PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12 are vulnerable to privilege escalation vulnerability. The vulnerability allows the root FPM process to read/write at arbitrary locations using pointers located in the SHM (Shared memory), leading to a privilege escalation from www-data to root. Vulnerability applies only to PHP-FPM.
Hello,
PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12 are vulnerable to privilege escalation vulnerability. The vulnerability allows the root FPM process to read/write at arbitrary locations using pointers located in the SHM (Shared memory), leading to a privilege escalation from www-data to root. Vulnerability applies only to PHP-FPM.
See here: https://bugs.php.net/bug.php?id=81026
It would be nice if the updated and patched versions could be included.