CentOS 6 ELS: php package gradual rollout
A new updated php package within CentOS 6 ELS has been scheduled for gradual rollout from our production repository.
Rollout slot: 1
Rolled out to: 0.1%
ETA for 100% rollout: November 22
Errata: https://errata.cloudlinux.com/els6/CLSA-2021-1636568855.html
CHANGELOG
php-5.3.3-55.el6.cloudlinux.
- Fix priv escalation due to shared memory between worker processes (CVE-2021-21703)
- Fix integer overflow and subsequent incorrect buffer allocation (CVE-2021-21704)
- Fix logic error due to incorrect input validation (CVE-2021-21705)
UPDATE COMMAND
yum update php*
IMMEDIATE UPDATE (VIA BYPASS)
yum update php* --enablerepo=ELS6-rollout-1-bypass