php-common-8.0.30-6.el9 RPM for x86_64

From CentOS Stream 9 AppStream for x86_64

The php-common package contains files used by both the php
package and the php-cli package.

Provides

• php-common
• bundled(libmagic)
• bundled(timelib)
• config(php-common)
• php(api)
• php(language)
• php(language)(x86-64)
• php(zend-abi)
• php-bz2
• php-bz2(x86-64)
• php-calendar
• php-calendar(x86-64)
• php-common(x86-64)
• php-core
• php-core(x86-64)
• php-ctype
• php-ctype(x86-64)
• php-curl
• php-curl(x86-64)
• php-date
• php-date(x86-64)
• php-exif
• php-exif(x86-64)
• php-fileinfo
• php-fileinfo(x86-64)
• php-filter
• php-filter(x86-64)
• php-ftp
• php-ftp(x86-64)
• php-gettext
• php-gettext(x86-64)
• php-hash
• php-hash(x86-64)
• php-iconv
• php-iconv(x86-64)
• php-json
• php-json(x86-64)
• php-libxml
• php-libxml(x86-64)
• php-mhash
• php-mhash(x86-64)
• php-openssl
• php-openssl(x86-64)
• php-pcre
• php-pcre(x86-64)
• php-phar
• php-phar(x86-64)
• php-reflection
• php-reflection(x86-64)
• php-session
• php-session(x86-64)
• php-sockets
• php-sockets(x86-64)
• php-spl
• php-spl(x86-64)
• php-standard
• php-standard(x86-64)
• php-tokenizer
• php-tokenizer(x86-64)
• php-zlib
• php-zlib(x86-64)

Requires

• config(php-common) = 8.0.30-6.el9
• libbz2.so.1()(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.14)(64bit)
• libc.so.6(GLIBC_2.15)(64bit)
• libc.so.6(GLIBC_2.2.5)(64bit)
• libc.so.6(GLIBC_2.3)(64bit)
• libc.so.6(GLIBC_2.3.4)(64bit)
• libc.so.6(GLIBC_2.33)(64bit)
• libc.so.6(GLIBC_2.4)(64bit)
• libc.so.6(GLIBC_2.7)(64bit)
• libc.so.6(GLIBC_2.8)(64bit)
• libcrypto.so.3()(64bit)
• libcrypto.so.3(OPENSSL_3.0.0)(64bit)
• libcurl.so.4()(64bit)
• libssl.so.3()(64bit)
• libssl.so.3(OPENSSL_3.0.0)(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)

License

PHP and BSD

Changelog

* Fri Jun 05 2026 Remi Collet <rcollet@redhat.com> - 8.0.30-6
  - Fix XSS within status endpoint
    CVE-2026-6735
  - Fix Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init()
    CVE-2026-7259
  - Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map
    CVE-2026-6722
  - Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION
    CVE-2026-7261
  - Fix Broken Apache map value NULL check
    CVE-2026-7262
  - Fix Signed integer overflow of char array offset
    CVE-2026-7568
  - Fix Consistently pass unsigned char to ctype.h functions
    CVE-2026-7258
* Fri Jan 16 2026 Remi Collet <rcollet@redhat.com> - 8.0.30-5
  - Fix Null byte termination in dns_get_record()
    GHSA-www2-q4fc-65wf
  - Fix Heap buffer overflow in array_merge()
    CVE-2025-14178
  - Fix Information Leak of Memory in getimagesize
    CVE-2025-14177
* Fri Oct 03 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-4
  - Fix pgsql extension does not check for errors during escaping
    CVE-2025-1735
  - Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
    CVE-2025-6491
  - Fix Null byte termination in hostnames
    CVE-2025-1220
  - Fix soap memory corruption
  - Fix ldap_set_option() not applied on different ldap connections
* Thu Mar 13 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-3
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
* Tue Jan 21 2025 Remi Collet <rcollet@redhat.com> - 8.0.30-2
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458
  - Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
    CVE-2024-2756
  - Fix password_verify can erroneously return true opening ATO risk
    CVE-2024-3096

Files

/etc/php.d
/etc/php.d/20-bz2.ini
/etc/php.d/20-calendar.ini
/etc/php.d/20-ctype.ini
/etc/php.d/20-curl.ini
/etc/php.d/20-exif.ini
/etc/php.d/20-fileinfo.ini
/etc/php.d/20-ftp.ini
/etc/php.d/20-gettext.ini
/etc/php.d/20-iconv.ini
/etc/php.d/20-phar.ini
/etc/php.d/20-sockets.ini
/etc/php.d/20-tokenizer.ini
/etc/php.ini
/usr/lib/.build-id
/usr/lib/.build-id/0b
/usr/lib/.build-id/0b/5ced0bbd30330ea17668a7261cf917707b7a0b
/usr/lib/.build-id/10
/usr/lib/.build-id/10/0c5818f0b0bf6a7c3b34761f87f813616a60ee
/usr/lib/.build-id/11
/usr/lib/.build-id/11/f34b2264f559a7c3fdcd7d053beee70d74efd9
/usr/lib/.build-id/44
/usr/lib/.build-id/44/755788dd470d57395f40b50afe295129adf7df
/usr/lib/.build-id/5e
/usr/lib/.build-id/5e/19a6bea4cc89aa4954ec9c4e9e642db44e1191
/usr/lib/.build-id/7f
/usr/lib/.build-id/7f/40bb3fbe3c9f2dd74ad2f064b3bebd1af5d93d
/usr/lib/.build-id/86
/usr/lib/.build-id/86/dfbf72b1f4bfd4ddaa4ba97aeac882f37627f6
/usr/lib/.build-id/8a
/usr/lib/.build-id/8a/68ff947819ba1f02a0a30125e6d1880981ada3
/usr/lib/.build-id/9c
/usr/lib/.build-id/9c/96baa6a0ed72a546c15a1e9fd1f03238633f5f
/usr/lib/.build-id/9d
/usr/lib/.build-id/9d/13df924993d940a255d0844a58f49eca5e038b
/usr/lib/.build-id/aa
/usr/lib/.build-id/aa/4adf6c5704773add2d2e6ecc45244dcae09f44
/usr/lib/.build-id/de
/usr/lib/.build-id/de/261414e4c7d7dc61a45a460305458604796207
/usr/lib64/php
/usr/lib64/php/modules
/usr/lib64/php/modules/bz2.so
/usr/lib64/php/modules/calendar.so
/usr/lib64/php/modules/ctype.so
/usr/lib64/php/modules/curl.so
/usr/lib64/php/modules/exif.so
/usr/lib64/php/modules/fileinfo.so
/usr/lib64/php/modules/ftp.so
/usr/lib64/php/modules/gettext.so
/usr/lib64/php/modules/iconv.so
/usr/lib64/php/modules/phar.so
/usr/lib64/php/modules/sockets.so
/usr/lib64/php/modules/tokenizer.so
/usr/share/doc/pecl
/usr/share/doc/php-common
/usr/share/doc/php-common/CODING_STANDARDS.md
/usr/share/doc/php-common/CONTRIBUTING.md
/usr/share/doc/php-common/EXTENSIONS
/usr/share/doc/php-common/NEWS
/usr/share/doc/php-common/README.REDIST.BINS
/usr/share/doc/php-common/README.md
/usr/share/doc/php-common/UPGRADING
/usr/share/doc/php-common/UPGRADING.INTERNALS
/usr/share/doc/php-common/docs
/usr/share/doc/php-common/docs/input-filter.md
/usr/share/doc/php-common/docs/mailinglist-rules.md
/usr/share/doc/php-common/docs/output-api.md
/usr/share/doc/php-common/docs/parameter-parsing-api.md
/usr/share/doc/php-common/docs/release-process.md
/usr/share/doc/php-common/docs/self-contained-extensions.md
/usr/share/doc/php-common/docs/streams.md
/usr/share/doc/php-common/docs/unix-build-system.md
/usr/share/doc/php-common/php.ini-development
/usr/share/doc/php-common/php.ini-production
/usr/share/licenses/php-common
/usr/share/licenses/php-common/LICENSE
/usr/share/licenses/php-common/TSRM_LICENSE
/usr/share/licenses/php-common/ZEND_LICENSE
/usr/share/licenses/php-common/libmagic_LICENSE
/usr/share/licenses/php-common/timelib_LICENSE
/usr/share/php
/usr/share/tests
/usr/share/tests/pecl
/var/lib/php
/var/lib/php/peclxml

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Jun 12 04:20:46 2026