-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Package : php5 Version : 5.6.40+dfsg-0+deb8u3 CVE ID : CVE-2019-11034 CVE-2019-11035 CVE-2019-11036
A read past allocated buffer vulnerability and two heap-buffer overflow vulnerabilites were discovered in the PHP5 programming language within the Exif image module.
For Debian 8 "Jessie", these problems have been fixed in version 5.6.40+dfsg-0+deb8u3. We recommend that you upgrade your php5 packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQKTBAEBCgB9FiEEYgH7/9u94Hgi6ruWlvysDTh7WEcFAlzpHq1fFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDYy MDFGQkZGREJCREUwNzgyMkVBQkI5Njk2RkNBQzBEMzg3QjU4NDcACgkQlvysDTh7 WEfBshAAi95HZr0ifFKvR3ouDzk9J8rcFr1U9iIkrF1AQ73Psk7MQz6GU8/TFMoh xipEoR62EnYKSjqUPZbVWGrlmlVYFKfYy69g5sntJEZJUYEgdiIHZwksdM+vKPdB EAwg+sBdL0V/9Wz6RdiDZPLZRWTn+Zv2cuj25RNeQtcq514x7d249ToQos2jqqYV RyW8PzrVcBHlObAElPPQtkyPkyNWDTMiIX2+IRKiQCj/B3fLIEX5Er0ZfC/sKICL 599Y1d2/J8+409y+Xc82gMXXi313Jw1K3DzjBdYO9ypYCa2pCeKBLDXDHFmxU88y NTzkFRHTiCWNfq1PM8kh+IPmLc4Q4ltJkp7Nh2gvcVHkZWfqPktr8g216lQlLPrv H2Lsafz0SuXHmaHXle7SFmLhHa5F4byedwnfis5gKgwaq3APaiDeUUbotP1aXPQB hQG2jJZIMxid9w17ASIt0EFBDj8FkKf1L5e8wD5P3NIorcKoBNbUd+BaMrV+iM4o 5ECinWanz0xqcBd/jzZkJ6OlptKOD2Dq3MIMYa14t5cVCk6wq5KzPyF88tOD33dN Ozrs9jfVh02LXkfNvuOMArjwptBD3vecgmpB5CUBNcwLNuWnt05Viz3doX5eVNyY rpaWqE2FkPw3ZP0Sy147DnUnssRlE7bHKEVEzVv3CpTMRmPweaQ= =TK/O -----END PGP SIGNATURE-----
