Ubuntu
php7.1 package

Please update to latest upstream release 7.1.10

Bug #1724902 reported by Nish Aravamudan
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
php7.1 (Ubuntu)
Fix Released
Undecided
Nish Aravamudan
Bionic
Fix Released
Undecided
Nish Aravamudan

Bug Description

There have been a number of microreleases of PHP 7.1 upstream since the last update to Artful. As
it has been a few months, it feels appropriate to provide a MRE update to php7.1. A number of critical security and bug-fixes are present in each 7.1.x. Rather than backporting individual patches, I believe it makes significantly more sense to follow the upstream 7.1.x. Upstream PHP is demonstrating an improved approach of bugfixes only in 7.1.x:

 - 7.1.10: http://php.net/ChangeLog-7.php

The upstream CI is at: https://travis-ci.org/php/php-src and is run regularly.

Our php7.1 source package has autopkgtests for the 4 SAPIs, mod-php, cgi, fpm and cli. We have also updated the packaging to run the source tests during the build itself.

I do not believe there is a firm statement from upstream on API/ABI stability, but the general approach seems to be a BC-break would result in 7.2.0.

We already had an MRE for php7.0 in X and Y, and this is the corresponding source package in AA.

See original description

CVE References

Nish Aravamudan (nacc)
description: updated
Nish Aravamudan (nacc)
Changed in php7.1 (Ubuntu Artful):
assignee: nobody → Nish Aravamudan (nacc)
status: New → In Progress
Revision history for this message
Nish Aravamudan (nacc) wrote :

I will probably SRU this ahead of BB opening, which will imply we'll need a copy-forward for BB.

Nish Aravamudan (nacc)
description: updated
Revision history for this message
Nish Aravamudan (nacc) wrote :

I asked Steve Langasek to reject the unapproved upload of php7.1 so that I can do a proper SRU version, now that Bionic is open.

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package php7.1 - 7.1.10-0ubuntu1

---------------
php7.1 (7.1.10-0ubuntu1) bionic; urgency=medium

  * New upstream release (7.1.0)
    - LP: #1724902

 -- Nishanth Aravamudan <email address hidden> Fri, 27 Oct 2017 14:17:28 -0700

Changed in php7.1 (Ubuntu Bionic):
status: In Progress → Fix Released
Revision history for this message
Andy Postnikov (apostnikov) wrote :

next 7.1.11 is security release

Revision history for this message
Nish Aravamudan (nacc) wrote :

Thanks for letting me know. I'll do an update to 7.1.11 shortly for bionic and then work with the security team to replace the update in artful.

Revision history for this message
Nish Aravamudan (nacc) wrote :

Are you referring to:

PCRE:
Fixed bug #75207 (applied upstream patch for CVE-2016-1283).

?

Nish Aravamudan (nacc)
no longer affects: php7.1 (Ubuntu Artful)
summary: - [MRE] Please update to latest upstream release 7.1.10
+ Please update to latest upstream release 7.1.10
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.