<?xml version="1.0" encoding="UTF-8"?> <otherdata xmlns="http://linux.duke.edu/metadata/other" packages="121"> <package pkgid="8abe4891f601c916d6a8489917206d27c8b31a487e4fecb9d6421f133369df77" name="docker" arch="aarch64"> <version epoch="2" ver="27.2.1" rel="1"/> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-3" date="1713787200">- DESC:fix cve-2024-32473</changelog> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-4" date="1715428800">- DESC:fix install error failed to docker.service does not exit</changelog> <changelog author="wanglimin<wanglimin@xfusion.com> - 25.0.3-5" date="1715688000">- DESC:clean dependency between engine and cli</changelog> <changelog author="zhaixiaojuan<zhaixiaojuan@loongson.cn> - 25.0.3-6" date="1718366400">- DESC:add loongarch64 seccomp support</changelog> <changelog author="shechenglong<shechenglong@xfusion.com> - 25.0.3-7" date="1719576000">- DESC:software package name moby is changed to docker</changelog> <changelog author="zhangbowei<zhangbowei@kylinos.cn> - 25.0.3-8" date="1719921600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix bug by using docker-proxy in the source file to get better compatibility</changelog> <changelog author="lvxiangcong <lvxiangcong@kylinos.cn> - 25.0.3-9" date="1720785600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix docker swarm run failed for loongarch64</changelog> <changelog author="zhangxianting <zhangxianting@uniontechc.om> - 25.0.3-10" date="1721995200">- Type:CVE - ID:NA - SUG:NA - DESC:fix CVE-2024-41110</changelog> <changelog author="tiberium <jinzhe.oerv@isrc.iscas.ac.cn> - 25.0.3-11" date="1725883200">- Type:bugfix - ID:NA - SUG:NA - DESC:backport upstream patch to solve -Wstrict-prototypes error</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 27.2.1-1" date="1727006400">- update to verison 27.2.1</changelog> </package> <package pkgid="bdc48538d264835c00d2b038eb1d8322d25bcae3b1dab648a5c458db49a51063" name="docker" arch="src"> <version epoch="2" ver="27.2.1" rel="1"/> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-3" date="1713787200">- DESC:fix cve-2024-32473</changelog> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-4" date="1715428800">- DESC:fix install error failed to docker.service does not exit</changelog> <changelog author="wanglimin<wanglimin@xfusion.com> - 25.0.3-5" date="1715688000">- DESC:clean dependency between engine and cli</changelog> <changelog author="zhaixiaojuan<zhaixiaojuan@loongson.cn> - 25.0.3-6" date="1718366400">- DESC:add loongarch64 seccomp support</changelog> <changelog author="shechenglong<shechenglong@xfusion.com> - 25.0.3-7" date="1719576000">- DESC:software package name moby is changed to docker</changelog> <changelog author="zhangbowei<zhangbowei@kylinos.cn> - 25.0.3-8" date="1719921600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix bug by using docker-proxy in the source file to get better compatibility</changelog> <changelog author="lvxiangcong <lvxiangcong@kylinos.cn> - 25.0.3-9" date="1720785600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix docker swarm run failed for loongarch64</changelog> <changelog author="zhangxianting <zhangxianting@uniontechc.om> - 25.0.3-10" date="1721995200">- Type:CVE - ID:NA - SUG:NA - DESC:fix CVE-2024-41110</changelog> <changelog author="tiberium <jinzhe.oerv@isrc.iscas.ac.cn> - 25.0.3-11" date="1725883200">- Type:bugfix - ID:NA - SUG:NA - DESC:backport upstream patch to solve -Wstrict-prototypes error</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 27.2.1-1" date="1727006400">- update to verison 27.2.1</changelog> </package> <package pkgid="bfd1b58b0efd0b09d81cc438e125ac82ea0a86315d603360aa02f6a453db6179" name="docker-client" arch="aarch64"> <version epoch="2" ver="27.2.1" rel="1"/> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-3" date="1713787200">- DESC:fix cve-2024-32473</changelog> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-4" date="1715428800">- DESC:fix install error failed to docker.service does not exit</changelog> <changelog author="wanglimin<wanglimin@xfusion.com> - 25.0.3-5" date="1715688000">- DESC:clean dependency between engine and cli</changelog> <changelog author="zhaixiaojuan<zhaixiaojuan@loongson.cn> - 25.0.3-6" date="1718366400">- DESC:add loongarch64 seccomp support</changelog> <changelog author="shechenglong<shechenglong@xfusion.com> - 25.0.3-7" date="1719576000">- DESC:software package name moby is changed to docker</changelog> <changelog author="zhangbowei<zhangbowei@kylinos.cn> - 25.0.3-8" date="1719921600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix bug by using docker-proxy in the source file to get better compatibility</changelog> <changelog author="lvxiangcong <lvxiangcong@kylinos.cn> - 25.0.3-9" date="1720785600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix docker swarm run failed for loongarch64</changelog> <changelog author="zhangxianting <zhangxianting@uniontechc.om> - 25.0.3-10" date="1721995200">- Type:CVE - ID:NA - SUG:NA - DESC:fix CVE-2024-41110</changelog> <changelog author="tiberium <jinzhe.oerv@isrc.iscas.ac.cn> - 25.0.3-11" date="1725883200">- Type:bugfix - ID:NA - SUG:NA - DESC:backport upstream patch to solve -Wstrict-prototypes error</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 27.2.1-1" date="1727006400">- update to verison 27.2.1</changelog> </package> <package pkgid="4082c0bf30ed4b88df893d88c0668d3c8b801f6adc9b51b12f73ad4102c4777a" name="docker-debuginfo" arch="aarch64"> <version epoch="2" ver="27.2.1" rel="1"/> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-3" date="1713787200">- DESC:fix cve-2024-32473</changelog> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-4" date="1715428800">- DESC:fix install error failed to docker.service does not exit</changelog> <changelog author="wanglimin<wanglimin@xfusion.com> - 25.0.3-5" date="1715688000">- DESC:clean dependency between engine and cli</changelog> <changelog author="zhaixiaojuan<zhaixiaojuan@loongson.cn> - 25.0.3-6" date="1718366400">- DESC:add loongarch64 seccomp support</changelog> <changelog author="shechenglong<shechenglong@xfusion.com> - 25.0.3-7" date="1719576000">- DESC:software package name moby is changed to docker</changelog> <changelog author="zhangbowei<zhangbowei@kylinos.cn> - 25.0.3-8" date="1719921600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix bug by using docker-proxy in the source file to get better compatibility</changelog> <changelog author="lvxiangcong <lvxiangcong@kylinos.cn> - 25.0.3-9" date="1720785600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix docker swarm run failed for loongarch64</changelog> <changelog author="zhangxianting <zhangxianting@uniontechc.om> - 25.0.3-10" date="1721995200">- Type:CVE - ID:NA - SUG:NA - DESC:fix CVE-2024-41110</changelog> <changelog author="tiberium <jinzhe.oerv@isrc.iscas.ac.cn> - 25.0.3-11" date="1725883200">- Type:bugfix - ID:NA - SUG:NA - DESC:backport upstream patch to solve -Wstrict-prototypes error</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 27.2.1-1" date="1727006400">- update to verison 27.2.1</changelog> </package> <package pkgid="ba8f276b8a0631616541f4dc61668910a9d4fd5a8f7d81f23878c6bbec2cc917" name="docker-engine" arch="aarch64"> <version epoch="2" ver="27.2.1" rel="1"/> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-3" date="1713787200">- DESC:fix cve-2024-32473</changelog> <changelog author="lvxiangcong<lvxiangcong@kylinos.cn> - 25.0.3-4" date="1715428800">- DESC:fix install error failed to docker.service does not exit</changelog> <changelog author="wanglimin<wanglimin@xfusion.com> - 25.0.3-5" date="1715688000">- DESC:clean dependency between engine and cli</changelog> <changelog author="zhaixiaojuan<zhaixiaojuan@loongson.cn> - 25.0.3-6" date="1718366400">- DESC:add loongarch64 seccomp support</changelog> <changelog author="shechenglong<shechenglong@xfusion.com> - 25.0.3-7" date="1719576000">- DESC:software package name moby is changed to docker</changelog> <changelog author="zhangbowei<zhangbowei@kylinos.cn> - 25.0.3-8" date="1719921600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix bug by using docker-proxy in the source file to get better compatibility</changelog> <changelog author="lvxiangcong <lvxiangcong@kylinos.cn> - 25.0.3-9" date="1720785600">- Type:bugfix - ID:NA - SUG:NA - DESC:fix docker swarm run failed for loongarch64</changelog> <changelog author="zhangxianting <zhangxianting@uniontechc.om> - 25.0.3-10" date="1721995200">- Type:CVE - ID:NA - SUG:NA - DESC:fix CVE-2024-41110</changelog> <changelog author="tiberium <jinzhe.oerv@isrc.iscas.ac.cn> - 25.0.3-11" date="1725883200">- Type:bugfix - ID:NA - SUG:NA - DESC:backport upstream patch to solve -Wstrict-prototypes error</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 27.2.1-1" date="1727006400">- update to verison 27.2.1</changelog> </package> <package pkgid="7397dc17fa2a3a0afd1b00abbd71cdebbd17b31f8d5175996f4068d1e5be5ca4" name="golang" arch="aarch64"> <version epoch="0" ver="1.21.4" rel="21"/> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-12" date="1718971200">- fix CVE-2023-45285</changelog> <changelog author="hanchao <hanchao63@huawei.com> - 1.21.4-13" date="1719144000">- Type:CVE - CVE:CVE-2023-39326,CVE-2024-24789 - SUG:NA - DESC:fix CVE-2023-39326,CVE-2024-24789</changelog> <changelog author="kywqs <weiqingsong@kylinos.cn.com> - 1.21.4-14" date="1720008000">- fix CVE-2024-24791</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-15" date="1722254400">- fix send correct lastStreamID in stream-caused GOAWAY</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-16" date="1722340800">- cmd/compile: handle constant pointer offsets in dead store elimination</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-17" date="1722340801">- cmd/compile: ensure pointer arithmetic happens after the nil check</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-18" date="1722513600">- internal/poll:add SPLICE_F_NONBLOCK flag for splice to avoid insonsistency with O_NONBLOCK</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-19" date="1722513601">- runtime: call enableMetadataHugePages and its callees on the systemstack</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-20" date="1722513602">- cmd/compile: fix findIndVar so it does not match disjointed loop headers</changelog> <changelog author="Vanient <xiadanni1@huawei.com> - 1.21.4-21" date="1726747200">- cmd/compile: fix escape analysis of string min/max</changelog> </package> <package pkgid="2544687bfb21b099931294b374fee8a6da3b3c094188b8027d6d52f321711879" name="golang" arch="src"> <version epoch="0" ver="1.21.4" rel="21"/> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-12" date="1718971200">- fix CVE-2023-45285</changelog> <changelog author="hanchao <hanchao63@huawei.com> - 1.21.4-13" date="1719144000">- Type:CVE - CVE:CVE-2023-39326,CVE-2024-24789 - SUG:NA - DESC:fix CVE-2023-39326,CVE-2024-24789</changelog> <changelog author="kywqs <weiqingsong@kylinos.cn.com> - 1.21.4-14" date="1720008000">- fix CVE-2024-24791</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-15" date="1722254400">- fix send correct lastStreamID in stream-caused GOAWAY</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-16" date="1722340800">- cmd/compile: handle constant pointer offsets in dead store elimination</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-17" date="1722340801">- cmd/compile: ensure pointer arithmetic happens after the nil check</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-18" date="1722513600">- internal/poll:add SPLICE_F_NONBLOCK flag for splice to avoid insonsistency with O_NONBLOCK</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-19" date="1722513601">- runtime: call enableMetadataHugePages and its callees on the systemstack</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-20" date="1722513602">- cmd/compile: fix findIndVar so it does not match disjointed loop headers</changelog> <changelog author="Vanient <xiadanni1@huawei.com> - 1.21.4-21" date="1726747200">- cmd/compile: fix escape analysis of string min/max</changelog> </package> <package pkgid="2a38c6f7d41c76ebe592c37f8f13999f41bde3bc95fba77debaa9f6a184c9424" name="golang-devel" arch="noarch"> <version epoch="0" ver="1.21.4" rel="21"/> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-12" date="1718971200">- fix CVE-2023-45285</changelog> <changelog author="hanchao <hanchao63@huawei.com> - 1.21.4-13" date="1719144000">- Type:CVE - CVE:CVE-2023-39326,CVE-2024-24789 - SUG:NA - DESC:fix CVE-2023-39326,CVE-2024-24789</changelog> <changelog author="kywqs <weiqingsong@kylinos.cn.com> - 1.21.4-14" date="1720008000">- fix CVE-2024-24791</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-15" date="1722254400">- fix send correct lastStreamID in stream-caused GOAWAY</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-16" date="1722340800">- cmd/compile: handle constant pointer offsets in dead store elimination</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-17" date="1722340801">- cmd/compile: ensure pointer arithmetic happens after the nil check</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-18" date="1722513600">- internal/poll:add SPLICE_F_NONBLOCK flag for splice to avoid insonsistency with O_NONBLOCK</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-19" date="1722513601">- runtime: call enableMetadataHugePages and its callees on the systemstack</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-20" date="1722513602">- cmd/compile: fix findIndVar so it does not match disjointed loop headers</changelog> <changelog author="Vanient <xiadanni1@huawei.com> - 1.21.4-21" date="1726747200">- cmd/compile: fix escape analysis of string min/max</changelog> </package> <package pkgid="fb43c8128915c01ce1841de2eed36a23db4eb038f5f8abe911a8d0dab79c5c05" name="golang-help" arch="noarch"> <version epoch="0" ver="1.21.4" rel="21"/> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-12" date="1718971200">- fix CVE-2023-45285</changelog> <changelog author="hanchao <hanchao63@huawei.com> - 1.21.4-13" date="1719144000">- Type:CVE - CVE:CVE-2023-39326,CVE-2024-24789 - SUG:NA - DESC:fix CVE-2023-39326,CVE-2024-24789</changelog> <changelog author="kywqs <weiqingsong@kylinos.cn.com> - 1.21.4-14" date="1720008000">- fix CVE-2024-24791</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-15" date="1722254400">- fix send correct lastStreamID in stream-caused GOAWAY</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-16" date="1722340800">- cmd/compile: handle constant pointer offsets in dead store elimination</changelog> <changelog author="jingxiaolu <lujingxiao@huawei.com> - 1.21.4-17" date="1722340801">- cmd/compile: ensure pointer arithmetic happens after the nil check</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-18" date="1722513600">- internal/poll:add SPLICE_F_NONBLOCK flag for splice to avoid insonsistency with O_NONBLOCK</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-19" date="1722513601">- runtime: call enableMetadataHugePages and its callees on the systemstack</changelog> <changelog author="EulerOSWander <314264452@qq.com> - 1.21.4-20" date="1722513602">- cmd/compile: fix findIndVar so it does not match disjointed loop headers</changelog> <changelog author="Vanient <xiadanni1@huawei.com> - 1.21.4-21" date="1726747200">- cmd/compile: fix escape analysis of string min/max</changelog> </package> <package pkgid="09abfb669b2ae594e4d1219e2b1481aaa780ef2a25bfa7360618d6fed9dec448" name="nginx" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="dd0591ecc35f2b62ea2b9f2efc8cf9646336fd4e872809f06d57ecee486cc5fb" name="nginx" arch="src"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="f67001a508dac97a83006cc58ae5a644ebb83c558da29e677e641a089f32377c" name="nginx" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="19a9779de03d255c1dd6ff07d5992913cc8a7a9e988bc9b64185416dc4b7a723" name="nginx" arch="src"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="ad3fe45e75f34f68de047ee0741d4cbf6ea2424b5f050808324ecc0a9dd0e306" name="nginx-all-modules" arch="noarch"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="ad380113cc7412ab716184bdf5130332f0320e0d140fa5b9593f7f7bbccb02b2" name="nginx-all-modules" arch="noarch"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="72a735e4c6c610e5756e09e1bdce23094a6d51bc07a66e145fb0049f66683a52" name="nginx-debuginfo" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="4eae0ced5ade99e2d6017f84474e4b6c18f6183a832a7843ad099b4e561ce890" name="nginx-debuginfo" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="55d05a0801bcd18e81cf262106baa60a50bf941a5275e8f9cf4e5347b4357401" name="nginx-debugsource" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="1576ea55cc685c598aad2cbeb02386e84fe0f871414321c3159c4d4572704749" name="nginx-debugsource" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="2ef8eb24bd28bb0525b51280373c26dd296118d4033fb646342b6ad706c96ec8" name="nginx-filesystem" arch="noarch"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="2436efbb78d9cf9982902d9c675c7c748387ed7549a74cde5138f53caeeb2e4f" name="nginx-filesystem" arch="noarch"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="0dd13fed27fd04bb7b29b284583cff04db3a87230887ff33ba00aa33c497b7a0" name="nginx-help" arch="noarch"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="0cae537539a2ea436fe3d8fc38fbe5566425c5b9b2c6075773b3a38067e58356" name="nginx-help" arch="noarch"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="7572168fd6e973bc8ade176362ec1ce2c4b9b83c3d9f210966933623bc2fee21" name="nginx-mod-devel" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="1abec581301d96fdda9e593bba9537926b0608007fb970dacff5e1c746d6baad" name="nginx-mod-devel" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="1e15ad91d4f530438dd8ec106f21c86f0653b68acc6a3a179bd8c06c75877fe1" name="nginx-mod-http-image-filter" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="32670d35a0eb38d1e47d3bb5570bb744e30dca3021baba4ba2b8831304b9f7f2" name="nginx-mod-http-image-filter" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="ff9e72e0332c731bdc509de5b9a88d82b54b47f5abfd2d15cbba9ae1e9e35e80" name="nginx-mod-http-perl" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="cfe6dd5eb632c619904b11df22830be6785b4f3b3d9e6737c93b497c86448462" name="nginx-mod-http-perl" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="df68033376efcef489c650ba1217a139d811c493c0704f88a2687b390af0b3de" name="nginx-mod-http-xslt-filter" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="022726d831426ab8446f7a7c14ea6d90b9bc6e761ee7740c53076865472e4c4d" name="nginx-mod-http-xslt-filter" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="a34d5b65dc18696be29ed49b82075fa239a99de6b043b9daed0590a3dc8635ad" name="nginx-mod-mail" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="d18ef9366ba7cedc28eb2ed826896c3fd1e0eed268986a4c15b695add005bfb6" name="nginx-mod-mail" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="8cb74cbf7d1331f310354b80cff73633c5d0446914fda02753c5c28d681e25b2" name="nginx-mod-stream" arch="aarch64"> <version epoch="1" ver="1.26.2" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.2-1" date="1668427200">- update nginx to 1.23.2</changelog> <changelog author="zhouyihang <zhouyihang3@h-partners.com> - 1:1.23.2-2" date="1669291200">- add package mod-devel</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> </package> <package pkgid="40653d5c5d49f3a727222e557c2c7970b7ba872ba915071f1428c547e90ec632" name="nginx-mod-stream" arch="aarch64"> <version epoch="1" ver="1.26.3" rel="1"/> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.23.3-1" date="1678968000">- update nginx to 1.23.3</changelog> <changelog author="yanglu <yanglu72@h-partners.com> - 1:1.23.3-2" date="1697716800">- fix CVE-2023-44487</changelog> <changelog author="gaihuiying <eaglegai@163.com> - 1:1.24.0-1" date="1704196800">- update nginx to 1.24.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.0-1" date="1713960000">- 1.26.0</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.1-1" date="1717156800">- 1.26.1</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.2-1" date="1723723200">- 1.26.2</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 1:1.26.3-1" date="1738843200">- 1.26.3</changelog> </package> <package pkgid="c265f3ccdf2d082eac31615b90d816c7668be2f6265c68276bf368574f4b7645" name="oracle-database-preinstall-19c" arch="aarch64"> <version epoch="0" ver="1.0" rel="1.el9"/> <changelog author="Vasundhara V <vasundhara.venkatasubramanian@oracle.com> [1.0-1.el9]" date="1692187200">- Initial version</changelog> </package> <package pkgid="d1ab0d22fb1707a0f1ae2d6b0549f641bc60d0b0fa6e7b2f13308848e23c79b2" name="oracle-database-preinstall-19c" arch="src"> <version epoch="0" ver="1.0" rel="1.el9"/> <changelog author="Vasundhara V <vasundhara.venkatasubramanian@oracle.com> [1.0-1.el9]" date="1692187200">- Initial version</changelog> </package> <package pkgid="af8181a3271119cb6289f4579c4a8e08d21bd5532e027cb6151a680a9fd66249" name="oracle-instantclient" arch="src"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="d7a0f684bd6f383636ffb53a40ecfe26ac1be01c072639db341cbadaf51c1039" name="oracle-instantclient-basic" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="1673484db56f6c380478895dfe85fb24d3236ec576bcbd865f99ba8a35b40c4e" name="oracle-instantclient-devel" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="4063ad8a85e47c20c244ed9dec5334bcf6038a04f30d6ef8b3bfd79cf3e10633" name="oracle-instantclient-jdbc" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="bb0ad75c07efd2bfc0c44781acb7ca8eea06bb88495e2ea7e0cd4b623eecb050" name="oracle-instantclient-odbc" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="cf5debc7603893019deadbfd142bd1fd23b0c387df4c3e83e35bca6f520e102e" name="oracle-instantclient-precomp" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="f52787d28c79ecacc91ea62839d761a376bca65808fd8a3712dc280e27c54107" name="oracle-instantclient-sqlplus" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="f47fdc7a57e889acd32d7404eca5d4915e7d29e4a3a10168acab40dd7ff0b483" name="oracle-instantclient-tools" arch="aarch64"> <version epoch="0" ver="19.23.0.0.0" rel="1"/> </package> <package pkgid="9591dac45fff962af4c525c61be24468713256b294ed4f8932e925ddbe48d3ce" name="php" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="b6a8f2fe362fbfbf4fb7efc0c70bfa560b949360626c38d7e2c05d7abd23dab3" name="php" arch="src"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="88788a461aec628044399058242f8166f3a7a420e3dd3029a3a5bb3c19182613" name="php" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="1c4e46cb02db97aced9981cdc80be94841d8bbd390b642926a387f2c345ceae4" name="php" arch="src"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="aba3231dce351bb326da917e23237f84f2e6e0679252ff8f158243518e9b2735" name="php-bcmath" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="f30f9fec27004cbbf561a9a5b35edb3e03446246a64be226964c9f990d6f2130" name="php-bcmath" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="90d3023ac3573c5d80fee658cbfb73a82d1fc1d2cb6e3bcf6106bcc76d46eef9" name="php-cli" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="908d5b414471069278ec216019d86ad73f8c184579bebaa3ecd133d21a58cf28" name="php-cli" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="98c71c3069a6951035e9e192ee94af08db172ce603c89aee05a62539e4d46ee0" name="php-common" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="65526fb008b2c1b269b02675a006e160d5188a2b7d7c959a2f8603785d322cf3" name="php-common" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="2bfa9d81e296886930d2c61a86707aabeee1818f2762d942118aa45b7047e51e" name="php-dba" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="628fac84f22f2b2922be0ac09834d2097c00129faed28dcc9ea5e544a1f62451" name="php-dba" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="c25118ca9a014b5c356de3b26fe406d346f8e37095af4879ae7a293c756f8dba" name="php-dbg" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="ac3b18f581b10affd0ae883e1f05d058c62805dff269ffa05dc470d0c28616ba" name="php-dbg" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="a72d65fa0bc99792dc37261ac3d3bd7bc00602a80e5a0ff9a0fb01b9ef099890" name="php-debuginfo" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="e29c0c6c8eadcce2fa500ab4b8c2845aaaaffca9ee201d27c17c398a5b0e6959" name="php-debuginfo" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="9ba5f981dbfff8d389b1276d7c3abbd33652c933ef3fc0313ad3e6b4a683c73e" name="php-debugsource" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="b4832443fa7a7ecff085a11c2ae438fdac507b9d89caa7f37fb2e9536b0ba162" name="php-debugsource" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="6a9bc699ebd5f2de83ec8e0b21c2917ad4636ee752358aa92b2c3bd3937b6551" name="php-devel" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="a8eabdb6c8c3aae381de682f81cf5623ff2e60bad2787a67788c1fc3a0e33de3" name="php-devel" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="6438e6e9305ffd630f2c439ab0adc134c8a5c3be23498cfcb1060fa4d8823c3f" name="php-embedded" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="7b59e67f4e24de384ceda0c4116e783b25369f8f7ad39a27368616d64ce8f356" name="php-embedded" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="13c73a704917fa6b9d1ae063cbf66c07b4c761d188a51dbed785b4ea83472d97" name="php-enchant" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="085e0bba66242bf214c9a9828b4e3249287bb9aac759c7b7455b751a61765e57" name="php-enchant" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="e3e8091780b3404c068fc4d93c50a3d5c2b5b4cb749e5a35b25cc6cf2a129f10" name="php-fpm" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="21e1d2ee9a27979579e5a0f4a49e61eab35ccd619c5daec1ef270e34a15775b4" name="php-fpm" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="dbab85c47376a5381d612f7a1cb102f1bde2629ca77aae915cd4e4788053f6c3" name="php-gd" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="cd16f832d8645c8ba5b4823e3d05c1b16037d6bf1634ebca3f61d5c20ed4689e" name="php-gd" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="ebd116ee71ec17754a6ed44f0c083eff268cec3eb5ad20b9dd7d6fba80792987" name="php-gmp" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="bc8c86684ffcc56ee151e8ad5d4757d5c2042933a56a3f17b00db387bbe5c078" name="php-gmp" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="3568b65cddb2479fbb8ebadb56da0ebe101c200eed2bd638a809458184cb336e" name="php-help" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="160b757d80e6e2ba0b40cb6f84e0f7b174faa78681dfb9e7f4254fd6a2a22043" name="php-help" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="05408291e7e68308a9a162cf0665c3faeccdb12e0bceb24fb76acffd547239e2" name="php-intl" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="4d409c0d6e52d8afcf4ad16d024ba16daad0c3455738c98d3faea4dfa20a80b1" name="php-intl" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="f0af8047e3e4151b0735cbcb1d6d883a03a51502a68f9da450bd74f9ba69ad35" name="php-ioncube-loader" arch="aarch64"> <version epoch="0" ver="13.3.1" rel="1"/> </package> <package pkgid="9b5d650fa4f1f3ad5b3877cb673b322cbf8a326be43d23ce45b3bff11f29f79c" name="php-ioncube-loader" arch="src"> <version epoch="0" ver="13.3.1" rel="1"/> </package> <package pkgid="93655a3155e6b7e3c3ecf35cf13c0773e29fb27e926ca160f74e36add0673038" name="php-ioncube-loader" arch="aarch64"> <version epoch="0" ver="14.4.0" rel="1"/> </package> <package pkgid="efe1b94634d38b9ef85c9a174083f7203f3ce4f7b28853f1ef5f4001e09b3ea4" name="php-ioncube-loader" arch="src"> <version epoch="0" ver="14.4.0" rel="1"/> </package> <package pkgid="fab7e5aedea22996caa015c3124d9d1fe44c6759b8f14310e6409a37897939ae" name="php-json" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="a62acd6115d23801e71476a1f9382f3d92d294d4426fb21cc2e07f2696366c1c" name="php-json" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="2afd599eebe00180b329c29bf14bbed901ed953e6915d5161dc8cbfb767b1312" name="php-ldap" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="2e52dbb5a0d0b24502c411c3452d217f9943237a88d9d9814e837b33b2d3c2f3" name="php-ldap" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="df20442978d4a47b23a7e38f972d18e8436879f343f1697c6928d4d8bc4262aa" name="php-mbstring" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="6f5aaab667bc7f07891f460b90c543f87fcf2203bc5babd968f7e30b24c75d81" name="php-mbstring" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="9ac6f793af92bacd54752547e3d41d167f774cb439c209782b11f8f25915916e" name="php-mysqlnd" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="1bbbcd76a35187fa7d8104ece0602cd71eb3e6d0366cea94cec6e01a50cf7df1" name="php-mysqlnd" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="8eb2a37b5297dffcdc258a2ad898dd183e2476c2f0d47cdf08a3e647b5048e59" name="php-oci8" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="a20b741bd3f4471fdfe7fecb052b5bd780e4b6d735588880101f410424796ce7" name="php-oci8" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="9620ef756c630dceef933ea582c78982693782181b94878ed705fb9e10cca508" name="php-odbc" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="a713c9e10f8d26e691d04062e84be762444fb291a85fe2aa6080284f2d188835" name="php-odbc" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="c756bc0451228486d7bd35d822bce33ca91d2a6b580a936e0ee23de4c9e0fded" name="php-opcache" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="9f0f389f1dd42bdef0b02b552d102ce34b7ed86f163351ce8b258ac26cae8384" name="php-opcache" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="cbda99009ad13b03bb1555bc0882f6917abd1ab8f694c6b4b82a34d0692a4780" name="php-pdo" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="3e1821497807e285e876d3d41d56362e1b207ee10093c292eea3d3c53b5d1376" name="php-pdo" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="7b72f19c7ae2db81dd6ac799ebe71b04064c8b1be9d6e7808281b79abf14f78d" name="php-pgsql" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="7db94c35c36dc454e2df8c2026b4eb1bebaa7f69f61c9375d57542e09d03770b" name="php-pgsql" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="818f3c7ff1e5a077759f16d527791767cfe4653abb65f6824dc9b840367ae2c0" name="php-process" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="bf5967afb7bd103ef2f1b5ec3284ff5ec42f1076df9bf1c5022e6273ebd5a9eb" name="php-process" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="a3a1a1d1f55ceb0c5cb92d66dc507c47973cd3fd4de03079762ac4e5dd04f6f4" name="php-snmp" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="096a750a5d8d811d59851606557ee399576b143f146fa4f0991c320843e0e7f5" name="php-snmp" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="31c4d0f4b53c8b63d5700adaefc741dee1b67eaa95607489689a7e1330b41796" name="php-soap" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="2a45d91a43f654ca6208ddbca07baa68e85a484e4e204ab37a25cf70656f7247" name="php-soap" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="90c5bda499b5e9f5508fef86acdc5b20c74313905181750ca37f52cd8c14f90b" name="php-sodium" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="03d85ec7a80e9595db02e38971cec29fda65b558ce0171f305d5bbe1acf50e95" name="php-sodium" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="5522a2236a90d50f571b39f8976c4d5d3ac03d2a49547a8acf30fbae77348a7d" name="php-tidy" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="fb2278a0aec9ebebd0cc78b8823c5cc181fb2df12d5983e022bc01b079384692" name="php-tidy" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="94e2cb62376db4e909acd88318aae5ff991ce540c3b0460cec98ce8d5ba8c7c0" name="php-xml" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="ecc88d6e8551b5d834201b47b8676936b4f3adba158652639a3a3eb34ad2a616" name="php-xml" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="d749cf043d1f8d88bc02153ce03ccdb0d0f14d6cedd83e664012845bc062d5ba" name="php-xmlrpc" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.6"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-1" date="1665057600">- New version 7.2.34 - Sync with remi's patches</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> </package> <package pkgid="d9aafc4831aebedc845bbf8b4f912fb4212ae7143f98ec14558cecf6546bd300" name="php-xmlrpc" arch="aarch64"> <version epoch="0" ver="7.4.33" rel="1.7"/> <changelog author="Funda Wang <fundawang@yeah.net> - 7.2.34-2" date="1670760000">- Fix php BUG#81738 / CVE-2022-37454</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1" date="1692360000">- New version 7.4.33</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.2" date="1712836800">- Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 - Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.4" date="1717761600">- Fix filter bypass in filter_var FILTER_VALIDATE_URL CVE-2024-5458</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.6" date="1727438400">- Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 - Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 - Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of multipart form data CVE-2024-8925</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 7.4.33-1.7" date="1732363200">- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w - Fix OOB access in ldap_escape CVE-2024-8932 - Fix Integer overflow in the dblib/firebird quoter causing OOB writes CVE-2024-11236 - Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs CVE-2024-11234 - Fix Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233</changelog> </package> <package pkgid="35736f56abcceb98af320107f208aa179642278fdd69382429f394877d9c3c78" name="valkey" arch="aarch64"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> <package pkgid="84c872615e9f08921d7a144671f8ad3a3ed23b5937deee081a37c702f09e6ab5" name="valkey" arch="src"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> <package pkgid="04714c924c7210ab060169592b2a7e3fb1159d996ec294bba1c57ae788cce401" name="valkey-compat-redis" arch="aarch64"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> <package pkgid="7b7b4afa7a89f1ece1d81c97aeaae3443d472da6501fb4b506c02e51e6578ddf" name="valkey-debuginfo" arch="aarch64"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> <package pkgid="75567beead4be4e18d990c37f0291c93ebd80289997cd4f421c666c3744c4b64" name="valkey-debugsource" arch="aarch64"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> <package pkgid="1f626e820d1dea51f8e5c314fe6b922f54e6cfeb6cd91e84dea9df45929e63b6" name="valkey-devel" arch="aarch64"> <version epoch="0" ver="8.0.1" rel="1"/> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.4~rc1-1" date="1712664000">- Initial package build, release candidate</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-1" date="1712923200">- update to 7.2.5-rc1</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5~rc1-2" date="1712923201">- add compat subpackage with migration scripts from redis</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-1" date="1713355200">- update to 7.2.5 rhbz#2275379</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-2" date="1713787200">- move redis compat symlinks to compat subpackage</changelog> <changelog author="Nathan Scott <nathans@redhat.com> - 7.2.5-3" date="1713787201">- remove version_no_tilde code</changelog> <changelog author="Jonathan Wright <jonathan@almalinux.org> - 7.2.5-5" date="1714392000">- improve migration scripts - rename compat package - fix working dir</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.0-1" date="1727092800">- update to 8.0.0 - Set build flags</changelog> <changelog author="Funda Wang <fundawang@yeah.net> - 8.0.1-1" date="1729252800">- update to 8.0.1</changelog> </package> </otherdata>