[ubuntu/impish-security] php8.0 8.0.8-1ubuntu0.2 (Accepted)

Rodrigo Figueiredo Zaiden rodrigo.zaiden at canonical.com
Mon Feb 28 12:18:06 UTC 2022

php8.0 (8.0.8-1ubuntu0.2) impish-security; urgency=medium

  * SECURITY UPDATE: Use after free
    - debian/patches/CVE-2021-21708.patch: change the call to
      zval_ptr_dtor in ext/filter/logical_filters.c to be done
      after a validation is succeeded, and add a test for this
      case in ext/filter/tests/bug81708.phpt
    - CVE-2021-21708

Date: 2022-02-24 18:38:09.950151+00:00
Changed-By: Rodrigo Figueiredo Zaiden <rodrigo.zaiden at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the impish-changes mailing list