php-process-7.4.33-26.module_php.7.4.fc43.remi RPM for aarch64

From Remi's RPM Modular for Fedora 43 for aarch64

The php-process package contains dynamic shared objects which add
support to PHP using system interfaces for inter-process
communication.

Provides

• php-process
• config(php-process)
• php-posix
• php-posix(aarch-64)
• php-process(aarch-64)
• php-shmop
• php-shmop(aarch-64)
• php-sysvmsg
• php-sysvmsg(aarch-64)
• php-sysvsem
• php-sysvsem(aarch-64)
• php-sysvshm
• php-sysvshm(aarch-64)

Requires

• config(php-process) = 7.4.33-26.module_php.7.4.fc43.remi
• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_ABI_DT_RELR)(64bit)
• php-common(aarch-64) = 7.4.33-26.module_php.7.4.fc43.remi
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

PHP

Changelog

* Tue May 12 2026 Remi Collet <remi@remirepo.net> - 7.4.33-26
  - Fix XSS within status endpoint
    CVE-2026-6735
  - Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map
    CVE-2026-6722
  - Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION
    CVE-2026-7261
  - Fix Broken Apache map value NULL check
    CVE-2026-7262
  - Fix Signed integer overflow of char array offset
    CVE-2026-7568
  - Fix Consistently pass unsigned char to ctype.h functions
    CVE-2026-7258
* Thu Dec 18 2025 Remi Collet <remi@remirepo.net> - 7.4.33-25
  - Fix Null byte termination in dns_get_record()
    GHSA-www2-q4fc-65wf
  - Fix Heap buffer overflow in array_merge()
    CVE-2025-14178
  - Fix Information Leak of Memory in getimagesize
    CVE-2025-14177
* Thu Jul 03 2025 Remi Collet <remi@remirepo.net> - 7.4.33-24
  - Fix pgsql extension does not check for errors during escaping
    CVE-2025-1735
  - Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
    CVE-2025-6491
  - Fix Null byte termination in hostnames
    CVE-2025-1220
* Mon Mar 17 2025 Remi Collet <remi@remirepo.net> - 7.4.33-23
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
  - use oracle client library version 23.7 on x86_64 and aarch64
* Thu Feb 13 2025 Remi Collet <remi@remirepo.net> - 7.4.33-22
  - backport fix for ICU 74+
  - backport fix strict prototypes
* Wed Nov 27 2024 Remi Collet <remi@remirepo.net> - 7.4.33-21
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
* Fri Nov 22 2024 Remi Collet <remi@remirepo.net> - 7.4.33-20
  - Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface
    GHSA-4w77-75f9-2c8w
  - Fix OOB access in ldap_escape
    CVE-2024-8932
  - Fix Integer overflow in the dblib/firebird quoter causing OOB writes
    CVE-2024-11236
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
* Fri Nov 15 2024 Remi Collet <remi@remirepo.net> - 7.4.33-19
  - disable firebird on EL-10
* Thu Sep 26 2024 Remi Collet <remi@remirepo.net> - 7.4.33-18
  - Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI
    CVE-2024-4577
  - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability
    CVE-2024-8926
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - use ICU 74.2
* Mon Aug 26 2024 Remi Collet <remi@remirepo.net> - 7.4.33-17
  - add backport for https://bugs.php.net/79589
    error:14095126:SSL routines:ssl3_read_n:unexpected eof while reading
* Wed Jul 31 2024 Remi Collet <remi@remirepo.net> - 7.4.33-16
  - use oracle client library version 23.5 on x86_64
* Tue Jun 04 2024 Remi Collet <remi@remirepo.net> - 7.4.33-15
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458

Files

/etc/php.d/20-posix.ini
/etc/php.d/20-shmop.ini
/etc/php.d/20-sysvmsg.ini
/etc/php.d/20-sysvsem.ini
/etc/php.d/20-sysvshm.ini
/usr/lib/.build-id
/usr/lib/.build-id/85
/usr/lib/.build-id/85/a46cfafd2d3774d7e102221bb13cad3a61f596
/usr/lib/.build-id/b0/6b9f2b93ac09fde578e3d393509f5f44f93d78
/usr/lib/.build-id/c2/951ed542fac29044e078493b75a8e09b5be4ff
/usr/lib/.build-id/e4
/usr/lib/.build-id/e4/062a1ecbb4cfb8123846ffba27cab21bd68b10
/usr/lib/.build-id/ee
/usr/lib/.build-id/ee/da75d5906a7c5e9d92d81f562236d6f9aef98c
/usr/lib64/php/modules/posix.so
/usr/lib64/php/modules/shmop.so
/usr/lib64/php/modules/sysvmsg.so
/usr/lib64/php/modules/sysvsem.so
/usr/lib64/php/modules/sysvshm.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Sun May 17 15:49:05 2026