[MRE] Please update to latest upstream release 7.0.28 / 7.1.15 / 7.2.3
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php7.0 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Xenial |
Fix Released
|
Wishlist
|
Marc Deslauriers | ||
php7.1 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Artful |
Fix Released
|
Undecided
|
Marc Deslauriers | ||
php7.2 (Ubuntu) |
Fix Released
|
Undecided
|
Nish Aravamudan |
Bug Description
Upstream has put out many more microversions addressing security issues and other bug fixes. Here is a list of the CVEs addressed by those:
PHP 7.0.26 (23 Nov 2017):
* No CVE addressed
PHP 7.0.27 / 7.1.13 (04 Jan 2018):
* https:/
* https:/
* https:/
PHP 7.1.12 (23 Nov 2017):
* No CVE addressed
PHP 7.1.14 (01 Feb 2018):
* No CVE addressed
PHP 7.0.28 / 7.1.15 / 7.2.3 (01 Mar 2018):
* https:/
Changelog: https:/
Changed in php7.0 (Ubuntu): | |
status: | New → Confirmed |
importance: | Undecided → Wishlist |
assignee: | nobody → Nish Aravamudan (nacc) |
status: | Confirmed → Invalid |
Changed in php7.0 (Ubuntu Xenial): | |
status: | New → Confirmed |
importance: | Undecided → Wishlist |
assignee: | nobody → Nish Aravamudan (nacc) |
Changed in php7.0 (Ubuntu): | |
assignee: | Nish Aravamudan (nacc) → nobody |
importance: | Wishlist → Undecided |
Changed in php7.0 (Ubuntu Xenial): | |
status: | Confirmed → In Progress |
summary: |
- [MRE] Please update to latest upstream release 7.0.27 + [MRE] Please update to latest upstream release 7.0.28 |
description: | updated |
summary: |
- [MRE] Please update to latest upstream release 7.0.28 + [MRE] Please update to latest upstream release 7.0.28 / 7.1.15 / 7.2.3 |
description: | updated |
no longer affects: | php7.1 (Ubuntu Xenial) |
no longer affects: | php7.1 (Ubuntu) |
no longer affects: | php7.0 (Ubuntu Artful) |
Changed in php7.1 (Ubuntu): | |
status: | New → Invalid |
Changed in php7.1 (Ubuntu Artful): | |
status: | New → In Progress |
assignee: | nobody → Nish Aravamudan (nacc) |
Changed in php7.2 (Ubuntu): | |
status: | New → In Progress |
assignee: | nobody → Nish Aravamudan (nacc) |
Changed in php7.2 (Ubuntu): | |
status: | In Progress → Fix Committed |
@Marc: php7.0/7.1 is ready to sponsor into xenial-security (and -updates). You should only need to do some changelog mangling to match the security team's format, and a `uscan` to grab the orig tarball from upstream.