RLSA-2026:1429

Описание

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server.

Security Fix(es):

• php: heap-based buffer overflow in array_merge() (CVE-2025-14178)

• php: PHP: Information disclosure via getimagesize() function when reading multi-chunk images (CVE-2025-14177)

• php: PHP: Denial of Service via invalid character sequence in PDO PostgreSQL prepared statement (CVE-2025-14180)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.