Name: php-xml	Distribution: Unknown
Version: 8.0.30	Vendor: Remi's RPM repository <https://rpms.remirepo.net/> #StandWithUkraine
Release: 14.el9.remi	Build date: Thu Jul 3 10:03:48 2025
Group: Unspecified	Build host: builder.remirepo.net
Size: 862492	Source RPM: php-8.0.30-14.el9.remi.src.rpm
Packager: Remi Collet
Url: http://www.php.net/
Summary: A module for PHP applications which use XML

The php-xml package contains dynamic shared objects which add support
to PHP for manipulating XML documents using the DOM tree,
and performing XSL transformations on XML documents.

Provides

Requires

License

PHP

Changelog

* Thu Jul 03 2025 Remi Collet <remi@remirepo.net> - 8.0.30-14
  - Fix pgsql extension does not check for errors during escaping
    CVE-2025-1735
  - Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
    CVE-2025-6491
  - Fix Null byte termination in hostnames
    CVE-2025-1220
* Thu Mar 13 2025 Remi Collet <remi@remirepo.net> - 8.0.30-13
  - Fix libxml streams use wrong `content-type` header when requesting a redirected resource
    CVE-2025-1219
  - Fix Stream HTTP wrapper header check might omit basic auth header
    CVE-2025-1736
  - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes
    CVE-2025-1861
  - Fix Streams HTTP wrapper does not fail for headers without colon
    CVE-2025-1734
  - Fix Header parser of `http` stream wrapper does not handle folded headers
    CVE-2025-1217
  - use oracle client library version 23.7 on x86_64 and aarch64
* Thu Feb 13 2025 Remi Collet <remi@remirepo.net> - 8.0.30-12
  - backport fix for ICU 74+
  - backport fix strict prototypes
* Wed Nov 27 2024 Remi Collet <remi@remirepo.net> - 8.0.30-11
  - Fix Leak partial content of the heap through heap buffer over-read
    CVE-2024-8929
* Fri Nov 22 2024 Remi Collet <remi@remirepo.net> - 8.0.30-10
  - Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface
    GHSA-4w77-75f9-2c8w
  - Fix OOB access in ldap_escape
    CVE-2024-8932
  - Fix Integer overflow in the dblib/firebird quoter causing OOB writes
    CVE-2024-11236
  - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
    CVE-2024-11234
  - Fix Single byte overread with convert.quoted-printable-decode filter
    CVE-2024-11233
* Thu Sep 26 2024 Remi Collet <remi@remirepo.net> - 8.0.30-9
  - Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI
    CVE-2024-4577
  - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability
    CVE-2024-8926
  - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
    CVE-2024-8927
  - Fix Logs from childrens may be altered
    CVE-2024-9026
  - Fix Erroneous parsing of multipart form data
    CVE-2024-8925
  - use ICU 74.2
* Mon Aug 26 2024 Remi Collet <remi@remirepo.net> - 8.0.30-8
  - add backport for https://bugs.php.net/79589
    error:14095126:SSL routines:ssl3_read_n:unexpected eof while reading
* Wed Jul 31 2024 Remi Collet <remi@remirepo.net> - 8.0.30-7
  - use oracle client library version 23.5 on x86_64
* Tue Jun 04 2024 Remi Collet <remi@remirepo.net> - 8.0.30-6
  - Fix filter bypass in filter_var FILTER_VALIDATE_URL
    CVE-2024-5458
* Wed Apr 10 2024 Remi Collet <remi@remirepo.net> - 8.0.30-5
  - Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
    CVE-2024-2756
  - Fix password_verify can erroneously return true opening ATO risk
    CVE-2024-3096
* Wed Mar 06 2024 Remi Collet <remi@remirepo.net> - 8.0.30-4
  - use oracle client library version 21.13 on x86_64
  - patch test suite for zlib-ng
  - add EOL message
* Tue Dec 12 2023 Remi Collet <remi@remirepo.net> - 8.0.30-3
  - use ICU 73.2
  - use oracle client library version 21.12 on x86_64, 19.19 on aarch64
  - add fixes for libxml 2.11 and 2.12 from 8.1
* Thu Sep 21 2023 Remi Collet <remi@remirepo.net> - 8.0.30-2
  - use oracle client library version 21.11 on x86_64, 19.19 on aarch64
  - use official Oracle Instant Client RPM
* Thu Aug 03 2023 Remi Collet <remi@remirepo.net> - 8.0.30-1
  - Update to 8.0.30 - http://www.php.net/releases/8_0_30.php
  - move httpd/nginx wants directive to config files in /etc

Files

/etc/php-zts.d/20-dom.ini
/etc/php-zts.d/20-simplexml.ini
/etc/php-zts.d/20-xml.ini
/etc/php-zts.d/20-xmlwriter.ini
/etc/php-zts.d/20-xsl.ini
/etc/php-zts.d/30-xmlreader.ini
/etc/php.d/20-dom.ini
/etc/php.d/20-simplexml.ini
/etc/php.d/20-xml.ini
/etc/php.d/20-xmlwriter.ini
/etc/php.d/20-xsl.ini
/etc/php.d/30-xmlreader.ini
/usr/lib/.build-id
/usr/lib/.build-id/17
/usr/lib/.build-id/17/7c069c1249c782797f4c9b1789af374fc28beb
/usr/lib/.build-id/39
/usr/lib/.build-id/39/37ad06f291ce0713b4542481890306667d75f2
/usr/lib/.build-id/6a/1731b62db820e3d24f3436a5a66aa66c8469c3
/usr/lib/.build-id/70/c82f382253c88267b2e7525824fda888f74248
/usr/lib/.build-id/74
/usr/lib/.build-id/74/f9ee6c55e4c078b1ba7e32a498a4ddbc581de4
/usr/lib/.build-id/77
/usr/lib/.build-id/77/ec5ec11f3aa71670c928423ef73d7d91028d73
/usr/lib/.build-id/98
/usr/lib/.build-id/98/decbea066c5803fb522178d576f0d84b2c6f83
/usr/lib/.build-id/d7
/usr/lib/.build-id/d7/6a04c184e333cb3e1e898dd8a7af3e03d18483
/usr/lib/.build-id/db
/usr/lib/.build-id/db/017500cb253eba938e3874604626cba8cc12c6
/usr/lib/.build-id/e1/1df1dcaa3fe401217733bf92371406716ebfea
/usr/lib/.build-id/ec
/usr/lib/.build-id/ec/65b3e547326aaa2621ae5ae16c734fd45fe1f5
/usr/lib/.build-id/f7
/usr/lib/.build-id/f7/31995fe2cd81e286c475a4567e9b6cd316941e
/usr/lib64/php-zts/modules/dom.so
/usr/lib64/php-zts/modules/simplexml.so
/usr/lib64/php-zts/modules/xml.so
/usr/lib64/php-zts/modules/xmlreader.so
/usr/lib64/php-zts/modules/xmlwriter.so
/usr/lib64/php-zts/modules/xsl.so
/usr/lib64/php/modules/dom.so
/usr/lib64/php/modules/simplexml.so
/usr/lib64/php/modules/xml.so
/usr/lib64/php/modules/xmlreader.so
/usr/lib64/php/modules/xmlwriter.so
/usr/lib64/php/modules/xsl.so

Generated by rpm2html 1.8.1

Fabrice Bellet, Fri Oct 31 13:59:53 2025

php-xml-8.0.30-14.el9.remi RPM for x86_64

From Remi's RPM Modular for RedHat EL 9 for x86_64

Provides

Requires

License

Changelog

Files