[Qa-jenkins-scm] apt-listchanges: changelogs for ionos7-amd64

Holger Levsen holger at layer-acht.org
Tue Oct 26 09:02:18 BST 2021 

On Tue, Oct 26, 2021 at 07:43:27AM +0000, root wrote:
> php7.4 (7.4.25-1+deb11u1) bullseye-security; urgency=high
> 
>   * New upstream version 7.4.25
>    + CVE-2021-21706: ZipArchive::extractTo extracts outside of destination
>    + CVE-2021-21703: PHP-FPM oob R/W in root process leading to privilege
>      escalation
> 
>  -- Ondřej Surý <ondrej at debian.org>  Sat, 23 Oct 2021 23:53:50 +0200
 
holger at ionos7-amd64:~ $ dpkg -l|grep php
ii  php-common                           2:76                                   all          Common files for PHP packages
ii  php-sqlite3                          2:7.4+76                               all          SQLite3 module for PHP [default]
ii  php7.4-common                        7.4.25-1+deb11u1                       amd64        documentation, examples and common module for PHP
ii  php7.4-sqlite3                       7.4.25-1+deb11u1                       amd64        SQLite3 module for PHP
holger at ionos7-amd64:~ $ sudo apt remove php-common
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
The following packages will be REMOVED:
  php-common php-sqlite3 php7.4-common php7.4-sqlite3
0 upgraded, 0 newly installed, 4 to remove and 0 not upgraded.
After this operation, 7,782 kB disk space will be freed.
Do you want to continue? [Y/n] 
(Reading database ... 84115 files and directories currently installed.)
Removing php-sqlite3 (2:7.4+76) ...
Removing php7.4-sqlite3 (7.4.25-1+deb11u1) ...
Removing php7.4-common (7.4.25-1+deb11u1) ...
Removing php-common (2:76) ...
Warning: Stopping phpsessionclean.service, but it can still be activated by:
  phpsessionclean.timer
[master 6081bf2] committing changes in /etc made by "apt remove php-common"
 Author: holger <holger at ionos7-amd64.debian.net>
 1 file changed, 1 insertion(+)
 create mode 120000 systemd/system/phpsessionclean.timer
holger at ionos7-amd64:~ 6s $ 


-- 
cheers,
	Holger

 ⢀⣴⠾⠻⢶⣦⠀
 ⣾⠁⢠⠒⠀⣿⡁  holger@(debian|reproducible-builds|layer-acht).org
 ⢿⡄⠘⠷⠚⠋⠀  OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
 ⠈⠳⣄

Der Mensch is' gut, aber die Leut' san a G'sindel!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/qa-jenkins-scm/attachments/20211026/256cb78f/attachment.sig>

More information about the Qa-jenkins-scm mailing list