CVE-2024-2408

The openssl_private_decrypt function in PHP, when using PKCS1 padding (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the Marvin Attack unless it is used with an OpenSSL version that includes the changes from this pull request:  https://github.com/openssl/openssl/pull/13817  (rsa_pkcs1_implicit_rejection). These changes are part of OpenSSL 3.2 and have also been backported to stable versions of various Linux distributions, as well as to the PHP builds provided for Windows since the previous release. All distributors and builders should ensure that this version is used to prevent PHP from being vulnerable.

PHP Windows builds for the versions8.1.29,8.2.20 and8.3.8 and above include OpenSSL patches that fix the vulnerability.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
phpCNA
---
---
CISA-ADPADP
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
VendorProductVersion
phpphp
8.1.29 <
𝑥
< 8.1.29
phpphp
8.2.20 <
𝑥
< 8.2.20
phpphp
8.3.8 <
𝑥
< 8.3.8
phpphp
8.1.0 ≤
𝑥
< 8.1.29
phpphp
8.2.0 ≤
𝑥
< 8.2.20
phpphp
8.3.0 ≤
𝑥
< 8.3.8
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
php7.4
bullseye
postponed
bookworm
ignored
buster
postponed
bullseye (security)
vulnerable
php8.2
bookworm
8.2.28-1~deb12u1
fixed
bookworm (security)
8.2.28-1~deb12u1
fixed
bullseye
postponed
buster
postponed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
php5
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
trusty
needs-triage
php7.0
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
xenial
not-affected
php7.2
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
bionic
not-affected
php7.4
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
not-affected
php8.1
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
not-affected
focal
dne
php8.2
plucky
dne
oracular
dne
noble
dne
mantic
not-affected
jammy
dne
focal
dne
php8.3
plucky
dne
oracular
not-affected
noble
not-affected
mantic
dne
jammy
dne
focal
dne
Common Weakness Enumeration
References
https://github.com/php/php-src/security/advisories/GHSA-hh26-4ppw-5864
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/
https://github.com/php/php-src/security/advisories/GHSA-hh26-4ppw-5864
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/
https://security.netapp.com/advisory/ntap-20250321-0008/