{"id":"MGASA-2021-0312","summary":"Updated php packages fix security vulnerabilities","details":"Updated PHP packages fix security vulnerabilities:\n- Fixed bug #81122: SSRF bypass in FILTER_VALIDATE_URL. (CVE-2021-21705)\n\nPDO_Firebird:\n- Fixed bug #76448: Stack buffer overflow in firebird_info_cb.\n  (CVE-2021-21704)\n- Fixed bug #76449: SIGSEGV in firebird_handle_doer. (CVE-2021-21704)\n- Fixed bug #76450: SIGSEGV in firebird_stmt_execute. (CVE-2021-21704)\n- Fixed bug #76452: Crash while parsing blob data in firebird_fetch_blob.\n  (CVE-2021-21704)\n","modified":"2026-04-16T00:11:51.305241268Z","published":"2021-07-04T02:13:55Z","upstream":["CVE-2021-21704","CVE-2021-21705"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2021-0312.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=29197"},{"type":"WEB","url":"https://www.php.net/ChangeLog-7.php#7.3.29"}],"affected":[{"package":{"name":"php","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/php?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"7.3.29-1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2021-0312.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}