An update for the php:8.2 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): php: Leak partial content of the heap through heap buffer over-read in mysqlnd (CVE-2024-8929) php: Single byte overread with convert.quoted-printable-decode filter (CVE-2024-11233) php: Configuring a proxy in a stream context might allow for CRLF injection in URIs (CVE-2024-11234) php: Header parser of http stream wrapper does not handle folded headers (CVE-2025-1217) php: Stream HTTP wrapper header check might omit basic auth header (CVE-2025-1736) php: Streams HTTP wrapper does not fail for headers with invalid name and no colon (CVE-2025-1734) php: libxml streams use wrong content-type header when requesting a redirected resource (CVE-2025-1219) php: Stream HTTP wrapper truncates redirect location to 1024 bytes (CVE-2025-1861) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References…Read More