From b006d9dfc73ec87452ddbd10033755ad1170bade Mon Sep 17 00:00:00 2001
From: CBL-Mariner-Bot <75509084+CBL-Mariner-Bot@users.noreply.github.com>
Date: Mon, 29 Dec 2025 08:58:43 -0800
Subject: [PATCH] [AUTOPATCHER-CORE] Upgrade `php` to 8.1.34 for
 CVE-2025-14177, CVE-2025-14178, CVE-2025-14180 [HIGH} (#15406)

Co-authored-by: jslobodzian <joslobo@microsoft.com>
(cherry picked from commit 6841575553cee9bcba7a1274713da1eb444363d1)
---
 SPECS/php/php.signatures.json | 36 +++++++++++++++++------------------
 SPECS/php/php.spec            |  5 ++++-
 cgmanifest.json               |  4 ++--
 3 files changed, 24 insertions(+), 21 deletions(-)

diff --git a/SPECS/php/php.signatures.json b/SPECS/php/php.signatures.json
index 3ec59463360..dbc8fc296c8 100644
--- a/SPECS/php/php.signatures.json
+++ b/SPECS/php/php.signatures.json
@@ -1,19 +1,19 @@
 {
- "Signatures": {
-  "10-opcache.ini": "6065beb2ace54d6cb5a8cde751330ea358bd23692073c6e3d2c57f7c97bec869",
-  "20-ffi.ini": "f5e968fdd3eca54f3dab2399e243931cf16cd9da034f0364800aefab222271c0",
-  "macros.php": "917104496e8239e1ed1d4812871be772a5fa8b38cf80c4c59ec3e0c36d48310e",
-  "nginx-fpm.conf": "5a222ab2c3fc0145cb67a1c5125471bbf097de304e77c9858e7077a3b4fcad59",
-  "nginx-php.conf": "b3b3f744c4c122302fcb11f39cac78d01cef15ee6f8bd67e98b3438efcf8dc95",
-  "opcache-default.blacklist": "4eef0875e1a0c6a75b8a2bafd4ddc029b83be74dd336a6a99214b0c32808cb38",
-  "php-8.1.33.tar.xz": "9db83bf4590375562bc1a10b353cccbcf9fcfc56c58b7c8fb814e6865bb928d1",
-  "php-fpm-www.conf": "1cacdd4962c01a0a968933c38db503023940ad9105f021bdab85d6cdc46dcbb8",
-  "php-fpm.conf": "bb261d53b9b42bb163a7637bb373ffa18a20dddf27a3efe6cb5ed1b1cf5981a9",
-  "php-fpm.logrotate": "7d8279bebb9ffabc596a2699150e93d4ce4513245890b9b786d337288b19fa79",
-  "php-fpm.service": "574f50dec5a0edd60e60e44e7cc2d03575bc728bdc0b0cab021ce3c55abc0117",
-  "php-fpm.wants": "846297e91ba02bd0e29b6635eeddcca01a7ad4faf5a8f27113543804331d0328",
-  "php.conf": "e2388be032eccf7c0197d597ba72259a095bf8434438a184e6a640edb4b59de2",
-  "php.ini": "8fd5a4d891c19320c07010fbbbac982c886b422bc8d062acaeae49d70c136fc8",
-  "php.modconf": "dc7303ea584452d2f742d002a648abe74905025aabf240259c7e8bd01746d278"
- }
-}
\ No newline at end of file
+  "Signatures": {
+    "10-opcache.ini": "6065beb2ace54d6cb5a8cde751330ea358bd23692073c6e3d2c57f7c97bec869",
+    "20-ffi.ini": "f5e968fdd3eca54f3dab2399e243931cf16cd9da034f0364800aefab222271c0",
+    "macros.php": "917104496e8239e1ed1d4812871be772a5fa8b38cf80c4c59ec3e0c36d48310e",
+    "nginx-fpm.conf": "5a222ab2c3fc0145cb67a1c5125471bbf097de304e77c9858e7077a3b4fcad59",
+    "nginx-php.conf": "b3b3f744c4c122302fcb11f39cac78d01cef15ee6f8bd67e98b3438efcf8dc95",
+    "opcache-default.blacklist": "4eef0875e1a0c6a75b8a2bafd4ddc029b83be74dd336a6a99214b0c32808cb38",
+    "php-fpm-www.conf": "1cacdd4962c01a0a968933c38db503023940ad9105f021bdab85d6cdc46dcbb8",
+    "php-fpm.conf": "bb261d53b9b42bb163a7637bb373ffa18a20dddf27a3efe6cb5ed1b1cf5981a9",
+    "php-fpm.logrotate": "7d8279bebb9ffabc596a2699150e93d4ce4513245890b9b786d337288b19fa79",
+    "php-fpm.service": "574f50dec5a0edd60e60e44e7cc2d03575bc728bdc0b0cab021ce3c55abc0117",
+    "php-fpm.wants": "846297e91ba02bd0e29b6635eeddcca01a7ad4faf5a8f27113543804331d0328",
+    "php.conf": "e2388be032eccf7c0197d597ba72259a095bf8434438a184e6a640edb4b59de2",
+    "php.ini": "8fd5a4d891c19320c07010fbbbac982c886b422bc8d062acaeae49d70c136fc8",
+    "php.modconf": "dc7303ea584452d2f742d002a648abe74905025aabf240259c7e8bd01746d278",
+    "php-8.1.34.tar.xz": "ffa9e0982e82eeaea848f57687b425ed173aa278fe563001310ae2638db5c251"
+  }
+}
diff --git a/SPECS/php/php.spec b/SPECS/php/php.spec
index 519d7d20640..6e149f4b808 100644
--- a/SPECS/php/php.spec
+++ b/SPECS/php/php.spec
@@ -32,7 +32,7 @@
 %global with_qdbm     0
 Summary:        PHP scripting language for creating dynamic web sites
 Name:           php
-Version:        8.1.33
+Version:        8.1.34
 Release:        1%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
@@ -1516,6 +1516,9 @@ systemctl try-restart php-fpm.service >/dev/null 2>&1 || :
 %dir %{_datadir}/php/preload
 
 %changelog
+* Sun Dec 28 2025 CBL-Mariner Servicing Account <cblmargh@microsoft.com> - 8.1.34-1
+- Auto-upgrade to 8.1.34 - for CVE-2025-14177, CVE-2025-14178, CVE-2025-14180
+
 * Mon Jul 14 2025 Aninda Pradhan <v-anipradhan@microsoft.com> - 8.1.33-1
 - Upgrade to 8.1.33 - for CVE-2025-1735, CVE-2025-6491, CVE-2025-1220
 
diff --git a/cgmanifest.json b/cgmanifest.json
index 2b2c91d61e2..d856f1a0d49 100644
--- a/cgmanifest.json
+++ b/cgmanifest.json
@@ -21074,8 +21074,8 @@
         "type": "other",
         "other": {
           "name": "php",
-          "version": "8.1.33",
-          "downloadUrl": "https://www.php.net/distributions/php-8.1.33.tar.xz"
+          "version": "8.1.34",
+          "downloadUrl": "https://www.php.net/distributions/php-8.1.34.tar.xz"
         }
       }
     },