Remi's RPM repository - Packages

Blog | Support | Repository | Wizard

Jump to letter: [ ABCDEFGHIJLMNOPQRSTUVWXYZ ]

php72-php - PHP scripting language for creating dynamic web sites

Website:
http://www.php.net/
Licence:
PHP and Zend and BSD and MIT and ASL 1.0 and NCSA
Vendor:
Remi's RPM repository <https://rpms.remirepo.net/>
Description:
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.

This package contains the module (often referred to as mod_php)
which adds support for the PHP language to system Apache HTTP Server.

Packages

php72-php-7.2.34-25.remi.src [12.0 MiB] Changelog by Remi Collet (2024-11-26): 
- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface
  GHSA-4w77-75f9-2c8w
- Fix OOB access in ldap_escape
  CVE-2024-8932
- Fix Integer overflow in the dblib/firebird quoter causing OOB writes
  CVE-2024-11236
- Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
  CVE-2024-11234
- Fix Single byte overread with convert.quoted-printable-decode filter
  CVE-2024-11233
php72-php-7.2.34-24.remi.src [12.0 MiB] Changelog by Remi Collet (2024-09-26): 
- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI
  CVE-2024-4577
- Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability
  CVE-2024-8926
- Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
  CVE-2024-8927
- Fix Erroneous parsing of multipart form data
  CVE-2024-8925
php72-php-7.2.34-23.remi.src [12.0 MiB] Changelog by Remi Collet (2024-07-31): 
- use oracle client library version 23.5 on x86_64
php72-php-7.2.34-22.remi.src [12.0 MiB] Changelog by Remi Collet (2024-06-04): 
- Fix filter bypass in filter_var FILTER_VALIDATE_URL
  CVE-2024-5458
php72-php-7.2.34-21.remi.src [12.0 MiB] Changelog by Remi Collet (2024-04-10): 
- use oracle client library version 21.13 on x86_64, 19.19 on aarch64
- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
  CVE-2024-2756
- Fix password_verify can erroneously return true opening ATO risk
  CVE-2024-3096
php72-php-7.2.34-20.remi.src [12.0 MiB] Changelog by Remi Collet (2023-09-21): 
- use oracle client library version 21.11 on x86_64, 19.19 on aarch64
- use official Oracle Instant Client RPM
php72-php-7.2.34-19.remi.src [12.0 MiB] Changelog by Remi Collet (2023-08-01): 
- Fix Security issue with external entity loading in XML without enabling it
  GHSA-3qrf-m4j2-pcrr CVE-2023-3823
- Fix Buffer mismanagement in phar_dir_read()
  GHSA-jqcx-ccgc-xwhv CVE-2023-3824
- move httpd/nginx wants directive to config files in /etc
php72-php-7.2.34-18.remi.src [12.0 MiB] Changelog by Remi Collet (2023-06-20): 
- fix possible buffer overflow in date
- define %php72___phpize and %php72___phpconfig