PHP fixes only.
PHP version 7.1.33.18, 7.2.34.14, 7.3.33.6 CVE fixes
- Core
- Fixed bug #81744 (
password_verify()always return true with some hash). (CVE-2023-0567) - Fixed bug #81746 (1-byte array overrun in common path resolve code). (CVE-2023-0568)
- Fixed bug #81744 (
- FPM
- Fixed bug GHSA-54hq-v5wp-fqgv (DOS vulnerability when parsing multipart request body). (CVE-2023-0662)
PHP version 7.1.33.17, 7.2.34.13, 7.3.33.5 CVE fixes
- PDO/SQLite
- Fixed bug #81740 (
PDO::quote()may return unquoted string). (CVE-2022-31631)
- Fixed bug #81740 (