[Qa-jenkins-scm] apt-listchanges: changelogs for ionos7-amd64
Holger Levsen
holger at layer-acht.org
Tue Oct 26 09:02:18 BST 2021
On Tue, Oct 26, 2021 at 07:43:27AM +0000, root wrote:
> php7.4 (7.4.25-1+deb11u1) bullseye-security; urgency=high
>
> * New upstream version 7.4.25
> + CVE-2021-21706: ZipArchive::extractTo extracts outside of destination
> + CVE-2021-21703: PHP-FPM oob R/W in root process leading to privilege
> escalation
>
> -- Ondřej Surý <ondrej at debian.org> Sat, 23 Oct 2021 23:53:50 +0200
holger at ionos7-amd64:~ $ dpkg -l|grep php
ii php-common 2:76 all Common files for PHP packages
ii php-sqlite3 2:7.4+76 all SQLite3 module for PHP [default]
ii php7.4-common 7.4.25-1+deb11u1 amd64 documentation, examples and common module for PHP
ii php7.4-sqlite3 7.4.25-1+deb11u1 amd64 SQLite3 module for PHP
holger at ionos7-amd64:~ $ sudo apt remove php-common
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
The following packages will be REMOVED:
php-common php-sqlite3 php7.4-common php7.4-sqlite3
0 upgraded, 0 newly installed, 4 to remove and 0 not upgraded.
After this operation, 7,782 kB disk space will be freed.
Do you want to continue? [Y/n]
(Reading database ... 84115 files and directories currently installed.)
Removing php-sqlite3 (2:7.4+76) ...
Removing php7.4-sqlite3 (7.4.25-1+deb11u1) ...
Removing php7.4-common (7.4.25-1+deb11u1) ...
Removing php-common (2:76) ...
Warning: Stopping phpsessionclean.service, but it can still be activated by:
phpsessionclean.timer
[master 6081bf2] committing changes in /etc made by "apt remove php-common"
Author: holger <holger at ionos7-amd64.debian.net>
1 file changed, 1 insertion(+)
create mode 120000 systemd/system/phpsessionclean.timer
holger at ionos7-amd64:~ 6s $
--
cheers,
Holger
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄
Der Mensch is' gut, aber die Leut' san a G'sindel!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/qa-jenkins-scm/attachments/20211026/256cb78f/attachment.sig>
More information about the Qa-jenkins-scm
mailing list