[Git][security-tracker-team/security-tracker][master] PHP DSAs

Tue, 13 Jun 2023 12:52:46 -0700 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
1775d0eb by Moritz Mühlenhoff at 2023-06-13T21:52:05+02:00
PHP DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -22188,7 +22188,9 @@ CVE-2023-25140 (A vulnerability has been identified in 
Parasolid V34.0 (All vers
        NOT-FOR-US: Siemens
 CVE-2023-XXXX [GHSA-76gg-c692-v2mw: Missing error check and insufficient 
random bytes in HTTP Digest authentication for SOAP]
        - php8.2 8.2.7-1
+       [bookworm] - php8.2 8.2.7-1~deb12u1
        - php7.4 <removed>
+       [bullseye] - php7.4 7.4.33-1+deb11u4
        NOTE: Fixed in 8.2.7, 8.1.20, 8.0.29
        NOTE: 
https://github.com/php/php-src/security/advisories/GHSA-76gg-c692-v2mw
        NOTE: 
https://github.com/php/php-src/commit/ac4254ad764c70cb1f05c9270d8d12689fc3aeb6 
(php-8.0.29)


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,7 @@
+[13 Jun 2023] DSA-5425-1 php8.2 - security update
+       [bookworm] - php8.2 8.2.7-1~deb12u1
+[13 Jun 2023] DSA-5424-1 php7.4 - security update
+       [bullseye] - php7.4 7.4.33-1+deb11u4
 [11 Jun 2023] DSA-5423-1 thunderbird - security update
        {CVE-2023-34414 CVE-2023-34416}
        [bullseye] - thunderbird 1:102.12.0-1~deb11u1


=====================================
data/dsa-needed.txt
=====================================
@@ -37,10 +37,6 @@ openjdk-17 (jmm)
 --
 owslib/oldstable (aron)
 --
-php7.4/oldstable (jmm)
---
-php8.2/stable (jmm)
---
 php-cas/oldstable
 --
 php-horde-mime-viewer/oldstable



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1775d0eb06355f075bf1cc2a8e263c21b39084ad

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/1775d0eb06355f075bf1cc2a8e263c21b39084ad
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to