vulnerability

Gentoo Linux: CVE-2022-31628: PHP: Multiple Vulnerabilities

Try Surface Command
Back to search
Severity
1
CVSS
(AV:L/AC:L/Au:M/C:N/I:N/A:P)
Published
Sep 28, 2022
Added
Nov 23, 2022
Modified
Aug 13, 2025

Description

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.

Solution

gentoo-linux-upgrade-dev-lang-php

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today