UbuntuUpdates.org

Package "php7.2"

Name: php7.2

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • HTML-embedded scripting language (Embedded SAPI library)
  • Bcmath module for PHP
  • bzip2 module for PHP
  • DBA module for PHP

Latest version: 7.2.24-0ubuntu0.18.04.1
Release: bionic (18.04)
Level: updates
Repository: universe

Links

Save this URL for the latest version of "php7.2": https://www.ubuntuupdates.org/php7.2



Other versions of "php7.2" in Bionic

Repository Area Version
base universe 7.2.3-1ubuntu1
security universe 7.2.24-0ubuntu0.18.04.1
security main 7.2.24-0ubuntu0.18.04.1
updates main 7.2.24-0ubuntu0.18.04.1

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 7.2.15-0ubuntu0.18.04.1 2019-02-12 19:07:33 UTC

  php7.2 (7.2.15-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Update to 7.2.15 to fix security issues
    - CVE-2018-19935
    - CVE-2018-19518

 -- Mike Salvatore <email address hidden> Fri, 08 Feb 2019 09:54:22 -0500

Source diff to previous version
CVE-2018-19935 ext/imap/php_imap.c in PHP 5.x and 7.x before 7.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application cr
CVE-2018-19518 University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_

Version: 7.2.10-0ubuntu0.18.04.1 2018-09-18 09:07:11 UTC

  php7.2 (7.2.10-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Update to 7.2.10 to fix security issues
    - CVE-2015-9253
    - CVE-2018-14851
    - CVE-2018-14883

 -- Marc Deslauriers <email address hidden> Thu, 13 Sep 2018 09:45:02 -0400

Source diff to previous version
CVE-2015-9253 An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20. The php-fpm master process restarts a child process i
CVE-2018-14851 exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote
CVE-2018-14883 An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-b

Version: 7.2.7-0ubuntu0.18.04.2 2018-07-05 14:07:30 UTC

  php7.2 (7.2.7-0ubuntu0.18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: 7.2.7 did not actually include the fix for the
    CVE-2018-12882 exif security issue. This release adds backported
    patches to fix the issue.
    - debian/patches/CVE-2018-12882-1.patch: fix heap use after free in
      _php_stream_free in ext/exif/exif.c, ext/exif/tests/bug76409.phpt.
    - debian/patches/CVE-2018-12882-2.patch: fix test portability in
      ext/exif/tests/bug76409.phpt.
    - CVE-2018-12882

 -- Marc Deslauriers <email address hidden> Wed, 04 Jul 2018 12:55:24 -0400

Source diff to previous version
CVE-2018-12882 exif_read_from_impl in ext/exif/exif.c in PHP 7.2.x through 7.2.7 allows attackers to trigger a use-after-free (in exif_read_from_file) because it cl

Version: 7.2.7-0ubuntu0.18.04.1 2018-07-04 17:07:19 UTC

  php7.2 (7.2.7-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Update to 7.2.7 to fix security issue
    - CVE-2018-12882

 -- Marc Deslauriers <email address hidden> Tue, 03 Jul 2018 11:16:52 -0400

Source diff to previous version
CVE-2018-12882 exif_read_from_impl in ext/exif/exif.c in PHP 7.2.x through 7.2.7 allows attackers to trigger a use-after-free (in exif_read_from_file) because it cl

Version: 7.2.5-0ubuntu0.18.04.1 2018-05-14 17:07:08 UTC

  php7.2 (7.2.5-0ubuntu0.18.04.1) bionic-security; urgency=medium

  * SECURITY UPDATE: Update to 7.2.5 to fix security issues
    - CVE-2018-10545, CVE-2018-10546, CVE-2018-10547, CVE-2018-10548,
      CVE-2018-10549
  * d/p/0036-php-5.4.9-fixheader.patch: updated for new version.

 -- Marc Deslauriers <email address hidden> Wed, 09 May 2018 13:21:02 -0400

CVE-2018-10545 An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow by
CVE-2018-10546 An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. An infinite loop exists in ext/iconv/
CVE-2018-10547 An issue was discovered in ext/phar/phar_object.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Re
CVE-2018-10548 An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP se
CVE-2018-10549 An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has



About   -   Send Feedback to @ubuntu_updates