[ubuntu/plucky-proposed] php8.4 8.4.5-1 (Accepted)
Simon Quigley
tsimonq2 at ubuntu.com
Sat Mar 15 00:07:58 UTC 2025
php8.4 (8.4.5-1) unstable; urgency=medium
* New upstream version 8.4.5
- [CVE-2024-11235]: Reference counting in php_request_shutdown
causes Use-After-Free.
- [CVE-2025-1219]: libxml streams use wrong `content-type` header
when requesting a redirected resource.
- [CVE-2025-1736]: Stream HTTP wrapper header check might omit
basic auth header.
- [CVE-2025-1861]: Stream HTTP wrapper truncate redirect location
to 1024 bytes.
- [CVE-2025-1734]: Streams HTTP wrapper does not fail for headers
without colon.
- [CVE-2025-1217]: Header parser of `http` stream wrapper does not
handle folded headers.
Date: 2025-03-14 04:39:00.290406+00:00
Signed-By: Simon Quigley <tsimonq2 at ubuntu.com>
https://launchpad.net/ubuntu/+source/php8.4/8.4.5-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the plucky-changes
mailing list