vulnerability
Huawei EulerOS: CVE-2022-31628: php security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:L/AC:L/Au:M/C:N/I:N/A:P) | Sep 28, 2022 | Feb 9, 2023 | Apr 1, 2026 |
Severity
1
CVSS
(AV:L/AC:L/Au:M/C:N/I:N/A:P)
Published
Sep 28, 2022
Added
Feb 9, 2023
Modified
Apr 1, 2026
Description
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.
Solutions
huawei-euleros-2_0_sp8-upgrade-phphuawei-euleros-2_0_sp8-upgrade-php-clihuawei-euleros-2_0_sp8-upgrade-php-commonhuawei-euleros-2_0_sp8-upgrade-php-fpmhuawei-euleros-2_0_sp8-upgrade-php-gdhuawei-euleros-2_0_sp8-upgrade-php-ldaphuawei-euleros-2_0_sp8-upgrade-php-odbchuawei-euleros-2_0_sp8-upgrade-php-pdohuawei-euleros-2_0_sp8-upgrade-php-processhuawei-euleros-2_0_sp8-upgrade-php-recodehuawei-euleros-2_0_sp8-upgrade-php-soaphuawei-euleros-2_0_sp8-upgrade-php-xmlhuawei-euleros-2_0_sp8-upgrade-php-xmlrpc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.