[CLSA-2026:1779465340] alt-php70: Fix of 5 CVEs
Type:
security
Severity:
Critical
Release date:
2026-05-22 15:55:45 UTC
Description:
- CVE-2026-6722: soap extension use-after-free via apache:Map duplicate keys - CVE-2026-7262: soap extension NULL pointer deref via apache:Map missing value - CVE-2026-6735: php-fpm status endpoint XSS via unescaped request_uri - CVE-2026-7261: soap SoapServer use-after-free after header parsing failure when SOAP_PERSISTENCE_SESSION is set - CVE-2026-7568: metaphone() signed integer overflow when called with >INT_MAX byte input on 64-bit builds
Updated packages:
  • alt-php70-7.0.33-124.el7.x86_64.rpm
    sha:6f93d5c96c3ef5248afd383d82ce48f7c56c4438caf1df53a9547ca138dfa517
  • alt-php70-bcmath-7.0.33-124.el7.x86_64.rpm
    sha:1e29cc6dce4425cbff4cfd40a6f4442903c24c4bed8fa07b0bc3cde135f35683
  • alt-php70-cli-7.0.33-124.el7.x86_64.rpm
    sha:ed0b4ae4282244cea62ca29f595562b545ba62c4c5255c08ade5f2a9fcfd746b
  • alt-php70-common-7.0.33-124.el7.x86_64.rpm
    sha:118eb1be08236e65d166b481204b9c42cce7c2462215bcb97da863b93d94c774
  • alt-php70-dba-7.0.33-124.el7.x86_64.rpm
    sha:b6407a51d6793293c48b996bcdec2af7f37f38310591723976af6b89b91e8da9
  • alt-php70-devel-7.0.33-124.el7.x86_64.rpm
    sha:7598a8e3763e2d0838c5a3511b9d39b22a410e017a6299300ae5047f062cffce
  • alt-php70-enchant-7.0.33-124.el7.x86_64.rpm
    sha:42fc7866a370ef93eb9e2e43e98ed6fe00df511aed1e9e47ee45c9079341f6f5
  • alt-php70-firebird-7.0.33-124.el7.x86_64.rpm
    sha:2efc466444294d06c560e16dc3c59ef01fe6357a9caf31703d3e1b7c2f9abf98
  • alt-php70-gd-7.0.33-124.el7.x86_64.rpm
    sha:cfba81a826cf532b115c008a1d0b4f6411c18fc82634dcd346a24ed4ec82873c
  • alt-php70-imap-7.0.33-124.el7.x86_64.rpm
    sha:c3b13d9a1811f22bc003c8a2a6f435df38753cee0c80d993b78555a7ba3ce2e7
  • alt-php70-intl-7.0.33-124.el7.x86_64.rpm
    sha:a2b08572cf18098b9b3e2615c91b95f4123cd662b3b220ce1661beecdde5e6d8
  • alt-php70-ldap-7.0.33-124.el7.x86_64.rpm
    sha:5a9565b1bb2d843c7a512294ce649769be2763589d5779d3f21fb2c595b36876
  • alt-php70-mbstring-7.0.33-124.el7.x86_64.rpm
    sha:bb64631f40ecec290c830e8bf993b7965a30e9adc9b6ec8864e2b9ca0949e4e5
  • alt-php70-mcrypt-7.0.33-124.el7.x86_64.rpm
    sha:8afeeebff90f7110f732062edd393c18ed260d93ef17d85672b1a11f546fcf50
  • alt-php70-mysqlnd-7.0.33-124.el7.x86_64.rpm
    sha:1a3259a2eecf007712985911a831f81c0d83a481ee790ecae83bdf5a9e0cf038
  • alt-php70-odbc-7.0.33-124.el7.x86_64.rpm
    sha:aa8b1597916f6d118a23423f0a716abbd98a62374322ceb7ef97984c0f7616a4
  • alt-php70-opcache-7.0.33-124.el7.x86_64.rpm
    sha:f949c6dad6d0e4745530201935d85cbf599bd4947b52a7bd29632012e780a799
  • alt-php70-pdo-7.0.33-124.el7.x86_64.rpm
    sha:8b0f95cd2ecde40a4376f0dcf5509571f255132bacdc0da8576c4ce0c90a20c1
  • alt-php70-pgsql-7.0.33-124.el7.x86_64.rpm
    sha:e6c6d98db1d2d6876134ff529aab92716a62fc458ba204cddb49da924baf0f13
  • alt-php70-php-fpm-7.0.33-124.el7.x86_64.rpm
    sha:267d18d0edec045c416604a75c8001ab63241c857d2b066d66324548575800aa
  • alt-php70-process-7.0.33-124.el7.x86_64.rpm
    sha:6e5a2bdcc0618442cd8c1ff07bc7925b1e7ed82e50e86d901ed23e0340762879
  • alt-php70-pspell-7.0.33-124.el7.x86_64.rpm
    sha:3975cec7b393e9efd6b1fdd66c0bd34b1ab83f38b734b45fd996a5232306d4e0
  • alt-php70-recode-7.0.33-124.el7.x86_64.rpm
    sha:67f8573870d3adc7ddd6d6de5ffc2026dced81e5e4ebd22fa626e3110b9e5f7d
  • alt-php70-snmp-7.0.33-124.el7.x86_64.rpm
    sha:8014afbd4d389c19d586d8b341889d4868999c0d465f7a8c59c996248688ebd2
  • alt-php70-soap-7.0.33-124.el7.x86_64.rpm
    sha:abb0636ef27be0535905b6423159e7aa8914fabb2adc31e062777abc701f3dde
  • alt-php70-tidy-7.0.33-124.el7.x86_64.rpm
    sha:3bad68f2e4c6ca499b1151847c5383ca2554c9fe41f86434a516caeedff2be82
  • alt-php70-xml-7.0.33-124.el7.x86_64.rpm
    sha:8afe0252cfaee0f3ce16a3b2000e8d23e3ef6cbc8ee0ea524771e96856df3355
  • alt-php70-xmlrpc-7.0.33-124.el7.x86_64.rpm
    sha:3442b8e512ca1cbb0d0519f4971553f09c7e15b4a8e2f0144453932c32d20ae8
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.