Back to php7.0 PTS page

Accepted php7.0 7.0.33-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates

To: debian-changes@lists.debian.org
Subject: Accepted php7.0 7.0.33-0+deb9u1 (source) into proposed-updates->stable-new, proposed-updates
From: Ondřej Surý <ondrej@debian.org>
Date: Tue, 18 Dec 2018 21:47:08 +0000
Mail-followup-to: debian-devel@lists.debian.org
Message-id: <E1gZNCm-0007Ha-3z@fasolo.debian.org>
Reply-to: debian-devel@lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 07 Dec 2018 11:36:49 +0000
Source: php7.0
Binary: libapache2-mod-php7.0 libphp7.0-embed php7.0 php7.0-cgi php7.0-cli php7.0-dev php7.0-fpm php7.0-phpdbg php7.0-xsl php7.0-odbc php7.0-readline php7.0-recode php7.0-sqlite3 php7.0-tidy php7.0-xml php7.0-sybase php7.0-gd php7.0-mcrypt php7.0-zip php7.0-common php7.0-intl php7.0-snmp php7.0-curl php7.0-json php7.0-pgsql php7.0-mbstring php7.0-enchant php7.0-opcache php7.0-imap php7.0-gmp php7.0-mysql php7.0-bcmath php7.0-soap php7.0-dba php7.0-interbase php7.0-xmlrpc php7.0-pspell php7.0-bz2 php7.0-ldap
Architecture: source
Version: 7.0.33-0+deb9u1
Distribution: stretch-security
Urgency: high
Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Description:
 libapache2-mod-php7.0 - server-side, HTML-embedded scripting language (Apache 2 module)
 libphp7.0-embed - HTML-embedded scripting language (Embedded SAPI library)
 php7.0     - server-side, HTML-embedded scripting language (metapackage)
 php7.0-bcmath - Bcmath module for PHP
 php7.0-bz2 - bzip2 module for PHP
 php7.0-cgi - server-side, HTML-embedded scripting language (CGI binary)
 php7.0-cli - command-line interpreter for the PHP scripting language
 php7.0-common - documentation, examples and common module for PHP
 php7.0-curl - CURL module for PHP
 php7.0-dba - DBA module for PHP
 php7.0-dev - Files for PHP7.0 module development
 php7.0-enchant - Enchant module for PHP
 php7.0-fpm - server-side, HTML-embedded scripting language (FPM-CGI binary)
 php7.0-gd  - GD module for PHP
 php7.0-gmp - GMP module for PHP
 php7.0-imap - IMAP module for PHP
 php7.0-interbase - Interbase module for PHP
 php7.0-intl - Internationalisation module for PHP
 php7.0-json - JSON module for PHP
 php7.0-ldap - LDAP module for PHP
 php7.0-mbstring - MBSTRING module for PHP
 php7.0-mcrypt - libmcrypt module for PHP
 php7.0-mysql - MySQL module for PHP
 php7.0-odbc - ODBC module for PHP
 php7.0-opcache - Zend OpCache module for PHP
 php7.0-pgsql - PostgreSQL module for PHP
 php7.0-phpdbg - server-side, HTML-embedded scripting language (PHPDBG binary)
 php7.0-pspell - pspell module for PHP
 php7.0-readline - readline module for PHP
 php7.0-recode - recode module for PHP
 php7.0-snmp - SNMP module for PHP
 php7.0-soap - SOAP module for PHP
 php7.0-sqlite3 - SQLite3 module for PHP
 php7.0-sybase - Sybase module for PHP
 php7.0-tidy - tidy module for PHP
 php7.0-xml - DOM, SimpleXML, WDDX, XML, and XSL module for PHP
 php7.0-xmlrpc - XMLRPC-EPI module for PHP
 php7.0-xsl - XSL module for PHP (dummy)
 php7.0-zip - Zip module for PHP
Changes:
 php7.0 (7.0.33-0+deb9u1) stretch-security; urgency=high
 .
   * New upstream version 7.0.33
   * Fixed security bugs:
    + [CVE-2018-19518]: imap_open() function command injection
    + [CVE-2018-14851]: heap-buffer-overflow (READ of size 48) while
                        reading exif data
    + [CVE-2018-14883]: Int Overflow lead to Heap OverFlow in
                        exif_thumbnail_extract of exif.c
    + [CVE-2018-17082]: XSS due to the header Transfer-Encoding: chunked
Checksums-Sha1:
 c48c6e986821bafd2ae06a24d68bdfd5f8f97e35 5790 php7.0_7.0.33-0+deb9u1.dsc
 fef2bfd1285325a4ac2c367fab6a9062c144a790 12033040 php7.0_7.0.33.orig.tar.xz
 c79d9ad37f3f638682694b471e3bfc211a8ae2b5 65588 php7.0_7.0.33-0+deb9u1.debian.tar.xz
 39407205a2533fe41fb6677ab3ba5005281a231d 35995 php7.0_7.0.33-0+deb9u1_amd64.buildinfo
Checksums-Sha256:
 0723e18be75acac5018b75faa1ca9612a8a2f27765182b7e7fb490adc9f22032 5790 php7.0_7.0.33-0+deb9u1.dsc
 ab8c5be6e32b1f8d032909dedaaaa4bbb1a209e519abb01a52ce3914f9a13d96 12033040 php7.0_7.0.33.orig.tar.xz
 d51b8d4010d3e0f79fdeb0516161430b25d529cc3aeb02287204e30f080a5957 65588 php7.0_7.0.33-0+deb9u1.debian.tar.xz
 cad10bbefc53c686826954260cb0e1d8ad4353246c3b9d8232ecce6e3576863c 35995 php7.0_7.0.33-0+deb9u1_amd64.buildinfo
Files:
 4f523663e15aeaf28aa4c0857368e015 5790 php optional php7.0_7.0.33-0+deb9u1.dsc
 a6d7c355d023301a1a9ec8b4f32a4856 12033040 php optional php7.0_7.0.33.orig.tar.xz
 76ff47b9cf4c55f4349d39d6bf595051 65588 php optional php7.0_7.0.33-0+deb9u1.debian.tar.xz
 f512cc2cc8823144dc9d6abb719d04a2 35995 php optional php7.0_7.0.33-0+deb9u1_amd64.buildinfo

-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEEw2Gx4wKVQ+vGJel9g3Kkd++uWcIFAlwK0VZfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEMz
NjFCMUUzMDI5NTQzRUJDNjI1RTk3RDgzNzJBNDc3RUZBRTU5QzIACgkQg3Kkd++u
WcI1nQ//RcWERRmfqS+wx8nYSrkphtLto5y/VfEeR55VUjTtVILdy/NRfhoA6uW3
p9AU8jMmxiKATtw2auv0Xm2UVkn+SncGQgDnerdFi3CMe3FKIzGq4MNdmgchM59A
T4YHG/OIvT+XQCehH4GCPoKdRyuH5jbYObWScIHgGtnIquHqXM7ryKvMkMWLBmAR
GLDFphUqURbVjL3qos45TU76bwFcnn28GPW1yBOGG1uAdxjJ9Ak8nJ89dofgF5uV
d06jAY0udw2F9gDWmOi4UH682rf8dasQVKGSsKbJ2f3KGp66ZvFh48eKYqQATo1a
7+MAssX409dS4JTBSYZDG0CPYPaX5VoeJGKTLzI4dympHb8Pe0i6rgswGGs+C2RE
pGtVqL53TAzONzGKz0af8iT3Kwb8irODs0BVvJoRJcs+9iroSxInR1MMzFcz/vH8
s4hO79LhIPPVk8OEhbeJpPsw3HTfNOYYOx8YZJWrANKfW7siKkks6UIW74eUEXI6
IC3IQCC41uw3psMlokErFeT9sLMNmUHhNG9tCEVlEstUqvbm4vRCn8wouRqgOXDr
j30wCGRKOeCY/wVFXndG482/6VNVr3iO40abJ8QbXyf+bpxS+OHc/wWn9tu6KN9O
O9op+0uT+ZRza8TfN/HpVoKt7RMn2rT9YcmJ+09PAz3ZavzK3t8=
=Pgaw
-----END PGP SIGNATURE-----