[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1803-1] php5 security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : php5
Version        : 5.6.40+dfsg-0+deb8u3
CVE ID         : CVE-2019-11034 CVE-2019-11035 CVE-2019-11036


A read past allocated buffer vulnerability and two heap-buffer overflow vulnerabilites were discovered in the PHP5 programming language within the Exif image module.


For Debian 8 "Jessie", these problems have been fixed in version
5.6.40+dfsg-0+deb8u3.

We recommend that you upgrade your php5 packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=TK/O
-----END PGP SIGNATURE-----


Reply to: