php-5.4.16-48.0.7.el7.AXS7
エラータID: AXSA:2025-10750:06
リリース日:
2025/08/18 Monday - 18:13
題名:
php-5.4.16-48.0.7.el7.AXS7
影響のあるチャネル:
Asianux Server 7 for x86_64
Severity:
Moderate
Description:
以下項目について対処しました。
[Security Fix]
- PHP には、ホスト名の検証に問題があるため、リモートの攻撃者に
より、サーバサイドリクエストフォージェリ攻撃を可能とする脆弱性が
存在します。(CVE-2025-1220)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2025-1220
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 some functions like fsockopen() lack validation that the hostname supplied does not contain null characters. This may lead to other functions like parse_url() treat the hostname in different way, thus opening way to security problems if the user code implements access checks before access using such functions.
追加情報:
N/A
ダウンロード:
Asianux Server 7 for x86_64
- php-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: b9d98c5700f4262b5f0ab79c613f5f6e
SHA-256: 6e3c08ae706396cc3a9ec5de200200841fb70b99cf2faa8e880e19ebe4f0236d
Size: 1.36 MB - php-bcmath-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 4c4268fca2c0a7ba32d4b91e034c4e90
SHA-256: b1b97f8430e6de6f555e594b59b6335e90f882836d1ec83e727117dcf765bbed
Size: 59.86 kB - php-cli-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 588e338e9bc6905795f1bec05368a3f8
SHA-256: 4fd276ae8700a3d4363c5f516b594da8a12cd321c7d89cd310e1d9d0cc80d598
Size: 2.75 MB - php-common-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 04bb837ce4c080bec894e56f401d0e2a
SHA-256: a5d4b85f26f248f9c50905b51ab3a4754863e812e04ae13481a98253eb663fc5
Size: 567.09 kB - php-gd-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 244540a4f9609e3193820086a126e2b7
SHA-256: 2e75026a21aed4003ccad99f05982418dfa546f8ebfa96f2886ba5808746ed61
Size: 129.72 kB - php-ldap-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: c8e30180c81ea8ed1daaf1c26eb24387
SHA-256: bcd1781530181e5b96ea44d65a48e802f12edc77c322a66e9d7caf16f757fd0c
Size: 54.82 kB - php-mbstring-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 1c47860d45abac9eaaaebf0378eb67fa
SHA-256: 1048a652d5e1086e8751509def42483be41a176773c637546f98695b6e1c141e
Size: 507.31 kB - php-mysql-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: aa93e8cabe0de803bf5e88f2381db43c
SHA-256: c281730fd88899ee33a3996c3d624ea1c35b7948a3e12a690dd9f96a6dd0193e
Size: 103.45 kB - php-odbc-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: a9fa33d92de13aaabad3010acbddea95
SHA-256: b0c729a43cfc1d9aef0b8aacd9e42e027b65ac0cb20cc087125f0d2bedad56b2
Size: 67.73 kB - php-pdo-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 46d5cba5e1f3cd54710d027177584374
SHA-256: 175d41d71bf081e00300cc299912a7e125e79b86d24b5b5598453b443b981011
Size: 101.06 kB - php-pgsql-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: d564e401202a20914da5f19164efd69f
SHA-256: 60b5c30e10a3f27f2a5cad4b7a58824de5e187700bebcdbccd916554bae0bfc3
Size: 88.30 kB - php-process-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: d2cb148fac0329a51622a3cdc31dcc14
SHA-256: ea9ec0792c2be3b6bc5ed3c6fded4be0f4f11b21de4bc8e41bd99d6142bfc5f5
Size: 58.13 kB - php-recode-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: b9eb73fc2ceea82a7e86a078c3405c29
SHA-256: b492fc220b212c065289688f55ec779869b7849551020c2f7a1c3a5fcea6aa8b
Size: 40.77 kB - php-soap-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 8b03dce30e3251edd9dc8de198597806
SHA-256: fd825fb79caa33a9975b8382b5ff8a0ea63de2bbe6593028e8158c315c99b4ec
Size: 161.00 kB - php-xml-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 7f2c6a433e151e65efced5f2b5834b75
SHA-256: b5cd690d36064624dc822b6f9149111efebc655a6d5775f1004d133bc2353f7f
Size: 129.36 kB - php-xmlrpc-5.4.16-48.0.7.el7.AXS7.x86_64.rpm
MD5: 1a1a4bd88a2b0e95abeb190994112943
SHA-256: 05599115b6d6451da24ccf35ec25fc8ad8ce57bea70e56d1f3740f637e6cd630
Size: 70.40 kB
English