Software 42763 Published by

The release of PHP 8.2.3 has been announced by Pierrick Charron in order to address three security flaws.




php-8.2.3

- Core:
. Fixed bug #81744 (Password_verify() always return true with some hash). (CVE-2023-0567) (Tim Düsterhus)
. Fixed bug #81746 (1-byte array overrun in common path resolve code). (CVE-2023-0568) (Niels Dossche)

- FPM:
. Fixed bug GHSA-54hq-v5wp-fqgv (DOS vulnerability when parsing multipart request body). (CVE-2023-0662) (Jakub Zelenka)



Release php-8.2.3 · php/php-src