{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "**PHP version 8.1.16** (14 Feb 2023)\n\n**Core:**\n\n* Fixed bug php#81744 (Password_verify() always return true with some hash). (**CVE-2023-0567**). (Tim D\u00fcsterhus)\n* Fixed bug php#81746 (1-byte array overrun in common path resolve code). (**CVE-2023-0568**). (Niels Dossche)\n* Fixed bug [GHSA-54hq-v5wp-fqgv](https://github.com/php/php-src/security/advisories/GHSA-54hq-v5wp-fqgv) (DOS vulnerability when parsing multipart request body). (**CVE-2023-0662**) (Jakub Zelenka)\n\n", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": "", "close_bugs": true, "date_submitted": "2023-02-15 07:28:56", "date_modified": "2023-02-17 09:00:10", "date_approved": "2023-02-23 02:25:26", "date_testing": "2023-02-16 02:23:16", "date_stable": "2023-02-24 03:45:51", "alias": "FEDORA-2023-d12ff09d38", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2023-02-24 03:45:51", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2023-d12ff09d38", "title": "php-8.1.16-1.fc36", "version_hash": "fd65786e2ce589b3b7abc7bf74958b38fae2347a", "release": {"name": "F36", "long_name": "Fedora 36", "version": "36", "id_prefix": "FEDORA", "branch": "f36", "dist_tag": "f36", "stable_tag": "f36-updates", "testing_tag": "f36-updates-testing", "candidate_tag": "f36-updates-candidate", "pending_signing_tag": "f36-signing-pending", "pending_testing_tag": "f36-updates-testing-pending", "pending_stable_tag": "f36-updates-pending", "override_tag": "f36-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": "2023-05-16", "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "remi", "email": "fedora@famillecollet.com", "id": 94, "avatar": "https://seccdn.libravatar.org/avatar/619d3923bdf71a705e6f65371e59246522f52ad96485c9731408ff28554716cf?s=24&d=retro", "openid": "remi.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by remi. ", "timestamp": "2023-02-15 07:28:57", "update_id": 485438, "user_id": 91, "id": 2903086, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2023-02-15 07:28:58", "update_id": 485438, "user_id": 91, "id": 2903087, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2023-02-16 02:23:38", "update_id": 485438, "user_id": 91, "id": 2904405, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "remi edited this update.", "timestamp": "2023-02-16 06:34:58", "update_id": 485438, "user_id": 91, "id": 2904644, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "remi edited this update.", "timestamp": "2023-02-17 09:00:10", "update_id": 485438, "user_id": 91, "id": 2906060, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2023-02-23 02:25:26", "update_id": 485438, "user_id": 91, "id": 2916758, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2023-02-24 03:46:33", "update_id": 485438, "user_id": 91, "id": 2918180, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "php-8.1.16-1.fc36", "signed": true, "release_id": 56, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 2170761, "title": "CVE-2023-0662 php: DoS vulnerability when parsing multipart request body", "security": true, "parent": true, "feedback": []}, {"bug_id": 2170770, "title": "CVE-2023-0568 php: 1-byte array overrun in common path resolve code", "security": true, "parent": true, "feedback": []}, {"bug_id": 2170771, "title": "CVE-2023-0567 php: Password_verify() always return true with some hash", "security": true, "parent": true, "feedback": []}, {"bug_id": 2170775, "title": "CVE-2023-0567 php: Password_verify() always return true with some hash [fedora-36]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2170777, "title": "CVE-2023-0662 php: DoS vulnerability when parsing multipart request body [fedora-36]", "security": true, "parent": false, "feedback": []}, {"bug_id": 2170779, "title": "CVE-2023-0568 php: 1-byte array overrun in common path resolve code [fedora-36]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2023-d12ff09d38", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}