[MRE] Please update to latest upstream release 7.2.17 & 7.3.4

Bug #1823386 reported by Simon Déziel on 2019-04-05
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
php7.2 (Ubuntu)
Medium
Marc Deslauriers
Bionic
Medium
Marc Deslauriers
Cosmic
Medium
Marc Deslauriers
Disco
Medium
Marc Deslauriers

Bug Description

Upstream has released microversions addressing security issues (pending CVE attribution) and other bug fixes.

PHP 7.2.16 / 7.3.3 (07 Mar 2019):

* The CVEs addressed were backported by the security team already

PHP 7.2.17 / 7.3.4 (04 Apr 2019):

* https://bugs.php.net/bug.php?id=77753 / https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11034
* https://bugs.php.net/bug.php?id=77831 / https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11035
Changelog: https://secure.php.net/ChangeLog-7.php

CVE References

Simon Déziel (sdeziel) on 2019-04-05
information type: Private Security → Public Security

@security (now subscribed) are you on that already?

Simon Déziel (sdeziel) on 2019-04-17
description: updated
Marc Deslauriers (mdeslaur) wrote :

CVE-2019-11034
CVE-2019-11035

Changed in php7.2 (Ubuntu Bionic):
assignee: nobody → Marc Deslauriers (mdeslaur)
Changed in php7.2 (Ubuntu Cosmic):
assignee: nobody → Marc Deslauriers (mdeslaur)
Changed in php7.2 (Ubuntu Disco):
assignee: nobody → Marc Deslauriers (mdeslaur)
Changed in php7.2 (Ubuntu Bionic):
status: New → Confirmed
Changed in php7.2 (Ubuntu Cosmic):
status: New → Confirmed
Changed in php7.2 (Ubuntu Disco):
status: New → Confirmed
Changed in php7.2 (Ubuntu Bionic):
importance: Undecided → Medium
Changed in php7.2 (Ubuntu Cosmic):
importance: Undecided → Medium
Changed in php7.2 (Ubuntu Disco):
importance: Undecided → Medium
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Other bug subscribers