-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4717-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
July 05, 2020                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : php7.0
CVE ID         : CVE-2019-11048 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064
                 CVE-2020-7066 CVE-2020-7067

Multiple security issues were found in PHP, a widely-used open source
general purpose scripting language which could result in information
disclosure, denial of service or potentially the execution of arbitrary
code.

For the oldstable distribution (stretch), these problems have been fixed
in version 7.0.33-0+deb9u8.

We recommend that you upgrade your php7.0 packages.

For the detailed security status of php7.0 please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/php7.0

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=Hlsk
-----END PGP SIGNATURE-----