SUSE php8 Critical SQL Injection Remote Code Execution Vuln 2026-1958
Source: Linuxsecurity
Published:
<p>## This update for php8 fixes the following issues * CVE-2025-14179: improper handling of NULL bytes by the PDO Firebird driver when preparing SQL queries can lead to SQL injection (bsc#1264778). * CVE-2026-6722: use-after-free in SOAP using Apache map can lead to remote code execution (bsc#12647