Zend Server 2019.1.3 | Zend by Perforce

March 2023

PHP fixes only.

PHP version 7.1.33.18, 7.2.34.14, 7.3.33.6 CVE fixes

Core
- Fixed bug #81744 (password_verify() always return true with some hash). (CVE-2023-0567)
- Fixed bug #81746 (1-byte array overrun in common path resolve code). (CVE-2023-0568)
FPM
- Fixed bug GHSA-54hq-v5wp-fqgv (DOS vulnerability when parsing multipart request body). (CVE-2023-0662)

PHP version 7.1.33.17, 7.2.34.13, 7.3.33.5 CVE fixes

PDO/SQLite
- Fixed bug #81740 (PDO::quote() may return unquoted string). (CVE-2022-31631)

Send Feedback