CLSA-2024-1727895152

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2024-1727895152
Upstream
Published
2024-10-02T18:52:35Z
Modified
2026-06-01T00:32:55.964500753Z
Summary
php: Fix of 3 CVEs
Details
  • CVE-2020-7071: fix URL validation with functions like filtervar($url, FILTERVALIDATE_URL)
  • CVE-2021-21705: fix URL validation functionality via filtervar() function with FILTERVALIDATE_URL parameter when an URL with invalid password field can be accepted as valid
  • CVE-2024-5458: fix early-out for ipv6 hostname validation, ensure full check is performed
References

Affected packages

TuxCare:CentOS-Stream:8
php

Package

Name
php
Purl
pkg:rpm/tuxcare/php?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-bcmath

Package

Name
php-bcmath
Purl
pkg:rpm/tuxcare/php-bcmath?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-cli

Package

Name
php-cli
Purl
pkg:rpm/tuxcare/php-cli?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-common

Package

Name
php-common
Purl
pkg:rpm/tuxcare/php-common?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-dba

Package

Name
php-dba
Purl
pkg:rpm/tuxcare/php-dba?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-dbg

Package

Name
php-dbg
Purl
pkg:rpm/tuxcare/php-dbg?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-devel

Package

Name
php-devel
Purl
pkg:rpm/tuxcare/php-devel?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-embedded

Package

Name
php-embedded
Purl
pkg:rpm/tuxcare/php-embedded?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-enchant

Package

Name
php-enchant
Purl
pkg:rpm/tuxcare/php-enchant?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-fpm

Package

Name
php-fpm
Purl
pkg:rpm/tuxcare/php-fpm?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-gd

Package

Name
php-gd
Purl
pkg:rpm/tuxcare/php-gd?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-gmp

Package

Name
php-gmp
Purl
pkg:rpm/tuxcare/php-gmp?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-intl

Package

Name
php-intl
Purl
pkg:rpm/tuxcare/php-intl?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-json

Package

Name
php-json
Purl
pkg:rpm/tuxcare/php-json?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-ldap

Package

Name
php-ldap
Purl
pkg:rpm/tuxcare/php-ldap?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-mbstring

Package

Name
php-mbstring
Purl
pkg:rpm/tuxcare/php-mbstring?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-mysqlnd

Package

Name
php-mysqlnd
Purl
pkg:rpm/tuxcare/php-mysqlnd?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-odbc

Package

Name
php-odbc
Purl
pkg:rpm/tuxcare/php-odbc?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-opcache

Package

Name
php-opcache
Purl
pkg:rpm/tuxcare/php-opcache?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-pdo

Package

Name
php-pdo
Purl
pkg:rpm/tuxcare/php-pdo?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-pgsql

Package

Name
php-pgsql
Purl
pkg:rpm/tuxcare/php-pgsql?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-process

Package

Name
php-process
Purl
pkg:rpm/tuxcare/php-process?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-recode

Package

Name
php-recode
Purl
pkg:rpm/tuxcare/php-recode?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-snmp

Package

Name
php-snmp
Purl
pkg:rpm/tuxcare/php-snmp?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-soap

Package

Name
php-soap
Purl
pkg:rpm/tuxcare/php-soap?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-xml

Package

Name
php-xml
Purl
pkg:rpm/tuxcare/php-xml?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"
php-xmlrpc

Package

Name
php-xmlrpc
Purl
pkg:rpm/tuxcare/php-xmlrpc?distro=centos-stream-8

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
7.2.24-1.module_el8+2215+5fe6689e.tuxcare.els1

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos-stream8els/CLSA-2024-1727895152.json"