Groups | Search | Server Info | Login | Register

Groups > linux.debian.announce.security > #4824

[SECURITY] [DSA 6255-1] php8.2 security update

From Moritz Muehlenhoff <jmm@debian.org>
Newsgroups linux.debian.announce.security
Subject [SECURITY] [DSA 6255-1] php8.2 security update
Date 2026-05-08 21:00 +0200
Message-ID <MSyAx-3Feb-13@gated-at.bofh.it> (permalink)
Organization linux.* mail to news gateway

Show all headers | View raw

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6255-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
May 08, 2026                          https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : php8.2
CVE ID         : CVE-2025-14179 CVE-2026-6722 CVE-2026-6735 CVE-2026-7258 
                 CVE-2026-7259 CVE-2026-7261 CVE-2026-7262 CVE-2026-7568

Multiple security issues were found in PHP, a widely-used open source
general purpose scripting language which could result in denial of
service, SQL injection, cross-site scripting or the execution of
arbitrary code.

For the oldstable distribution (bookworm), these problems have been fixed
in version 8.2.31-1~deb12u1.

We recommend that you upgrade your php8.2 packages.

For the detailed security status of php8.2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/php8.2

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=6B1x
-----END PGP SIGNATURE-----

Back to linux.debian.announce.security | Previous | Next | Find similar

Thread

[SECURITY] [DSA 6255-1] php8.2 security update Moritz Muehlenhoff <jmm@debian.org> - 2026-05-08 21:00 +0200

csiph-web