[CLSA-2026:1784103221] Fix CVE(s): CVE-2026-14355
Type:
security
Severity:
Important
Release date:
2026-07-15 08:13:55 UTC
Description:
* CVE-2026-14355: openssl_encrypt() heap buffer overflow (zend_mm heap corruption) with AES key-wrap-with-padding (aes-*-wrap-pad) ciphers when built against OpenSSL 3.x; size the output buffer for RFC 5649 padded wrap.
CVEs fixed:
Updated packages:
  • alt-php73_7.3.33-68_amd64.deb
    sha:1538d2248364aec1f0a173c5fe5e7f1b270d07ed
  • alt-php73-bcmath_7.3.33-68_amd64.deb
    sha:92269ccb49e750a73363496f5fc9dc7e2a9402e7
  • alt-php73-cli_7.3.33-68_amd64.deb
    sha:a15b112667650adfd4b03b3b3f7a50550d3a3e52
  • alt-php73-common_7.3.33-68_amd64.deb
    sha:5d68c1bad6854a9f2850247d6ef930f646b1102f
  • alt-php73-dba_7.3.33-68_amd64.deb
    sha:e45c584cca07130562cde528bbfed0f6ec8f2c82
  • alt-php73-dev_7.3.33-68_amd64.deb
    sha:22e236d52963e88cf0c20d377e23ea398e46bf5c
  • alt-php73-enchant_7.3.33-68_amd64.deb
    sha:531110b649b2677f91b074a704a5170993da653b
  • alt-php73-firebird_7.3.33-68_amd64.deb
    sha:1caf6788e8846c0fa2f3c996a5c61cfea3fd0589
  • alt-php73-gd_7.3.33-68_amd64.deb
    sha:b41a41bbb8bc14f8e3d01262721aa790f9526d7b
  • alt-php73-imap_7.3.33-68_amd64.deb
    sha:76e219faaac3c20601fe16a7889607cb6cfdde24
  • alt-php73-intl_7.3.33-68_amd64.deb
    sha:5147a76a795f89c195d345bc15ffbd2692ea7ebc
  • alt-php73-ldap_7.3.33-68_amd64.deb
    sha:1dff76b97bc007e6d89934dad9a861a40a84429a
  • alt-php73-mbstring_7.3.33-68_amd64.deb
    sha:6e5097b19ac4a21461df7b3e87c4e574f2caa728
  • alt-php73-mysqlnd_7.3.33-68_amd64.deb
    sha:5a8f07d65b55df8e49f5c6215b2f19bc15e9addf
  • alt-php73-odbc_7.3.33-68_amd64.deb
    sha:65c81bf4a91bed34ac211b941d9a2cfca43f0d30
  • alt-php73-opcache_7.3.33-68_amd64.deb
    sha:920c8aba2004b0090121d547c8e527a3b4c6c55b
  • alt-php73-pdo_7.3.33-68_amd64.deb
    sha:2f9ef91ba04066b809cd8df1c069d9cc7355c0fd
  • alt-php73-pgsql_7.3.33-68_amd64.deb
    sha:e3ae4ffba75172b00b67e0842f20369104f260e7
  • alt-php73-php-fpm_7.3.33-68_amd64.deb
    sha:41c93993b4f5e055a953123f941cf28cd831e262
  • alt-php73-process_7.3.33-68_amd64.deb
    sha:e610a643f6394a73f824d3ad6ee5fb2bfc8493ea
  • alt-php73-pspell_7.3.33-68_amd64.deb
    sha:ece9f7c1190483859728e9fa7a7c6806267cad3f
  • alt-php73-recode_7.3.33-68_amd64.deb
    sha:a342df27cf1ebd6377f9bcd384e6f7b18a10e470
  • alt-php73-snmp_7.3.33-68_amd64.deb
    sha:a1b96e74e6630d499cd697ebdf20b6e5e60dbad8
  • alt-php73-soap_7.3.33-68_amd64.deb
    sha:86229d162dc8335420e0d29769cdf18c11e279e7
  • alt-php73-tidy_7.3.33-68_amd64.deb
    sha:7227cb046d04b47a48a4b19c6943c9c137d94fd8
  • alt-php73-xml_7.3.33-68_amd64.deb
    sha:0e75deb997cb7c0d4d580f34c74e6d9f8c8952e5
  • alt-php73-xmlrpc_7.3.33-68_amd64.deb
    sha:f4e76777b7fc1abf996e51e4ce68182ab7ade002
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.