Ubuntu Security Update USN-7648-1: PHP vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,803
Reaction score
74
Credits
-1,257
It was discovered that PHP incorrectly handled certain hostnames containing null characters. A remote attacker could possibly use this issue to bypass certain hostname validation checks. (CVE-2025-1220) It was discovered that PHP incorrectly handled the pgsql and pdo_pgsql escaping functions. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2025-1735) It was discovered that PHP incorrectly handled parsing certain XML data in SOAP extensions. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2025-6491)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-7648-3: PHP regression
Replies
0
Views
298
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8336-1: PHP vulnerabilities
Replies
0
Views
82
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-7648-2: PHP vulnerabilities
Replies
0
Views
244
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8375-1: nginx vulnerabilities
Replies
0
Views
56
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8348-1: GoBGP vulnerabilities
Replies
0
Views
53
LinuxBot
LinuxBot


Follow Linux.org

Staff online

Members online

Total: 2,512 (members: 6, guests: 2,506)

Latest posts

Top