it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
- From: Moritz Muehlenhoff <jmm AT debian.org>
- To: debian-security-announce AT lists.debian.org
- Subject: [IT-SecNots] [SECURITY] [DSA 5819-1] php8.2 security update
- Date: Tue, 26 Nov 2024 20:06:50 +0000
- Authentication-results: lists.piratenpartei.de; dkim=none; spf=none (lists.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
- List-archive: https://lists.debian.org/msgid-search/Z0YqWkGOY1od2Emi AT seger.debian.org
- List-id: <debian-security-announce.lists.debian.org>
- List-url: <http://lists.debian.org/debian-security-announce/>
- Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=EMMASdlF0OZY8BpAkeoNwkPD7KD8X6cJTalvnfRjrpY=; b=Hk sQFd6Rby9mVFFeDmQFNToBpqQdTQSBYVAfn8S4pWAeF9VEbjezEj9FUI+/lZ/hsqm2mITyI0b/vai QOpe21JLrgoyN4tnFm1Hl/HZ2no7uMeClAZ0frug1WqODZ/Pv5LM/yNwJLPmFb7MNQuf/xvoWwaq2 0vryDb16o5sxgOelViGNda01yBAHhsQDGMfojNVeKjIZOjwvGRRQkLkCcONZCjYelOAUlKL8Q1LDm 03NQ0FNnMxaSTC7Oz6g1J9xZ4Gt0nzBkXLPHqXpaobqfzQaG5iiJwkBF3K2H1I4apPTbdNqrscH5x FbRuo0+Ec64ZybDUlFpCqaBuF8eHsbrQ==;
- Old-return-path: <jmm AT seger.debian.org>
- Priority: urgent
- Resent-date: Tue, 26 Nov 2024 20:07:18 +0000 (UTC)
- Resent-from: debian-security-announce AT lists.debian.org
- Resent-message-id: <klQk0m6cI6B.A.7e5L.2piRnB@bendel>
- Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-5819-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
November 26, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : php8.2
CVE ID : CVE-2024-8929 CVE-2024-8932 CVE-2024-11233 CVE-2024-11234
CVE-2024-11236
Multiple security issues were found in PHP, a widely-used open source
general purpose scripting language which could result in denial of
service, CLRF injection or information disclosure.
For the stable distribution (bookworm), these problems have been fixed in
version 8.2.26-1~deb12u1.
We recommend that you upgrade your php8.2 packages.
For the detailed security status of php8.2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/php8.2
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----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=L3u9
-----END PGP SIGNATURE-----
- [IT-SecNots] [SECURITY] [DSA 5819-1] php8.2 security update, Moritz Muehlenhoff, 26.11.2024
Archiv bereitgestellt durch MHonArc 2.6.19+.