Release date:
2026-05-20 12:39:25 UTC
Description:
- CVE-2026-6722: soap extension use-after-free via apache:Map duplicate keys
- CVE-2025-14179: pdo_firebird SQL injection via NUL bytes in quoted strings
- CVE-2026-7262: soap extension NULL pointer deref via apache:Map missing value
- CVE-2026-6735: php-fpm status endpoint XSS via unescaped request_uri
- CVE-2026-7259: mbstring NULL pointer dereference in php_mb_check_encoding()
via mb_ereg_search_init() with Oniguruma-only encodings (iso-8859-11, UJIS,
KOI8-R, ...)
- CVE-2026-7261: soap SoapServer use-after-free after header parsing failure
when SOAP_PERSISTENCE_SESSION is set
- CVE-2026-7568: metaphone() signed integer overflow when called with >INT_MAX
byte input on 64-bit builds
Updated packages:
-
alt-php80-8.0.30-42.el10.x86_64.rpm
sha:334f2dfa56e5fe940a42f0cf4d4f9072975edb55a51f3cac84abe645f5a3d454
-
alt-php80-bcmath-8.0.30-42.el10.x86_64.rpm
sha:1b6028dfbdc2903efe5bbf4049f89e6a7ff9aec23d33a97d53cc9b453d4e1fd8
-
alt-php80-cli-8.0.30-42.el10.x86_64.rpm
sha:1cc81f4c30ce47e0d48e03b6c0058a8a41fbf68c3cdb395ee156555246e06411
-
alt-php80-common-8.0.30-42.el10.x86_64.rpm
sha:e10a2868108188e465ddfd2a2ad40a006d1031f50d6b422f1e6fec170561df89
-
alt-php80-dba-8.0.30-42.el10.x86_64.rpm
sha:1daaff467ea95ffe77d7c05de11c7656ccef15e9934afcebb663033a03c2ef6b
-
alt-php80-devel-8.0.30-42.el10.x86_64.rpm
sha:a875dd283b15d36ee3f14d984f5056dfbe1274c4ef8ed5a7dc43ab71822ba54d
-
alt-php80-enchant-8.0.30-42.el10.x86_64.rpm
sha:c00d9834f0923d2565d60d26a8ed3b1330169f2b82777203215bc2bcc25de204
-
alt-php80-firebird-8.0.30-42.el10.x86_64.rpm
sha:47bdf53d6ade64c7de8844612eb98fe859aec181882e917aaba9d8966a5ac01d
-
alt-php80-gd-8.0.30-42.el10.x86_64.rpm
sha:45c4736b7aebd855a13e70bc11493b7a078d304d77d08c92cf91e5980e87e3e9
-
alt-php80-imap-8.0.30-42.el10.x86_64.rpm
sha:e3ce0ab556f56a7203bfde9209ed24f2e1e5dbd6e5f543b4b0437d11eab61e2e
-
alt-php80-intl-8.0.30-42.el10.x86_64.rpm
sha:efb6dda8c5932dfd3cfd22429c7f1c743471ab64b9d43c6f30a1602c5b9d4f42
-
alt-php80-ldap-8.0.30-42.el10.x86_64.rpm
sha:ea209f71160ae3e0ead36ab6c2da4fdeb3122aac680d2b48a92c6fe3b9c9ebca
-
alt-php80-mbstring-8.0.30-42.el10.x86_64.rpm
sha:e70ba0453b9070fefee4c4d1e932b79561d504e8768ca3d29371bccfdf7e2cf7
-
alt-php80-mysqlnd-8.0.30-42.el10.x86_64.rpm
sha:341e2fa8947cf7c3864c5e335e6581b5baabfcd15cf9fd0f4f642fb47eb6d633
-
alt-php80-odbc-8.0.30-42.el10.x86_64.rpm
sha:d65d461a761966c053e38e1b964fd98e923e8dfb85a427611b6bf885bc3a222b
-
alt-php80-opcache-8.0.30-42.el10.x86_64.rpm
sha:67d82f4293e2d102d8c1c3ebeefee7f67b5f49f6154320d9ad3b4ae287881257
-
alt-php80-pdo-8.0.30-42.el10.x86_64.rpm
sha:97e1a9485f501d4f020b1d51b53a9c03e5a70dc92a00b2e2ed76634180169da1
-
alt-php80-pgsql-8.0.30-42.el10.x86_64.rpm
sha:19b7eb1a57178f42884f611738666a167f39e1b40034e3595713622d01b1d3fc
-
alt-php80-php-fpm-8.0.30-42.el10.x86_64.rpm
sha:6ff89ea2619f84ffe563e4ee37356a5b6b65844f9901ab92e8061d0e23d14aed
-
alt-php80-process-8.0.30-42.el10.x86_64.rpm
sha:4e0b40516b2b2b8105c347ae667e0d60cb4e6c9f5c654a964013db0032b66e4f
-
alt-php80-pspell-8.0.30-42.el10.x86_64.rpm
sha:5d3364b35f13cf7217f30415024c357cf1831eb84231777bdce7fd9deb247916
-
alt-php80-snmp-8.0.30-42.el10.x86_64.rpm
sha:f3b8bd12803f693299500e7e10c5da175a55a49ee1678deaf540e22dc44b068d
-
alt-php80-soap-8.0.30-42.el10.x86_64.rpm
sha:bdf82b644291a2305fbf7371412b608df8bd5da64e62b99713b45b25f9d9f5f7
-
alt-php80-sodium-8.0.30-42.el10.x86_64.rpm
sha:8e759a826bb4798bf5aa6547f6d088b7aee8b2be9ed4ae93a15150cf0dc5f210
-
alt-php80-tidy-8.0.30-42.el10.x86_64.rpm
sha:242007a0e455576ea5477dc46158b53485b37b1a913f7d89595fd5e3cc62767b
-
alt-php80-xml-8.0.30-42.el10.x86_64.rpm
sha:4ff821cf59767c33dc2aaa64bb9bf594505359739d2ebeda02e35354520442f5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
