-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5967-1                   security@debian.org
https://www.debian.org/security/                     Salvatore Bonaccorso
July 28, 2025                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : php8.2
CVE ID         : CVE-2025-1220 CVE-2025-1735 CVE-2025-6491

Multiple security issues were found in PHP, a widely-used open source
general purpose scripting language which could result in denial of
service or server side request forgery.

For the stable distribution (bookworm), these problems have been fixed in
version 8.2.29-1~deb12u1.

We recommend that you upgrade your php8.2 packages.

For the detailed security status of php8.2 please refer to its security
tracker page at:
https://security-tracker.debian.org/tracker/php8.2

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmiH1CxfFIAAAAAALgAo
aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2
NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND
z0RjVg/+M1jK/TjYRbH/bT89R3gmauY7WfeQpalqGe1PqExVP3oPMJlZu3lKuRWN
uI/wU6UADGfm9MTUNqvqh+Rj6Pl4z7zupJ0J3jiKdhNgBBCKBrIVB3ZeAwx0YuKh
y3lu96IzTRlXnvDtEL/F2yF9IX6wNuvmfFjmPN7qNC8ib7jM2JjAg1LGslwwpXRM
3SQAbHs0JGtTNQB7tGcDtE6a5AQjeicJkfsj8/KrIqoC5qlzjwsoiRy+hXB5IOMN
4A+CjQBmvtmEyN+ixpEtzO7wC3mFwu9O7XDljnIic31nDBrGmEIiRqLFxVZtiq4V
XIeBbfSDq6Kzc5Y3Zr4JpT+60dO6brndVatBRfLgWdHEyTvdJ3qYvKoXrVROU4Vh
RB1FH1KWwu8Pi1MobgcHbHAqx6izxdAHxDmR1XXiAR7UB7H16ksCWxkqWuKoXEv8
0DyDkkLvA4tjwWw/BTUnFwSd5zvAj0vxiP4HqFjGhnKHYEG5AeyqvHE4ukAlqACx
Tv88rpBc85CPFmE2EjuM3MSHyHye/x4ciHGH9bcnUKSmU3wvoBDTtQ/T5RFZBuEv
6Lyi7K8KoTyXfayY7q72tGVXeZ4Z/Nih8UWjKIFxCeFG2XOhfTIN10p6o1shja/V
0bDVhCN/Fpqi34+kF1t6mROTU9O8UyTowwdHh8bj0SuZU7rrNhs=
=U8kN
-----END PGP SIGNATURE-----