English
EN
Français
FR
Language
English
EN
Français
FR

CVE Vulnerabilities

Posts & Pages

No results found for ""

Try different keywords or check spelling

Search in CVE database, posts & pages • Press ESC to close

USN-7953-1 Unknown

USN-7953-1: PHP vulnerabilities

Canonical (Ubuntu) Released: January 12, 2026 Updated: January 14, 2026 Restart Required
Official Page

Description

It was discovered that PHP incorrectly handled memory while reading images in multi-chunk mode. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 24.04 LTS, Ubuntu 25.04 and Ubuntu 25.10. (CVE-2025-14177) It was discovered that PHP incorrectly handled memory when element count exceeds 32-bit limit. An attacker could possibly use this issue to cause a denial of service. (CVE-2025-14178) It was discovered that PHP incorrectly handled memory when using the PDO PostgreSQL driver. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 25.04 and Ubuntu 25.10. (CVE-2025-14180)

Fixed Vulnerabilities 3

CVE-2025-14178 N/A 0.0 ⚠️ KEV fixed
Dec 27, 2025

In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when…

CVE-2025-14180 N/A 0.0 ⚠️ KEV fixed
Dec 27, 2025

In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with…

CVE-2025-14177 N/A 0.0 ⚠️ KEV fixed
Dec 27, 2025

In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory…

Quick Info

Patch ID: USN-7953-1
Vendor: Canonical (Ubuntu)
Severity: Unknown
CVEs Fixed: 3
Restart: Required

Vendor

Canonical (Ubuntu)

Additional Info

action:
usn id: USN-7953-1
summary: Several security issues were fixed in PHP.
usn number: 7953-1
instructions: In general, a standard system update will make all the necessary changes.

Share