[CLSA-2026:1779453862] alt-php73: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-05-22 12:44:27 UTC
Description:
- CVE-2026-6722: soap extension use-after-free via apache:Map duplicate keys - CVE-2026-7262: soap extension NULL pointer deref via apache:Map missing value - CVE-2026-6735: php-fpm status endpoint XSS via unescaped request_uri - CVE-2026-7261: soap SoapServer use-after-free after header parsing failure when SOAP_PERSISTENCE_SESSION is set - CVE-2026-7568: metaphone() signed integer overflow when called with >INT_MAX byte input on 64-bit builds
Updated packages:
  • alt-php73-7.3.33-57.el7.x86_64.rpm
    sha:17cb8344c2aa503dd1600cfe66ace083a31a6abd5baa5ec7b45b6fc1280a90a6
  • alt-php73-bcmath-7.3.33-57.el7.x86_64.rpm
    sha:e31f858f2fe59e342e36e1edbaf668468158ab1aa25ec062b52383c3c7ca97fb
  • alt-php73-cli-7.3.33-57.el7.x86_64.rpm
    sha:395c1c4503bf185c0ae763d3c62a3a4ca4d9e647d1e577169cfd4c4dab164d51
  • alt-php73-common-7.3.33-57.el7.x86_64.rpm
    sha:27199f2065019e2d6bbd08167faf9397483fca05341707c69b882cd2cd55ce6a
  • alt-php73-dba-7.3.33-57.el7.x86_64.rpm
    sha:bb76ce08e4ce7337c84b1793fe913ab504d2906dac0178e27e4558f4d2fa69d1
  • alt-php73-devel-7.3.33-57.el7.x86_64.rpm
    sha:62e663683b9fa6d00fdbb7adfed67773ae1e0f906888c995d72f302c6637e9c1
  • alt-php73-enchant-7.3.33-57.el7.x86_64.rpm
    sha:af001303142de15d40cb400a5e1f908dc8deaf283be82b5b4ea364df5076f101
  • alt-php73-firebird-7.3.33-57.el7.x86_64.rpm
    sha:f3c637c0089c1e6937e1294b3838a811c069277042f8d8fa43ca9e12a72df39f
  • alt-php73-gd-7.3.33-57.el7.x86_64.rpm
    sha:905c721b9de471e5ccff2112de4cc23bc0608228c66f8a3e83f03257a6da1f64
  • alt-php73-imap-7.3.33-57.el7.x86_64.rpm
    sha:f2d02571d3c9b11950a4c50f898dabe6d2baff5e25301b8aa850a9d50b85698e
  • alt-php73-intl-7.3.33-57.el7.x86_64.rpm
    sha:dfd4348c9cea4706ecd68d9f54cdfa06e5010436396c4a18b6a316e823ca4af1
  • alt-php73-ldap-7.3.33-57.el7.x86_64.rpm
    sha:6d4fb144bc99541da2520f5e63bafe0c0fe9f040f0342a3d9a02cf03c22ac118
  • alt-php73-mbstring-7.3.33-57.el7.x86_64.rpm
    sha:87ea24bd79d1b7b7bb362a804881f9d97d99269899ea62e185e452ba4238f03a
  • alt-php73-mysqlnd-7.3.33-57.el7.x86_64.rpm
    sha:7f1be1d04a01967ef23c24f7d808e7a7a99041e0440026a7762552e532bc849c
  • alt-php73-odbc-7.3.33-57.el7.x86_64.rpm
    sha:502cf6e4eafe1eb3a02d7a8126357b5e92726a66bde4685a4a2ce9e8da37464b
  • alt-php73-opcache-7.3.33-57.el7.x86_64.rpm
    sha:6962827eab740f26c990a962bd9ae06167730d0f5eff6331172bcba905b9d18f
  • alt-php73-pdo-7.3.33-57.el7.x86_64.rpm
    sha:da5a2f1133e490fda3a548a2375b294ef4ad17ae2d14495b6e4735e4e0066284
  • alt-php73-pgsql-7.3.33-57.el7.x86_64.rpm
    sha:09cd57b7dcc8e8b87dc129782cf899d8fa850690d70b7e70f3112d9436b6a9c3
  • alt-php73-php-fpm-7.3.33-57.el7.x86_64.rpm
    sha:4a6fbb908ec09844b2ec53e4082f3742e3c179f618e68ef111676fe9f66f08df
  • alt-php73-process-7.3.33-57.el7.x86_64.rpm
    sha:59484f1cdc69b2cfaed99747bebacba6a4a5b4dc4b6bece5cc6cec1606ade03c
  • alt-php73-pspell-7.3.33-57.el7.x86_64.rpm
    sha:fbdd452a3ce9349d40c2eefb2886f437ccd58c7151ce76fc884e6eddeff4196f
  • alt-php73-recode-7.3.33-57.el7.x86_64.rpm
    sha:cfdac9675a79d6c40416599dda90096903b37b4a6b2ae05ab5c12dd9be7dec0d
  • alt-php73-snmp-7.3.33-57.el7.x86_64.rpm
    sha:1f3d3b756ea54fdc7a7258874492af2bc9ec6a00a7adf5c42c2d548456714b1f
  • alt-php73-soap-7.3.33-57.el7.x86_64.rpm
    sha:3523b2125f0c55b33ab8ea3fea62e95ace4ec3e3aa0a837ab0d38a68ae844f68
  • alt-php73-sodium-7.3.33-57.el7.x86_64.rpm
    sha:33e8916090dca80c9d223f9b25b983186da0b015a4abe7b411f6e5bd1215059c
  • alt-php73-tidy-7.3.33-57.el7.x86_64.rpm
    sha:ffb76cedad0b9bad4668fab18d0d2e91d52efec15a5853c7b16f8fceeb268102
  • alt-php73-xml-7.3.33-57.el7.x86_64.rpm
    sha:ae282774da82b6071b577abb987f1f494d1eba53314fad81af475ff91c47df25
  • alt-php73-xmlrpc-7.3.33-57.el7.x86_64.rpm
    sha:b17987e19f08b44d1027c247e67eb3c8072e593c884cb52e4d2424943a977718
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.