Ubuntu
php7.0 package

  1. Bug #1721607
  2. Comment #1

Comment 1 for bug 1721607

Revision history for this message
Tyler Hicks (tyhicks) wrote :

Hello and thanks for the bug report!

We typically backport individual security fixes rather than bringing in new upstream releases. See this FAQ entry for more information:

  https://wiki.ubuntu.com/SecurityTeam/FAQ#Versions

Can you give a list of CVEs that were fixed by the PHP 7.0.22 and/or 7.0.24 releases? It isn't clear to me from the changelogs:

  http://www.php.net/ChangeLog-7.php#7.0.22
  http://www.php.net/ChangeLog-7.php#7.0.24

Please update the bug status to "NEW" if you're able to list CVEs that were fixed.