USN-3922-1: PHP vulnerabilities

26 March 2019

Several security issues were fixed in PHP.

Releases

Packages

  • php7.0 - HTML-embedded scripting language interpreter
  • php7.2 - HTML-embedded scripting language interpreter

Details

It was discovered that PHP incorrectly handled certain inputs. An attacker
could possibly use this issue to expose sensitive information. (CVE-2019-9637,
CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, CVE-2019-9641)

Related notices

  • USN-3922-2: libapache2-mod-php5, php5-xmlrpc, php5-cgi, php5, php5-fpm, php5-cli
  • USN-3922-3: libapache2-mod-php5, php5-xmlrpc, php5-cgi, php5, php5-fpm, php5-cli