Vulnerability CVE-2021-21707: Information

Description

In PHP versions 7.3.x below 7.3.33, 7.4.x below 7.4.26 and 8.0.x below 8.0.13, certain XML parsing functions, like simplexml_load_file(), URL-decode the filename passed to them. If that filename contains URL-encoded NUL character, this may cause the function to interpret this as the end of the filename, thus interpreting the filename differently from what the user intended, which may lead it to reading a different file than intended.

Severity: MEDIUM (5.3) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Published: Nov. 29, 2021
Modified: Feb. 16, 2023

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
php7sisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4451-1-Fixed
php7sisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4128-1-Fixed
php7p107.4.26-alt17.4.33-alt1ALT-PU-2021-3416-1290331Fixed
php7p97.3.33-alt17.3.33-alt1ALT-PU-2021-3395-1289998Fixed
php7p9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3844-1-Fixed
php7c10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3416-1290331Fixed
php7c9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3645-1292351Fixed
php7-curlsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4452-1-Fixed
php7-curlsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4129-1-Fixed
php7-curlp107.4.26-alt17.4.33-alt1ALT-PU-2021-3417-1290331Fixed
php7-curlp97.3.33-alt17.3.33-alt1ALT-PU-2021-3396-1289998Fixed
php7-curlp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3845-1-Fixed
php7-curlc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3417-1290331Fixed
php7-curlc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3646-1292351Fixed
php7-gdsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4453-1-Fixed
php7-gdsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4130-1-Fixed
php7-gdp107.4.26-alt17.4.33-alt1ALT-PU-2021-3418-1290331Fixed
php7-gdp97.3.33-alt17.3.33-alt1ALT-PU-2021-3397-1289998Fixed
php7-gdp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3846-1-Fixed
php7-gdc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3418-1290331Fixed
php7-gdc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3647-1292351Fixed
php7-intlsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4459-1-Fixed
php7-intlsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4136-1-Fixed
php7-intlp107.4.26-alt17.4.33-alt1ALT-PU-2021-3424-1290331Fixed
php7-intlp97.3.33-alt17.3.33-alt1ALT-PU-2021-3404-1289998Fixed
php7-intlp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3853-1-Fixed
php7-intlc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3424-1290331Fixed
php7-intlc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3653-1292351Fixed
php7-mysqlip97.3.33-alt1.27.3.33-alt1.2ALT-PU-2021-3398-1289998Fixed
php7-mysqlip9_e2k7.3.33-alt1.27.3.33-alt1.2ALT-PU-2022-3847-1-Fixed
php7-opcachesisyphus_e2k7.4.26-alt17.4.33-alt1.2ALT-PU-2021-4460-1-Fixed
php7-opcachesisyphus_mipsel7.4.28-alt1.17.4.33-alt1.2ALT-PU-2022-4137-1-Fixed
php7-opcachep107.4.26-alt17.4.33-alt1.2ALT-PU-2021-3425-1290331Fixed
php7-opcachep97.3.33-alt1.37.3.33-alt1.3ALT-PU-2021-3405-1289998Fixed
php7-opcachep9_e2k7.3.33-alt1.37.3.33-alt1.3ALT-PU-2022-3854-1-Fixed
php7-opcachec10f17.4.26-alt17.4.33-alt1.2ALT-PU-2021-3425-1290331Fixed
php7-opcachec9f27.4.27-alt17.4.33-alt1.2ALT-PU-2021-3654-1292351Fixed
php7-opensslsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4454-1-Fixed
php7-opensslsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4131-1-Fixed
php7-opensslp107.4.26-alt17.4.33-alt1ALT-PU-2021-3419-1290331Fixed
php7-opensslp97.3.33-alt1.17.3.33-alt1.1ALT-PU-2021-3399-1289998Fixed
php7-opensslp9_e2k7.3.33-alt1.17.3.33-alt1.1ALT-PU-2022-3848-1-Fixed
php7-opensslc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3419-1290331Fixed
php7-opensslc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3648-1292351Fixed
php7-pdo_mysqlsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4455-1-Fixed
php7-pdo_mysqlsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4132-1-Fixed
php7-pdo_mysqlp107.4.26-alt17.4.33-alt1ALT-PU-2021-3420-1290331Fixed
php7-pdo_mysqlp97.3.33-alt17.3.33-alt1ALT-PU-2021-3400-1289998Fixed
php7-pdo_mysqlp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3849-1-Fixed
php7-pdo_mysqlc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3420-1290331Fixed
php7-pdo_mysqlc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3649-1292351Fixed
php7-pgsqlsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4456-1-Fixed
php7-pgsqlsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4133-1-Fixed
php7-pgsqlp107.4.26-alt17.4.33-alt1ALT-PU-2021-3421-1290331Fixed
php7-pgsqlp97.3.33-alt1.27.3.33-alt1.2ALT-PU-2021-3401-1289998Fixed
php7-pgsqlp9_e2k7.3.33-alt1.27.3.33-alt1.2ALT-PU-2022-3850-1-Fixed
php7-pgsqlc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3421-1290331Fixed
php7-pgsqlc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3650-1292351Fixed
php7-tidysisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4462-1-Fixed
php7-tidysisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4139-1-Fixed
php7-tidyp107.4.26-alt17.4.33-alt1ALT-PU-2021-3427-1290331Fixed
php7-tidyp97.3.33-alt17.3.33-alt1ALT-PU-2021-3407-1289998Fixed
php7-tidyp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3856-1-Fixed
php7-tidyc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3427-1290331Fixed
php7-tidyc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3656-1292351Fixed
php7-xmlrpcsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4461-1-Fixed
php7-xmlrpcsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4138-1-Fixed
php7-xmlrpcp107.4.26-alt17.4.33-alt1ALT-PU-2021-3426-1290331Fixed
php7-xmlrpcp97.3.33-alt17.3.33-alt1ALT-PU-2021-3406-1289998Fixed
php7-xmlrpcp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3855-1-Fixed
php7-xmlrpcc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3426-1290331Fixed
php7-xmlrpcc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3655-1292351Fixed
php7-xslsisyphus_e2k7.4.26-alt1.17.4.33-alt1.1ALT-PU-2021-4458-1-Fixed
php7-xslsisyphus_mipsel7.4.28-alt1.17.4.33-alt1.1ALT-PU-2022-4135-1-Fixed
php7-xslp107.4.26-alt1.17.4.33-alt1.1ALT-PU-2021-3423-1290331Fixed
php7-xslp97.3.33-alt17.3.33-alt1ALT-PU-2021-3403-1289998Fixed
php7-xslp9_e2k7.3.33-alt17.3.33-alt1ALT-PU-2022-3852-1-Fixed
php7-xslc10f17.4.26-alt1.17.4.33-alt1.1ALT-PU-2021-3423-1290331Fixed
php7-xslc9f27.4.27-alt1.17.4.33-alt1.1ALT-PU-2021-3652-1292351Fixed
php7-zipsisyphus_e2k7.4.26-alt17.4.33-alt1ALT-PU-2021-4457-1-Fixed
php7-zipsisyphus_mipsel7.4.28-alt17.4.33-alt1ALT-PU-2022-4134-1-Fixed
php7-zipp107.4.26-alt17.4.33-alt1ALT-PU-2021-3422-1290331Fixed
php7-zipp97.3.33-alt1.17.3.33-alt1.1ALT-PU-2021-3402-1289998Fixed
php7-zipp9_e2k7.3.33-alt1.17.3.33-alt1.1ALT-PU-2022-3851-1-Fixed
php7-zipc10f17.4.26-alt17.4.33-alt1ALT-PU-2021-3422-1290331Fixed
php7-zipc9f27.4.27-alt17.4.33-alt1ALT-PU-2021-3651-1292351Fixed
php8.0sisyphus_e2k8.0.13-alt18.0.30-alt1ALT-PU-2021-4450-1-Fixed
php8.0sisyphus_mipsel8.0.13-alt18.0.28-alt1ALT-PU-2021-4524-1-Fixed
php8.0p108.0.13-alt18.0.30-alt1ALT-PU-2021-3432-1290330Fixed
php8.0c10f18.0.13-alt18.0.30-alt1ALT-PU-2021-3432-1290330Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugs.php.net/bug.php?id=79971
  • Exploit
  • Issue Tracking
  • Patch
  • Release Notes
  • Vendor Advisory
https://security.netapp.com/advisory/ntap-20211223-0005/
  • Third Party Advisory
DSA-5082
  • Third Party Advisory
https://www.tenable.com/security/tns-2022-09
  • Patch
  • Release Notes
  • Third Party Advisory
[debian-lts-announce] 20221215 [SECURITY] [DLA 3243-1] php7.3 security update
  • Issue Tracking
  • Mailing List
    1. Configuration 1

      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      8.0.0
      End excliding
      8.0.13

      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      7.4.0
      End excliding
      7.4.26

      cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
      Start including
      7.3.0
      End excliding
      7.3.33

      Configuration 2

      cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*

      Configuration 3

      cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

      cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*

      Configuration 4

      cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*
      End excliding
      5.21.0