[ubuntu/eoan-proposed] php7.2 7.2.19-0ubuntu2 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Wed Aug 14 13:25:16 UTC 2019 

php7.2 (7.2.19-0ubuntu2) eoan; urgency=medium

  * SECURITY UPDATE: Heap-buffer-overflow
    - debian/patches/CVE-2019-11041.patch: check Thumbnail.size in order
      to avoid an overflow in ext/exif.exif.c and adding test to
      ext/exif/tests/bug78222.phpt.
    - CVE-2019-11041
  * SECURITY UPDATE: Heap-buffer-overflow
    - debian/patches/CVE-2019-11042.patch: check ByteCount in order to
      avoid an overflow in ext/exif/exif.c and adding tests to
      ext/exif/tests/bug78256.phpt.
    - CVE-2019-11042

Date: Mon, 12 Aug 2019 15:45:29 -0300
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/+source/php7.2/7.2.19-0ubuntu2
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 12 Aug 2019 15:45:29 -0300
Source: php7.2
Architecture: source
Version: 7.2.19-0ubuntu2
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Leonidas S. Barbosa <leo.barbosa at canonical.com>
Changes:
 php7.2 (7.2.19-0ubuntu2) eoan; urgency=medium
 .
   * SECURITY UPDATE: Heap-buffer-overflow
     - debian/patches/CVE-2019-11041.patch: check Thumbnail.size in order
       to avoid an overflow in ext/exif.exif.c and adding test to
       ext/exif/tests/bug78222.phpt.
     - CVE-2019-11041
   * SECURITY UPDATE: Heap-buffer-overflow
     - debian/patches/CVE-2019-11042.patch: check ByteCount in order to
       avoid an overflow in ext/exif/exif.c and adding tests to
       ext/exif/tests/bug78256.phpt.
     - CVE-2019-11042
Checksums-Sha1:
 ab598006c9f16cc58d74d3c44a9cbbefb8f6cb05 5767 php7.2_7.2.19-0ubuntu2.dsc
 55eba848f2ce4e19ef021e2f80ed856a979ca91a 79684 php7.2_7.2.19-0ubuntu2.debian.tar.xz
 191855fe5dba2184e7fbdab3d0e9084e46304bd4 14211 php7.2_7.2.19-0ubuntu2_source.buildinfo
Checksums-Sha256:
 3788e6577c1295c1031a415b3940f19acb9423c785e67bd2071ce5738e7b6fca 5767 php7.2_7.2.19-0ubuntu2.dsc
 34f070e7817b8dad67693aaf17e926565f1748e6f151c8f750d3a78d5412c43d 79684 php7.2_7.2.19-0ubuntu2.debian.tar.xz
 b70e170cfc467dd3e0b7a12b4170511eb5c24ab5425a361d1f1631506bbd4249 14211 php7.2_7.2.19-0ubuntu2_source.buildinfo
Files:
 b1f194aa4caff98cf941d090abe4e053 5767 php optional php7.2_7.2.19-0ubuntu2.dsc
 ae9eab2859b71e34dfe8f72de96978dd 79684 php optional php7.2_7.2.19-0ubuntu2.debian.tar.xz
 219b134e7252edb82d3b9f1a3a2536c4 14211 php optional php7.2_7.2.19-0ubuntu2_source.buildinfo
Original-Maintainer: Debian PHP Maintainers <team+pkg-php at tracker.debian.org>

-----BEGIN PGP SIGNATURE-----
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=rAui
-----END PGP SIGNATURE-----

More information about the Eoan-changes mailing list