897acc1e4fcd074acc php-8.4.5-i686-1.txz
Slackware x86_64 -current packages: 03d971bf855ca09b2134b61e75ff0999 n/php-8.3.19-x86_64-1.txz 2ff6e389890ead53eb4bfd495b3ecf82 php-8.4.5-x86_64-1.txz

Severity
important
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory php package update security fix Slackware stream vulnerabilities

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg php81-8.1.32-i586-1_slack15.0.txz Then, restart Apache httpd: # /etc/rc.d/rc.httpd stop # /etc/rc.d/rc.httpd start

Your message here