Ubuntu
php7.2 package

  1. Bug #1980550
  2. Comment #2

Comment 2 for bug 1980550

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package php7.2 - 7.2.24-0ubuntu0.18.04.13

---------------
php7.2 (7.2.24-0ubuntu0.18.04.13) bionic-security; urgency=medium

  * SECURITY REGRESSION: Incomplete fix for CVE-2022-31625 (LP: #1980550)
    - debian/patches/CVE-2022-31625-2.patch: include the fix for not
      freeing parameters which haven't initialized yet in
      ext/pgsql/pgsql.c in other methods.

 -- Rodrigo Figueiredo Zaiden <email address hidden> Wed, 06 Jul 2022 09:23:22 -0300