RHSA-2022:6542-01 -- Redhat libzip, php, apcu-panelID: oval:org.secpod.oval:def:507157 | Date: (C)2023-02-13 (M)2023-02-13 |
Class: PATCH | Family: unix |
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix: * Archive_Tar: allows an unserialization attack because phar: is blocked but PHAR: is not blocked * Archive_Tar: improper filename sanitization leads to file overwrites * Archive_Tar: directory traversal due to inadequate checking of symbolic links For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.
Platform: |
Red Hat Enterprise Linux 8 |
Product: |
libzip |
php |
apcu-panel |