CentOS 6 ELS: php package gradual rollout - TuxCare

CentOS 6 ELS: php package gradual rollout

TuxCare Team

November 10, 2021

changelog

A new updated php package within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.

Rollout slot: 1
Rolled out to: 0.1%
ETA for 100% rollout: November 22

Errata: https://errata.cloudlinux.com/els6/CLSA-2021-1636568855.html


CHANGELOG

php-5.3.3-55.el6.cloudlinux.els

  • Fix priv escalation due to shared memory between worker processes (CVE-2021-21703)
  • Fix integer overflow and subsequent incorrect buffer allocation (CVE-2021-21704)
  • Fix logic error due to incorrect input validation (CVE-2021-21705)

UPDATE COMMAND

yum update php*

IMMEDIATE UPDATE (VIA BYPASS)

yum update php* --enablerepo=ELS6-rollout-1-bypass

 

Stay in the Loop

Resources

State of Enterprise Linux Cybersecurity ... Read More State of Enterprise Linux Cybersecurity ...
Dangerous remotely exploitable vulnerability ... Read More Dangerous remotely exploitable vulnerability ...
Securing confidential research data ... Read More Securing confidential research data ...
State of Enterprise Vulnerability Detection ... Read More State of Enterprise Vulnerability Detection ...
Demand for Rapid Risk Elimination for ... Read More Demand for Rapid Risk Elimination for ...
TuxCare Free Raspberry Pi Patching Read More TuxCare Free Raspberry Pi Patching