Advisory: CLSA-2025:1751048186
OS: Debian 10
Public date: 2025-06-27 18:16:29
Project: php
Version: 5.6.40-103
Errata link: https://errata.tuxcare.com/els_alt_php/debian10/CLSA-2025-1751048186.html
* Security fixes - CVE-2019-11045: fix bug #78863 - DirectoryIterator class silently truncates after a nullbyte - CVE-2019-11043: fix bug #78599 - env_path_info underflow can lead to RCE - CVE-2019-9675: fix bug #77586 - phar_tar_writeheaders_int() buffer overflow - CVE-2019-9638, CVE-2019-9639: fix bug #77563 - uninitialized read in exif_process_IFD_in_MAKERNOTE - CVE-2019-9637: fix bug #77630 - safer rename() procedure
Update command: apt-get update apt-get --only-upgrade install alt-php*
alt-php56_5.6.40-103_amd64.deb alt-php56-bcmath_5.6.40-103_amd64.deb alt-php56-cli_5.6.40-103_amd64.deb alt-php56-common_5.6.40-103_amd64.deb alt-php56-dba_5.6.40-103_amd64.deb alt-php56-dbx_5.6.40-103_amd64.deb alt-php56-dev_5.6.40-103_amd64.deb alt-php56-enchant_5.6.40-103_amd64.deb alt-php56-firebird_5.6.40-103_amd64.deb alt-php56-fpm_5.6.40-103_amd64.deb alt-php56-gd_5.6.40-103_amd64.deb alt-php56-imap_5.6.40-103_amd64.deb alt-php56-intl_5.6.40-103_amd64.deb alt-php56-ldap_5.6.40-103_amd64.deb alt-php56-mbstring_5.6.40-103_amd64.deb alt-php56-mcrypt_5.6.40-103_amd64.deb alt-php56-mysqlnd_5.6.40-103_amd64.deb alt-php56-odbc_5.6.40-103_amd64.deb alt-php56-opcache_5.6.40-103_amd64.deb alt-php56-pdo_5.6.40-103_amd64.deb alt-php56-pgsql_5.6.40-103_amd64.deb alt-php56-process_5.6.40-103_amd64.deb alt-php56-pspell_5.6.40-103_amd64.deb alt-php56-recode_5.6.40-103_amd64.deb alt-php56-snmp_5.6.40-103_amd64.deb alt-php56-soap_5.6.40-103_amd64.deb alt-php56-sybase_5.6.40-103_amd64.deb alt-php56-tidy_5.6.40-103_amd64.deb alt-php56-xml_5.6.40-103_amd64.deb alt-php56-xmlrpc_5.6.40-103_amd64.deb