[CLSA-2026:1784046452] Fix CVE(s): CVE-2026-14355
Type:
security
Severity:
Important
Release date:
2026-07-14 16:27:50 UTC
Description:
* CVE-2026-14355: openssl_encrypt() heap buffer overflow (zend_mm heap corruption) with AES key-wrap-with-padding (aes-*-wrap-pad) ciphers when built against OpenSSL 3.x; size the output buffer for RFC 5649 padded wrap.
CVEs fixed:
Updated packages:
  • alt-php73_7.3.33-68_amd64.deb
    sha:45273bd45f4791f187a836e5e66b091ea2970ac6
  • alt-php73-bcmath_7.3.33-68_amd64.deb
    sha:97c7cf64735ec4017e817500298454d78b23a6f2
  • alt-php73-cli_7.3.33-68_amd64.deb
    sha:d9aed27ae52c559acb0aa35ea557beb786668287
  • alt-php73-common_7.3.33-68_amd64.deb
    sha:ffcb3e3a37191d51fa984e1206fc58da7eeba7eb
  • alt-php73-dba_7.3.33-68_amd64.deb
    sha:61ce0b5d62a8c2042d49dc963b02f80880905214
  • alt-php73-dev_7.3.33-68_amd64.deb
    sha:79575576598ef94f9f150ea942220611009015e7
  • alt-php73-enchant_7.3.33-68_amd64.deb
    sha:e950939e14e8c4f6f93cf55cf324450286cc6c5d
  • alt-php73-firebird_7.3.33-68_amd64.deb
    sha:f48dee50661dfb935e8dade4570cc8cfc0586bbc
  • alt-php73-gd_7.3.33-68_amd64.deb
    sha:7b0886c7497b7cf23e96a1d21b9126daf0d7be9b
  • alt-php73-imap_7.3.33-68_amd64.deb
    sha:9b42db00522fec05613ea65e1da0473b90a02498
  • alt-php73-intl_7.3.33-68_amd64.deb
    sha:f7d9b884726322d59ff124d09039ac4598ea796c
  • alt-php73-ldap_7.3.33-68_amd64.deb
    sha:ac0feeb76923bb0f0a5e26ec9777a6fd1eaf7817
  • alt-php73-mbstring_7.3.33-68_amd64.deb
    sha:ff556d1c6d8a9c3f12c41bf483bb8475ab8797dd
  • alt-php73-mysqlnd_7.3.33-68_amd64.deb
    sha:fec47e9cc3bbaefa9227603c26ba2aa6f513b94e
  • alt-php73-odbc_7.3.33-68_amd64.deb
    sha:6991382cbff3b4560303d731620582e7149fbc0a
  • alt-php73-opcache_7.3.33-68_amd64.deb
    sha:32cee6723c7ec2105a833acce47ad3daf76091df
  • alt-php73-pdo_7.3.33-68_amd64.deb
    sha:598ec4e707eafe5ade6fef82056477c69b92ac2a
  • alt-php73-pgsql_7.3.33-68_amd64.deb
    sha:03fa6640f98cb7027882f599f3fbf02c61eb4399
  • alt-php73-php-fpm_7.3.33-68_amd64.deb
    sha:3b6509ea47131a928e00ffa2b8247da80cbfa05c
  • alt-php73-process_7.3.33-68_amd64.deb
    sha:089b026bb6731b3a3fc25535836821c5cb2e2ec6
  • alt-php73-pspell_7.3.33-68_amd64.deb
    sha:5e499f72f5b6de8a19a8d248f5f277daf13317fc
  • alt-php73-recode_7.3.33-68_amd64.deb
    sha:2ee34459bec2c2cd5b6e250ee590a2a05071296d
  • alt-php73-snmp_7.3.33-68_amd64.deb
    sha:2cc3a2f96199a5fe8964d94e574a70fb5a5c8996
  • alt-php73-soap_7.3.33-68_amd64.deb
    sha:70c3b797ea98b4c12718336822182be7c91f94a6
  • alt-php73-sodium_7.3.33-68_amd64.deb
    sha:3064e821617b54ec885608b2412f64c04dda02dd
  • alt-php73-tidy_7.3.33-68_amd64.deb
    sha:9944492ab230b9804fb0f173ac241c55e5cf7034
  • alt-php73-xml_7.3.33-68_amd64.deb
    sha:6502250859c3f7be42e152e838b8f576ca93220a
  • alt-php73-xmlrpc_7.3.33-68_amd64.deb
    sha:0ef3cf41b30f0d1aba705a36092c04f3d7ceae02
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.