Explore top 10 tips to secure your open-source projects now. Read More
×
PHP version 8.4.23 (03 Jul 2026) Core: Fixed bug GH-22280 (Incorrect compile error for goto to label preceding try/finally block). (Pratik Bhujel) BCMath:. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-f4272d87ef 2026-07-10 01:05:32.166877+00:00 -------------------------------------------------------------------------------- Name : php Product : Fedora 43 Version : 8.4.23 Release : 1.fc43 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: PHP version 8.4.23 (03 Jul 2026) Core: Fixed bug GH-22280 (Incorrect compile error for goto to label preceding try/finally block). (Pratik Bhujel) BCMath: Fixed issues with oversized allocations and signed overflow in bcround() and BcMath\Number::round(). (edorian) Date: Fix incorrect recurrence check of DatePeriod::createFromISO8601String(). (ndossche) DOM: Fix GH-22219 (Dom\XMLDocument::schemaValidate fails to resolve xs:QName with prefix from imported schema). (David Carlier) Exif: Read correct value for single and double tags. (ndossche) GD: Fixed bug GH-22121 (Double free in gdImageSetStyle() after overflow-triggered early return). (iliaal) Fixed bug GH-19666 (imageconvolution() unexpected nan filter value). (David Carlier) Fixed bug GH-19739 (imageellipse/imagefilledellipse overflow). (David Carlier) Fixed bug GH-19730 (imageaffine overflow). (David Carlier) Intl: Fix incorrectargument positions for uninitialized calendar arguments in IntlCalendar::equals(), ::before(), ::after(), and ::isEquivalentTo(), and for invalid start/end arguments in transliterator_transliterate(). (Weilin Du) Fixed IntlTimeZone::getDisplayName() to synchronize object error state for invalid display types. (Weilin Du) Fixed Spoofchecker restriction-level APIs to only be exposed with ICU 53 and later. (Graham Campbell) mysqli: Fix stmt-> query leak in mysqli_execute_query() validation errors. (David Carlier) Opcache: Fixed bug GH-20469 (Unsafe inheritance cache replay with reentrant autoloading). (Levi Morrison) OpenSSL: Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in openssl_encrypt with AES-WRAP-PAD). (David Carlier) Phar: Fixed a bypass of the magic ".phar" directory protection in Phar::addEmptyDir() for paths starting with "/.phar", while allowing non-magic directory names that merely share the ".phar" prefix. (Weilin Du) Reflection: Preserve class-name case in ReflectionClass::getProperty() error messages and autoloading. (jorgsowa) Sqlite: Fix error checks for column retrieval. (ndossche) Zlib: Fixed memory leak if deflate initialization fails and there is a dict. (ndossche) Fixed memory leak in inflate_add(). (ndossche) -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 1 2026 Remi Collet - 8.4.23-1 - Update to 8.4.23 - http://www.php.net/releases/8_4_23.php -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-f4272d87ef' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
PHP version 8.5.8 (02 Jul 2026) Core: Fixed bug GH-22280 (Incorrect compile error for goto to label preceding try/finally block). (Pratik Bhujel) Fixed bug GH-22112 (Assertion when error handler throws during NaN to. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-ec9cb4652f 2026-07-10 00:52:14.826303+00:00 -------------------------------------------------------------------------------- Name : php Product : Fedora 44 Version : 8.5.8 Release : 1.fc44 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: PHP version 8.5.8 (02 Jul 2026) Core: Fixed bug GH-22280 (Incorrect compile error for goto to label preceding try/finally block). (Pratik Bhujel) Fixed bug GH-22112 (Assertion when error handler throws during NaN to bool/string coercion). (iliaal) BCMath: Fixed issues with oversized allocations and signed overflow in bcround() and BcMath\Number::round(). (edorian) Date: Fix incorrect recurrence check of DatePeriod::createFromISO8601String(). (ndossche) Exif: Read correct value for single and double tags. (ndossche) GD: Fixed bug GH-22121 (Double free in gdImageSetStyle() after overflow-triggered early return). (iliaal) Intl: Fix incorrect argument positions for invalid start/end arguments in transliterator_transliterate(). (Weilin Du) Fixed IntlTimeZone::getDisplayName() to synchronize object error state for invalid display types.(Weilin Du) Lexbor: Merge patch c3a6847. (ilutov, timwolla) Opcache: Fixed bug GH-22265 (Another tailcall vm_interrupt bug). (Levi Morrison) Fixed bug GH-20469 (Unsafe inheritance cache replay with reentrant autoloading). (Levi Morrison) Fixed bug GH-21972 (Corrupted variable type when a typed by-value return contains a reference wrapper). (Weilin Du) OpenSSL: Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in openssl_encrypt with AES-WRAP-PAD). (David Carlier) Phar: Fixed a bypass of the magic ".phar" directory protection in Phar::addEmptyDir() for paths starting with "/.phar", while allowing non-magic directory names that merely share the ".phar" prefix. (Weilin Du) Reflection: Preserve class-name case in ReflectionClass::getProperty() error messages and autoloading. (jorgsowa) SOAP: Fixed bug GH-22218 (SoapServer::handle() crash on $_SERVER not being an array). (David Carlier / Rex-Reynolds) Fixed bug GH-22285 (Soap server requires the raw input to be passed to $server-> handle). (David Carlier / ndossche) Sqlite: Fix error checks for column retrieval. (ndossche) URI: Add LEXBOR_STATIC to CFLAGS_URI on Windows so ext/uri does not see LXB_API as __declspec(dllimport) when linked statically into PHP. (Luther Monson) Clean error logs before each Uri\WhatWg\Url wither call so that errors from previous wither calls are not returned the next time a UrlValidationError is thrown. (kocsismate) Zlib: Fixed memory leak if deflate initialization fails and there is a dict. (ndossche) Fixed memory leak in inflate_add(). (ndossche) -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 1 2026 Remi Collet - 8.5.8-1 - Update to 8.5.8 - http://www.php.net/releases/8_5_8.php -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-ec9cb4652f' at the command line. For more information, referto the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-33449 http://linux.oracle.com/errata/ELSA-2026-33449.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable LinuxNetwork: x86_64: php-8.0.30-6.el9_8.x86_64.rpm php-bcmath-8.0.30-6.el9_8.x86_64.rpm php-cli-8.0.30-6.el9_8.x86_64.rpm php-common-8.0.30-6.el9_8.x86_64.rpm php-dba-8.0.30-6.el9_8.x86_64.rpm php-dbg-8.0.30-6.el9_8.x86_64.rpm php-devel-8.0.30-6.el9_8.x86_64.rpm php-embedded-8.0.30-6.el9_8.x86_64.rpm php-enchant-8.0.30-6.el9_8.x86_64.rpm php-ffi-8.0.30-6.el9_8.x86_64.rpm php-fpm-8.0.30-6.el9_8.x86_64.rpm php-gd-8.0.30-6.el9_8.x86_64.rpm php-gmp-8.0.30-6.el9_8.x86_64.rpm php-intl-8.0.30-6.el9_8.x86_64.rpm php-ldap-8.0.30-6.el9_8.x86_64.rpm php-mbstring-8.0.30-6.el9_8.x86_64.rpm php-mysqlnd-8.0.30-6.el9_8.x86_64.rpm php-odbc-8.0.30-6.el9_8.x86_64.rpm php-opcache-8.0.30-6.el9_8.x86_64.rpm php-pdo-8.0.30-6.el9_8.x86_64.rpm php-pgsql-8.0.30-6.el9_8.x86_64.rpm php-process-8.0.30-6.el9_8.x86_64.rpm php-snmp-8.0.30-6.el9_8.x86_64.rpm php-soap-8.0.30-6.el9_8.x86_64.rpm php-xml-8.0.30-6.el9_8.x86_64.rpm aarch64: php-8.0.30-6.el9_8.aarch64.rpm php-bcmath-8.0.30-6.el9_8.aarch64.rpm php-cli-8.0.30-6.el9_8.aarch64.rpm php-common-8.0.30-6.el9_8.aarch64.rpm php-dba-8.0.30-6.el9_8.aarch64.rpm php-dbg-8.0.30-6.el9_8.aarch64.rpm php-devel-8.0.30-6.el9_8.aarch64.rpm php-embedded-8.0.30-6.el9_8.aarch64.rpm php-enchant-8.0.30-6.el9_8.aarch64.rpm php-ffi-8.0.30-6.el9_8.aarch64.rpm php-fpm-8.0.30-6.el9_8.aarch64.rpm php-gd-8.0.30-6.el9_8.aarch64.rpm php-gmp-8.0.30-6.el9_8.aarch64.rpm php-intl-8.0.30-6.el9_8.aarch64.rpm php-ldap-8.0.30-6.el9_8.aarch64.rpm php-mbstring-8.0.30-6.el9_8.aarch64.rpm php-mysqlnd-8.0.30-6.el9_8.aarch64.rpm php-odbc-8.0.30-6.el9_8.aarch64.rpm php-opcache-8.0.30-6.el9_8.aarch64.rpm php-pdo-8.0.30-6.el9_8.aarch64.rpm php-pgsql-8.0.30-6.el9_8.aarch64.rpm php-process-8.0.30-6.el9_8.aarch64.rpm php-snmp-8.0.30-6.el9_8.aarch64.rpm php-soap-8.0.30-6.el9_8.aarch64.rpm php-xml-8.0.30-6.el9_8.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates/php-8.0.30-6.el9_8.src.rpm Related CVEs: CVE-2026-6722 CVE-2026-6735 CVE-2026-7258 CVE-2026-7259 CVE-2026-7261 CVE-2026-7262 CVE-2026-7568 Description ofchanges: [8.0.30-6] - Fix XSS within status endpoint CVE-2026-6735 - Fix Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init() CVE-2026-7259 - Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map CVE-2026-6722 - Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION CVE-2026-7261 - Fix Broken Apache map value NULL check CVE-2026-7262 - Fix Signed integer overflow of char array offset CVE-2026-7568 - Fix Consistently pass unsigned char to ctype.h functions CVE-2026-7258 _______________________________________________ El-errata mailing list
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-34354 http://linux.oracle.com/errata/ELSA-2026-34354.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: apcu-panel-5.1.18-1.module+el8.10.0+90472+f810484b.noarch.rpm libzip-1.6.1-1.module+el8.10.0+90472+f810484b.x86_64.rpm libzip-devel-1.6.1-1.module+el8.10.0+90472+f810484b.x86_64.rpm libzip-tools-1.6.1-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-bcmath-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-cli-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-common-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-dba-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-dbg-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-devel-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-embedded-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-enchant-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-ffi-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-fpm-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-gd-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-gmp-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-intl-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-json-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-ldap-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-mbstring-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-mysqlnd-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-odbc-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-opcache-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-pdo-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-pear-1.10.13-1.module+el8.10.0+90472+f810484b.noarch.rpm php-pecl-apcu-5.1.18-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-pecl-apcu-devel-5.1.18-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-pecl-rrd-2.0.1-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-pecl-xdebug-2.9.5-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-pecl-zip-1.18.2-1.module+el8.10.0+90472+f810484b.x86_64.rpm php-pgsql-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-process-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-snmp-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-soap-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-xml-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm php-xmlrpc-7.4.33-4.module+el8.10.0+90942+d80f51f3.x86_64.rpm aarch64: apcu-panel-5.1.18-1.module+el8.10.0+90472+f810484b.noarch.rpm libzip-1.6.1-1.module+el8.10.0+90472+f810484b.aarch64.rpm libzip-devel-1.6.1-1.module+el8.10.0+90472+f810484b.aarch64.rpm libzip-tools-1.6.1-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-bcmath-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-cli-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-common-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-dba-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-dbg-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-devel-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-embedded-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-enchant-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-ffi-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-fpm-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-gd-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-gmp-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-intl-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-json-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-ldap-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-mbstring-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-mysqlnd-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-odbc-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-opcache-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-pdo-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-pear-1.10.13-1.module+el8.10.0+90472+f810484b.noarch.rpm php-pecl-apcu-5.1.18-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-pecl-apcu-devel-5.1.18-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-pecl-rrd-2.0.1-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-pecl-xdebug-2.9.5-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-pecl-zip-1.18.2-1.module+el8.10.0+90472+f810484b.aarch64.rpm php-pgsql-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-process-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-snmp-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-soap-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-xml-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm php-xmlrpc-7.4.33-4.module+el8.10.0+90942+d80f51f3.aarch64.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/libzip-1.6.1-1.module+el8.10.0+90472+f810484b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-7.4.33-4.module+el8.10.0+90942+d80f51f3.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-pear-1.10.13-1.module+el8.10.0+90472+f810484b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-pecl-apcu-5.1.18-1.module+el8.10.0+90472+f810484b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-pecl-rrd-2.0.1-1.module+el8.10.0+90472+f810484b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-pecl-xdebug-2.9.5-1.module+el8.10.0+90472+f810484b.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/php-pecl-zip-1.18.2-1.module+el8.10.0+90472+f810484b.src.rpm Related CVEs: CVE-2026-6722 CVE-2026-6735 CVE-2026-7258 CVE-2026-7261 CVE-2026-7262 CVE-2026-7568 Description of changes: libzip [1.6.1-1] - update to 1.6.1 - enable lzma support php [7.4.33-4] - Fix XSS within status endpoint CVE-2026-6735 - Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map CVE-2026-6722 - Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION CVE-2026-7261 - Fix Broken Apache map value NULL check CVE-2026-7262 - Fix Signed integer overflow of char array offset CVE-2026-7568 - Fix Consistently pass unsigned char to ctype.h functions CVE-2026-7258 php-pear [1:1.10.13-1] - update PEAR to 1.10.13 - update Archive_Tar to 1.4.14 php-pecl-apcu [5.1.18-1] - update to 5.1.18 php-pecl-rrd [2.0.1-1] - build for RHEL 8 php-pecl-xdebug [2.9.5-1] - update to2.9.5 php-pecl-zip [1.18.2-1] - update to 1.18.2" -s " php:7.4 security update" _______________________________________________ El-errata mailing list
It was discovered that a buffer overflow in the implementation of AES Key Wrap with Padding in the openssl extension of PHP, a widely-used open source general purpose scripting language, could result in memory corruption. For the stable distribution (trixie), this problem has been fixed in. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6377-1
Important: php:7.4 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:34354", "synopsis": "Important: php:7.4 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for module.libzip, php-pear, php-pecl-xdebug, libzip, php, module.php-pecl-xdebug, php-pecl-rrd, module.php, module.php-pecl-apcu, module.php-pecl-rrd, php-pecl-zip, module.php-pecl-zip, module.php-pear, php-pecl-apcu.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.\n\nSecurity Fix(es):\n\n* php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability (CVE-2026-6722)\n\n* PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions (CVE-2026-7258)\n\n* PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation (CVE-2026-6735)\n\n* PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling (CVE-2026-7261)\n\n* php: NULL pointer dereference in SOAP apache:Map decoder with missing (CVE-2026-7262)\n\n* php: signed integer overflow in metaphone() (CVE-2026-7568)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2468560", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468560", "description": ""}, {"ticket": "2468561", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468561", "description": ""}, {"ticket": "2468562", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468562", "description": ""},{"ticket": "2468563", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468563", "description": ""}, {"ticket": "2468565", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468565", "description": ""}, {"ticket": "2468566", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468566", "description": ""}], "cves": [{"name": "CVE-2026-6722", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6722", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.7", "cwe": "CWE-825"}, {"name": "CVE-2026-6735", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6735", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "cvss3BaseScore": "5.4", "cwe": "CWE-79"}, {"name": "CVE-2026-7258", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7258", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-839"}, {"name": "CVE-2026-7261", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7261", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "cvss3BaseScore": "5.6", "cwe": "CWE-825"}, {"name": "CVE-2026-7262", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7262", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-476"}, {"name": "CVE-2026-7568", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7568", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}], "references": [], "publishedAt": "2026-07-02T00:01:04.334825Z", "rpms": {"Rocky Linux 8": {"nvras": ["apcu-panel-0:5.1.18-1.module+el8.10.0+1912+72767185.noarch.rpm","libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm","php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm","php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.src.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-bcmath-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-bcmath-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-bcmath-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-bcmath-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-cli-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-cli-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-cli-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-cli-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-common-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-common-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm","php-common-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-common-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dba-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dba-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dba-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dba-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dbg-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dbg-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dbg-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dbg-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-debugsource-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-debugsource-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-devel-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-devel-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-embedded-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-embedded-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-embedded-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-embedded-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-enchant-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-enchant-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-enchant-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-enchant-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ffi-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ffi-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ffi-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ffi-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm","php-fpm-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-fpm-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-fpm-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-fpm-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-intl-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-intl-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-intl-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-intl-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-json-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-json-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-json-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-json-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ldap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ldap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ldap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ldap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mbstring-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mbstring-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mbstring-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mbstring-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mysqlnd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm","php-mysqlnd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mysqlnd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mysqlnd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-odbc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-odbc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-odbc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-odbc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-opcache-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-opcache-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-opcache-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-opcache-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pdo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pdo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pdo-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pdo-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pgsql-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pgsql-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pgsql-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pgsql-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-process-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-process-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-process-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-process-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-snmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-snmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-snmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-snmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-soap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm","php-soap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-soap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-soap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xml-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xml-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xml-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xml-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xmlrpc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xmlrpc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xmlrpc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xmlrpc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. PHP 7.4 security updates for Rocky Linux address critical issues including remote code execution and denial of service.. Rocky Linux PHP security updates Remote Code Execution Denial of Service. . LinuxSecurity.com Team
Important: php:7.4 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:34354", "synopsis": "Important: php:7.4 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for module.libzip, php-pear, php-pecl-xdebug, libzip, php, module.php-pecl-xdebug, php-pecl-rrd, module.php, module.php-pecl-apcu, module.php-pecl-rrd, php-pecl-zip, module.php-pecl-zip, module.php-pear, php-pecl-apcu.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.\n\nSecurity Fix(es):\n\n* php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability (CVE-2026-6722)\n\n* PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions (CVE-2026-7258)\n\n* PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation (CVE-2026-6735)\n\n* PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling (CVE-2026-7261)\n\n* php: NULL pointer dereference in SOAP apache:Map decoder with missing (CVE-2026-7262)\n\n* php: signed integer overflow in metaphone() (CVE-2026-7568)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2468560", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468560", "description": ""}, {"ticket": "2468561", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468561", "description": ""}, {"ticket": "2468562", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468562", "description": ""},{"ticket": "2468563", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468563", "description": ""}, {"ticket": "2468565", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468565", "description": ""}, {"ticket": "2468566", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468566", "description": ""}], "cves": [{"name": "CVE-2026-6722", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6722", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.7", "cwe": "CWE-825"}, {"name": "CVE-2026-6735", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6735", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "cvss3BaseScore": "5.4", "cwe": "CWE-79"}, {"name": "CVE-2026-7258", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7258", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-839"}, {"name": "CVE-2026-7261", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7261", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "cvss3BaseScore": "5.6", "cwe": "CWE-825"}, {"name": "CVE-2026-7262", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7262", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-476"}, {"name": "CVE-2026-7568", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7568", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}], "references": [], "publishedAt": "2026-07-02T00:01:04.334825Z", "rpms": {"Rocky Linux 8": {"nvras": ["apcu-panel-0:5.1.18-1.module+el8.10.0+1912+72767185.noarch.rpm","libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm","php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm","php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.src.rpm", "apcu-panel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.noarch.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1604+6558efc7.noarch.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm","php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-bcmath-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-bcmath-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-bcmath-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-bcmath-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-cli-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-cli-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-cli-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-cli-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-common-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-common-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-common-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-common-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dba-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dba-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dba-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dba-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dbg-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dbg-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-dbg-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-dbg-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm","php-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-debugsource-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-debugsource-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-devel-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-devel-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-embedded-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-embedded-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-embedded-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-embedded-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-enchant-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-enchant-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-enchant-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-enchant-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ffi-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ffi-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ffi-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ffi-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-fpm-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-fpm-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-fpm-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-fpm-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-gmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-gmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm","php-intl-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-intl-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-intl-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-intl-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-json-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-json-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-json-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-json-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ldap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ldap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-ldap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-ldap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mbstring-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mbstring-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mbstring-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mbstring-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mysqlnd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mysqlnd-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-mysqlnd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-mysqlnd-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-odbc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-odbc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-odbc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-odbc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-opcache-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-opcache-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-opcache-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-opcache-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm","php-pdo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pdo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pdo-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pdo-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pgsql-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pgsql-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-pgsql-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-pgsql-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-process-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-process-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-process-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-process-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-snmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-snmp-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-snmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-snmp-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-soap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-soap-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-soap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-soap-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xml-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xml-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xml-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xml-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xmlrpc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xmlrpc-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm", "php-xmlrpc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.aarch64.rpm", "php-xmlrpc-debuginfo-0:7.4.33-4.module+el8.10.0+40225+a4e35fd3.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}.Critical php security updates available for Rocky Linux 8 addressing multiple vulnerabilities including remote code execution.. Rocky Linux security, php update, software vulnerabilities, remote code execution. . LinuxSecurity.com Team
Important: php:7.4 security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:34354", "synopsis": "Important: php:7.4 security update", "severity": "SEVERITY_IMPORTANT", "topic": "An update is available for module.libzip, php-pear, php-pecl-xdebug, libzip, module.php-pecl-xdebug, php-pecl-rrd, module.php-pecl-apcu, module.php-pecl-rrd, php-pecl-zip, module.php-pecl-zip, module.php-pear, php-pecl-apcu.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.\n\nSecurity Fix(es):\n\n* php: php-soap: php-src: PHP SOAP extension: Remote Code Execution via use-after-free vulnerability (CVE-2026-6722)\n\n* PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions (CVE-2026-7258)\n\n* PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting vulnerability via improper URL sanitation (CVE-2026-6735)\n\n* PHP: PHP SoapServer: Memory corruption and information disclosure via incorrect persistence handling (CVE-2026-7261)\n\n* php: NULL pointer dereference in SOAP apache:Map decoder with missing (CVE-2026-7262)\n\n* php: signed integer overflow in metaphone() (CVE-2026-7568)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2468560", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468560", "description": ""}, {"ticket": "2468561", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468561", "description": ""}, {"ticket": "2468562", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468562", "description": ""}, {"ticket": "2468563","sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468563", "description": ""}, {"ticket": "2468565", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468565", "description": ""}, {"ticket": "2468566", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2468566", "description": ""}], "cves": [{"name": "CVE-2026-6722", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6722", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L", "cvss3BaseScore": "7.7", "cwe": "CWE-825"}, {"name": "CVE-2026-6735", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-6735", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", "cvss3BaseScore": "5.4", "cwe": "CWE-79"}, {"name": "CVE-2026-7258", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7258", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "5.9", "cwe": "CWE-839"}, {"name": "CVE-2026-7261", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7261", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L", "cvss3BaseScore": "5.6", "cwe": "CWE-825"}, {"name": "CVE-2026-7262", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7262", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-476"}, {"name": "CVE-2026-7568", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-7568", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "cvss3BaseScore": "7.5", "cwe": "CWE-190"}], "references": [], "publishedAt": "2026-07-02T00:01:04.334825Z", "rpms": {"Rocky Linux 8": {"nvras": ["apcu-panel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.noarch.rpm","apcu-panel-0:5.1.18-1.module+el8.10.0+1912+72767185.noarch.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.src.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-debugsource-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-devel-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "libzip-tools-0:1.6.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "libzip-tools-debuginfo-0:1.6.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1604+6558efc7.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.noarch.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1605+02e07af7.src.rpm", "php-pear-1:1.10.13-1.module+el8.10.0+1912+72767185.src.rpm","php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-0:5.1.18-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debuginfo-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-debugsource-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-apcu-devel-0:5.1.18-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-rrd-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm","php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-rrd-debuginfo-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.aarch64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.4.0+414+2e7afcdd.x86_64.rpm", "php-pecl-rrd-debugsource-0:2.0.1-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-xdebug-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debuginfo-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-xdebug-debugsource-0:2.9.5-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.src.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-0:1.18.2-1.module+el8.10.0+1604+6558efc7.x86_64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm","php-pecl-zip-debuginfo-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1604+6558efc7.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.aarch64.rpm", "php-pecl-zip-debugsource-0:1.18.2-1.module+el8.10.0+1912+72767185.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Essential PHP security updates for Rocky Linux address critical vulnerabilities affecting systems. Ensure your installation is protected.. Rocky Linux PHP security update, critical PHP vulnerabilities, PHP remote code execution, server security advisory, PHP denial of service. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.