Debian 10261 Published by

A php7.3 security update has been released for Debian GNU/Linux 10 LTS to address multiple security issues.



DLA 3243-1: php7.3 security update



- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3243-1 debian-lts@lists.debian.org
  https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
December 15, 2022   https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : php7.3
Version : 7.3.31-1~deb10u2
CVE ID : CVE-2021-21707 CVE-2022-31625 CVE-2022-31626 CVE-2022-31628
CVE-2022-31629 CVE-2022-37454

Multiple security issues were discovered in PHP, a widely-used open
source general purpose scripting language which could result in denial
of service, information disclosure, insecure cooking handling or
potentially the execution of arbitrary code.

For Debian 10 buster, these problems have been fixed in version
7.3.31-1~deb10u2.

We recommend that you upgrade your php7.3 packages.

For the detailed security status of php7.3 please refer to
its security tracker page at:
  https://security-tracker.debian.org/tracker/php7.3

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at:   https://wiki.debian.org/LTS