-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4403-1 security@xxxxxxxxxx https://www.debian.org/security/ Moritz Muehlenhoff March 08, 2019 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : php7.0 CVE ID : not yet available Multiple security issues were found in PHP, a widely-used open source general purpose scripting language: The EXIF extension had multiple cases of invalid memory access and rename() was implemented insecurely. For the stable distribution (stretch), this problem has been fixed in version 7.0.33-0+deb9u3. We recommend that you upgrade your php7.0 packages. For the detailed security status of php7.0 please refer to its security tracker page at: https://security-tracker.debian.org/tracker/php7.0 Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAlyC5q0ACgkQEMKTtsN8 TjY/ABAAqiDqUfakeYu7fxMfxToDv8A38zmwWZ0qYfggneQZqT0vAnixznt9xaeh PiGsAzTnsoO4NvYJSE6prH0npbqxskq3Pk/tg8SAcyPWrqoVvkG7H6S3n4thMldk N3fCe26XO8YxP0O5FmgqfyWYL+spHQ7hJnxtiQkA3VhYWgUoVcDFUEHEouoqRag+ ID9CegiWp19Pf3CL0k8+wD+RJ8vObocb9FFSm1QQ7ZP2vN2V2c+pUQdjpa94g9xj M7UhlfsiURg/68noWO/JsDXOFyR9DGO/rg8KVdDm2yoJdDwWbak4jJ1nCzAodE8x pV1gF6hjMmuzbw7dHSuSjExaFloYfVnZbhy5wLEwfEFxGgZ8kthfRmPrWTmu2q4v 11q6HZOlGg2uSCwAPAeo0nWKI5fVbZBjJOtmLCSpqwVfAAePdof7n1l8t66NA8gy gCfcXjpGM7wcXy8Sd0uOMxjfUMymWCvErvYSDPeoyk0KSskLdPruTBMx4d5NNoha Mq4dtz4dSY/IQKI7PQa38k1kcKE3wzCb8P9DYJZPUbUaeGfN2D+tWRGo6rFs/tFN 3XhtvK2I65pdW7qFYCyMZ+bPU5dIwcQZIPBWGx4vnRimZojxH22lo+Dv02I+VSm7 gLWE0FKZFyhR/kVxYTS162oxjQ1tjpLxsXW9M5VuW80mY3cw60s= =psmL -----END PGP SIGNATURE-----