Groups | Search | Server Info | Login | Register
Groups > linux.debian.announce.security > #4824
| Path | csiph.com!news.samoylyk.net!news.corradoroberto.it!bofh.it!news.nic.it!robomod |
|---|---|
| From | Moritz Muehlenhoff <jmm@debian.org> |
| Newsgroups | linux.debian.announce.security |
| Subject | [SECURITY] [DSA 6255-1] php8.2 security update |
| Date | Fri, 08 May 2026 21:00:01 +0200 |
| Message-ID | <MSyAx-3Feb-13@gated-at.bofh.it> (permalink) |
| X-Mailbox-Line | From debian-security-announce-request@lists.debian.org Fri May 8 18:49:28 2026 |
| Old-Return-Path | <jmm@seger.debian.org> |
| X-Amavis-Spam-Status | No, score=-114.391 tagged_above=-10000 required=5.3 tests=[BAYES_00=-2, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FOURLA=0.1, FVGT_m_MULTI_ODD=0.02, LDO_WHITELIST=-5, PGPSIGNATURE=-5, RCVD_IN_DNSWL_MED=-2.3, USER_IN_DKIM_WELCOMELIST=-0.01, USER_IN_DKIM_WHITELIST=-100] autolearn=ham autolearn_force=no |
| Old-Dkim-Signature | v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=Fddvl/vFMiP0KBXGgSr7BbDXZR3+kI4ZtPdKcZgInkI=; b=BC Hkrz+/iBJFd83yuVXRjlKR/P7A1BGVRwlE5OFZuy/FS/BThtFjWde+5cFIhBdwPCSzg8n+iHE/RvP 4QxpLmeuv1kvOPPfRVikOYsBkuWK8rWG9V37O6hJx1EXA3TJGpYkgvvlSgOH6wK2t1y7XD4pxue+d ALuI5Ex9a/MYkMHRX1Ub5+wwtS5wTJ1ot8c07hwCiXllX8zTNgvFg6JNN0y+lscpYEWz2hWQHO2PQ u2nOD7c+xwbC8unOFdztbxCpql6tIHTFvKCx3hCgY+HCoIHR07+tGF4zxVbL8BQ7GNQZvUC8wuAtj 02WSAjMQt1zp4ZoqtSVu6XRZuZsyQprg==; |
| MIME-Version | 1.0 |
| Content-Type | text/plain; charset=us-ascii |
| Content-Disposition | inline |
| X-Debian | PGP check passed for security officers |
| Priority | urgent |
| Reply-To | debian-security-announce-request@lists.debian.org |
| X-Mailing-List | <debian-security-announce@lists.debian.org> archive/latest/5180 |
| List-ID | <debian-security-announce.lists.debian.org> |
| List-URL | <http://lists.debian.org/debian-security-announce/> |
| List-Archive | https://lists.debian.org/msgid-search/af4wH0lbSRIi8j02@seger.debian.org |
| Approved | robomod@news.nic.it |
| Lines | 48 |
| Organization | linux.* mail to news gateway |
| Sender | robomod@news.nic.it |
| X-Original-Date | Fri, 8 May 2026 18:49:03 +0000 |
| X-Original-Message-ID | <af4wH0lbSRIi8j02@seger.debian.org> |
| Xref | csiph.com linux.debian.announce.security:4824 |
Show key headers only | View raw
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- -------------------------------------------------------------------------
Debian Security Advisory DSA-6255-1 security@debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
May 08, 2026 https://www.debian.org/security/faq
- -------------------------------------------------------------------------
Package : php8.2
CVE ID : CVE-2025-14179 CVE-2026-6722 CVE-2026-6735 CVE-2026-7258
CVE-2026-7259 CVE-2026-7261 CVE-2026-7262 CVE-2026-7568
Multiple security issues were found in PHP, a widely-used open source
general purpose scripting language which could result in denial of
service, SQL injection, cross-site scripting or the execution of
arbitrary code.
For the oldstable distribution (bookworm), these problems have been fixed
in version 8.2.31-1~deb12u1.
We recommend that you upgrade your php8.2 packages.
For the detailed security status of php8.2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/php8.2
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/
Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmn+L98ACgkQEMKTtsN8
TjYF2A//e/5LE5LYVRotD+/q/K6Y90opA9t2UWHaBs8n5cYwnyCotCNOxZsZOcSd
04U9CsSxoGry9KMfexDOXQDAcYD3aUFsTG0nyjwDJQO5wuhvOS8w/lX/WrqFK8Ve
WQHH/tvirv8+0Csco2dTfTGzi1fhpI3JGPfpmx8h4OPxrAt94nnX1gKJjkUZlA8v
b6bvAQPeviSrIPetgrU/+cHEF+H+uGR0mDI/PB86LW6eAonJvNMbBKiaGWTuBSfr
lqVOLs1T0bCJ+1Z+kxgKAlaRqtvbgVNPdyEZqiZ6iofvs0ardzyl317rLV4xsdIj
qzL4AhUn2vsvTezOgPtrPmQgBQ11nyO6qMSLfTkDrtCJBJWV/7nSiEP+uWSTW4qE
LIsjAj35MMS/jmoQMj1MJ+fJBceuczMqr5P68/dzbBEBCamnSHbAO20O2V+PzXde
5z+h+/Bmnkf7iT5Xo1G0LadN7F+8wbJizpP9ADra9pO1mxJ/ehRuvDwNL14dzNTV
aHJTlpuffzXpahLOAsryMu3zY9hsWwTzwsii3a89Iuk+T4sJQrNhg136Tnu6jhlu
HHvZ/q6b/vLQmnCumy2DDTfLV7nLGmGpPcS0nSpU+Xh3xFyJnVh7eonkFhDfhC+G
mctTNUMZg4xTjkRpv/xP9Tfi1bJyypSv1aIYeH2M/V5ngKuzQ0A=
=6B1x
-----END PGP SIGNATURE-----
Back to linux.debian.announce.security | Previous | Next | Find similar
[SECURITY] [DSA 6255-1] php8.2 security update Moritz Muehlenhoff <jmm@debian.org> - 2026-05-08 21:00 +0200
csiph-web