Alpine: multiple php85 packages: security update to 8.5.1-r0

high Tenable Cloud Security Plugin ID 436466

Description

There are packages installed that are affected by multiple vulnerabilities referenced in the following CVEs:

- In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.*
before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g.,
APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in
php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes
uninitialized. This may lead to information disclosure of sensitive heap data and affect the
confidentiality of the target server. (CVE-2025-14177)

- In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.*
before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays
exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts
using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and
availability of the target server. (CVE-2025-14178)

- In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.*
before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid
character sequence (such as \x99) in a prepared statement parameter may cause the quoting function
PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function.
This may lead to crashes (segmentation fault) and affect the availability of the target server.
(CVE-2025-14180)

See Also

https://security.alpinelinux.org/vuln/CVE-2025-14177

https://security.alpinelinux.org/vuln/CVE-2025-14178

https://security.alpinelinux.org/vuln/CVE-2025-14180

Plugin Details

Severity: High

ID: 436466

Version: Revision 1.6

Type: Local

Published: 12/20/2025

Updated: 2/10/2026

Supported Sensors: Agentless Assessment, Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Low

Score: 3.5

Percentile: 51.94

CVSS v2

Risk Factor: High

Base Score: 8.5

Temporal Score: 6.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:C

CVSS Score Source: CVE-2025-14178

CVSS v3

Risk Factor: High

Base Score: 8.2

Temporal Score: 7.4

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 8.2

Threat Score: 6.9

Threat Vector: CVSS:4.0/E:P

Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CVSS Score Source: CVE-2025-14180

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 12/17/2025

Reference Information

CVE: CVE-2025-14177, CVE-2025-14178, CVE-2025-14180