[ubuntu/bionic-security] php7.2 7.2.24-0ubuntu0.18.04.3 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Mon Feb 17 18:25:35 UTC 2020


php7.2 (7.2.24-0ubuntu0.18.04.3) bionic-security; urgency=medium

  * SECURITY UPDATE: Out of bounds read
    - debian/patches/CVE-2020-7059.patch: fix OOB read in
      php_strip_tags_ex in ext/standard/string.c and added test
      ext/standard/tests/file/bug79099.phpt.
    - CVE-2020-7059
  * SECURITY UPDATE: Buffer-overflow
    - debian/patches/CVE-2020-7060.patch: fix adding a check function
      is_in_cp950_pua in  ext/mbstring/libmbfl/filters/mbfilter_big5.c
      and added test ext/mbstring/tests/bug79037.phpt.
    - CVE-2020-7060

Date: 2020-02-12 14:00:22.288686+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/php7.2/7.2.24-0ubuntu0.18.04.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list