CVE search results

11 – 12 of 12 results

Detailed view

Sort by:

CVE-2025-1217

Medium priority

Some fixes available 8 of 9

In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when http request module parses HTTP response obtained from a server, folded headers are parsed incorrectly, which may...

7 affected packages

php5, php7.0, php7.2, php7.4, php8.1...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
php5	Not in release	Not in release	Not in release	—
php7.0	Not in release	Not in release	Not in release	—
php7.2	Not in release	Not in release	Not in release	Fixed
php7.4	Not in release	Not in release	Fixed	—
php8.1	Not in release	Fixed	Not in release	—
php8.3	Fixed	Not in release	Not in release	—
php8.4	Not in release	Not in release	Not in release	—

CVE-2024-11235

Medium priority

Some fixes available 6 of 8

In PHP versions 8.3.* before 8.3.19 and 8.4.* before 8.4.5, a code sequence involving __set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout...

7 affected packages

php8.4, php5, php7.0, php7.2, php7.4...

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
php8.4	Not in release	Not in release	Not in release	—
php5	Not in release	Not in release	Not in release	—
php7.0	Not in release	Not in release	Not in release	—
php7.2	Not in release	Not in release	Not in release	Needs evaluation
php7.4	Not in release	Not in release	Fixed	—
php8.1	Not in release	Fixed	Not in release	—
php8.3	Fixed	Not in release	Not in release	—

Export to JSON

Results by page:

Search CVE reports