-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Mon, 25 Nov 2024 18:21:51 +0100
Source: php8.2
Binary: php8.2 php8.2-xsl
Architecture: all
Version: 8.2.26-1~deb12u1
Distribution: bookworm-security
Urgency: high
Maintainer: all / amd64 / i386 Build Daemon (x86-grnet-03) <buildd_amd64-x86-grnet-03@buildd.debian.org>
Changed-By: Ondřej Surý <ondrej@debian.org>
Description:
 php8.2     - server-side, HTML-embedded scripting language (metapackage)
 php8.2-xsl - XSL module for PHP (dummy)
Changes:
 php8.2 (8.2.26-1~deb12u1) bookworm-security; urgency=high
 .
   * New upstream version 8.2.26
    + Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface.
    + [CVE-2024-8929]: Leak partial content of the heap through heap buffer
      over-read.
    + [CVE-2024-8932]: OOB access in ldap_escape.
    + [CVE-2024-11233]: Single byte overread with
      convert.quoted-printable-decode filter.
    + [CVE-2024-11234]: Configuring a proxy in a stream context might allow
      for CRLF injection in URIs.
    + [CVE-2024-11236]: Integer overflow in the dblib quoter causing OOB
      writes.
    + [CVE-2024-11236]: Integer overflow in the firebird quoter causing OOB
      writes.
   * Revert "ext/gmp: gmp_pow fix FPE with large values" upstream patch
Checksums-Sha1:
 cdc8a73017b12b7e1a99835fa0e18d8c9d0cca05 45244 php8.2-xsl_8.2.26-1~deb12u1_all.deb
 8f88d53d9798fe11b6a68a4cc75aa935af097a3a 14072 php8.2_8.2.26-1~deb12u1_all-buildd.buildinfo
 370058d179e7e60fc39ea086e85c0786367f6a98 45572 php8.2_8.2.26-1~deb12u1_all.deb
Checksums-Sha256:
 fafed6588ce0b0eb4f3d48bda19fa43507796cf3c40f7d9565c856b5fbad542b 45244 php8.2-xsl_8.2.26-1~deb12u1_all.deb
 e76dfbfaba47b4399f8cd4f5827c107aae7a3383ac19ce72718a1226ed2cffd3 14072 php8.2_8.2.26-1~deb12u1_all-buildd.buildinfo
 d5fab192d682f480a3b971e94a2f397ce6489fa19f1e6d4a3464aca7db2e89f4 45572 php8.2_8.2.26-1~deb12u1_all.deb
Files:
 490bbc45bbfe106a4d5d3ce7b1b99db2 45244 php optional php8.2-xsl_8.2.26-1~deb12u1_all.deb
 fd1762850a553e38fd23ca59cdf0bdd6 14072 php optional php8.2_8.2.26-1~deb12u1_all-buildd.buildinfo
 25d75d846de822e56359df0308e5f2b5 45572 php optional php8.2_8.2.26-1~deb12u1_all.deb

-----BEGIN PGP SIGNATURE-----
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=mBaK
-----END PGP SIGNATURE-----