[CLSA-2026:1784042250] Fix CVE(s): CVE-2026-14355
Type:
security
Severity:
Important
Release date:
2026-07-14 15:17:48 UTC
Description:
* CVE-2026-14355: openssl_encrypt() heap buffer overflow (zend_mm heap corruption) with AES key-wrap-with-padding (aes-*-wrap-pad) ciphers when built against OpenSSL 3.x; size the output buffer for RFC 5649 padded wrap.
CVEs fixed:
Updated packages:
  • alt-php73_7.3.33-68_amd64.deb
    sha:f3bbc079682ce2b50504d318913b2f57687969ae
  • alt-php73-bcmath_7.3.33-68_amd64.deb
    sha:c2d917deb5fad1399964c214877326f046716f0f
  • alt-php73-cli_7.3.33-68_amd64.deb
    sha:9f60c197fa6e41dbbbb1728a1ca72015b3ddcb7a
  • alt-php73-common_7.3.33-68_amd64.deb
    sha:a4eb0ede75c8e0a2c7ac9e9d0794ab17dd0929c5
  • alt-php73-dba_7.3.33-68_amd64.deb
    sha:e73c8872fcb1710c7310c4368ea6ce58f0c977ed
  • alt-php73-dev_7.3.33-68_amd64.deb
    sha:200fc2f423044e83ca1fc9bf610d0d67fa834806
  • alt-php73-enchant_7.3.33-68_amd64.deb
    sha:7d647cc35500f5fa98a2d949ebf63ba4947d21ea
  • alt-php73-firebird_7.3.33-68_amd64.deb
    sha:67c6f8fef57fcf3102125854c7226d52906f0588
  • alt-php73-gd_7.3.33-68_amd64.deb
    sha:320d32baa160603a66f34e03ac41a140208ba52f
  • alt-php73-imap_7.3.33-68_amd64.deb
    sha:0b475bbcaed04aa556aba6b411afb9c82afe9baf
  • alt-php73-intl_7.3.33-68_amd64.deb
    sha:692de9978216a680a06c9879836d8b1c08dba039
  • alt-php73-ldap_7.3.33-68_amd64.deb
    sha:3e2509b6a9f09ca346017c2fa8a8f614b384e770
  • alt-php73-mbstring_7.3.33-68_amd64.deb
    sha:44742ed8e262ce9e69a0300be5aa327ba5fcaf82
  • alt-php73-mysqlnd_7.3.33-68_amd64.deb
    sha:a365a840373616c26ac7f46f1b4af9d83d4a49d4
  • alt-php73-odbc_7.3.33-68_amd64.deb
    sha:8ed007c538b95ada20aff9dc94194daa4377fb3f
  • alt-php73-opcache_7.3.33-68_amd64.deb
    sha:bcf364d035c083a1de828cbcb51863d4edf9b931
  • alt-php73-pdo_7.3.33-68_amd64.deb
    sha:1d2959c5b14ea8167cf7fb02a4043f12e1c5dbf3
  • alt-php73-pgsql_7.3.33-68_amd64.deb
    sha:8a7e625e0bdd8ea6aac2ea50c93009ae8926233b
  • alt-php73-php-fpm_7.3.33-68_amd64.deb
    sha:4997e37dda41b1ef56653e5ed1f28cbdc29780b7
  • alt-php73-process_7.3.33-68_amd64.deb
    sha:8230a13e52e1bb354a4511b77ffe83013bb4c96d
  • alt-php73-pspell_7.3.33-68_amd64.deb
    sha:72086261baec3d2fb79fcafec9b0dea74f1e4f09
  • alt-php73-recode_7.3.33-68_amd64.deb
    sha:57ed8bc6f366bd75345022a63c8f3e0ab118abf2
  • alt-php73-snmp_7.3.33-68_amd64.deb
    sha:02c136de8190adaacee199dad224732882515efe
  • alt-php73-soap_7.3.33-68_amd64.deb
    sha:6a7a54dd3067834d15454057595b1902be2ea65d
  • alt-php73-sodium_7.3.33-68_amd64.deb
    sha:c5e354d29d35a781a3cfb51926303a0be20420af
  • alt-php73-tidy_7.3.33-68_amd64.deb
    sha:4a7b52d62ebe94ef5859583b8871a065d44c486d
  • alt-php73-xml_7.3.33-68_amd64.deb
    sha:738cb0834ec7036ab0b9d3f8577607bf82f8c3c4
  • alt-php73-xmlrpc_7.3.33-68_amd64.deb
    sha:7f2c1f11aca0957302720f8e607a34de9644c6a1
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.