I'm not sure how this came about. I just did a quick apt-file check on the package versions in question (7.0.4-7ubuntu2 and 7.0.4-7ubuntu2.1) and don't see any reason for the security update to think it owns /etc/php/7.0/cli/php.ini.
Also, I spun up a lxc container of 16.04 and forcibly installed 7.0.4-7ubuntu2. Then I upgraded off security to the latest and had no errors.
Did you happen to change the default configuration in some way?
Thank you for filing this bug report!
I'm not sure how this came about. I just did a quick apt-file check on the package versions in question (7.0.4-7ubuntu2 and 7.0.4-7ubuntu2.1) and don't see any reason for the security update to think it owns /etc/php/ 7.0/cli/ php.ini.
Also, I spun up a lxc container of 16.04 and forcibly installed 7.0.4-7ubuntu2. Then I upgraded off security to the latest and had no errors.
Did you happen to change the default configuration in some way?