[Git][security-tracker-team/security-tracker][master] PHP DSAs
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jun 13 20:52:38 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1775d0eb by Moritz Mühlenhoff at 2023-06-13T21:52:05+02:00
PHP DSAs
- - - - -
3 changed files:
- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -22188,7 +22188,9 @@ CVE-2023-25140 (A vulnerability has been identified in Parasolid V34.0 (All vers
NOT-FOR-US: Siemens
CVE-2023-XXXX [GHSA-76gg-c692-v2mw: Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP]
- php8.2 8.2.7-1
+ [bookworm] - php8.2 8.2.7-1~deb12u1
- php7.4 <removed>
+ [bullseye] - php7.4 7.4.33-1+deb11u4
NOTE: Fixed in 8.2.7, 8.1.20, 8.0.29
NOTE: https://github.com/php/php-src/security/advisories/GHSA-76gg-c692-v2mw
NOTE: https://github.com/php/php-src/commit/ac4254ad764c70cb1f05c9270d8d12689fc3aeb6 (php-8.0.29)
=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[13 Jun 2023] DSA-5425-1 php8.2 - security update
+ [bookworm] - php8.2 8.2.7-1~deb12u1
+[13 Jun 2023] DSA-5424-1 php7.4 - security update
+ [bullseye] - php7.4 7.4.33-1+deb11u4
[11 Jun 2023] DSA-5423-1 thunderbird - security update
{CVE-2023-34414 CVE-2023-34416}
[bullseye] - thunderbird 1:102.12.0-1~deb11u1
=====================================
data/dsa-needed.txt
=====================================
@@ -37,10 +37,6 @@ openjdk-17 (jmm)
--
owslib/oldstable (aron)
--
-php7.4/oldstable (jmm)
---
-php8.2/stable (jmm)
---
php-cas/oldstable
--
php-horde-mime-viewer/oldstable
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1775d0eb06355f075bf1cc2a8e263c21b39084ad
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1775d0eb06355f075bf1cc2a8e263c21b39084ad
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230613/8f1985e5/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list