USN-5300-2: PHP vulnerabilities

Read Time:35 Second

USN-5300-1 fixed vulnerabilities in PHP. This update provides the
corresponding updates for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.

Original advisory details:

It was discovered that PHP incorrectly handled certain scripts.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2015-9253, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120)

It was discovered that PHP incorrectly handled certain inputs.
An attacker could possibly use this issue to cause a denial of service,
or possibly obtain sensitive information. (CVE-2017-9119)

It was discovered that PHP incorrectly handled certain scripts with XML
parsing functions.
An attacker could possibly use this issue to obtain sensitive information.
(CVE-2021-21707)

Crooks Bypassed Google’s Email Verification to Create Workspace Accounts, Access 3rd-Party Services

Friday Squid Blogging: Sunscreen from Squid Pigments

Compromising the Secure Boot Process

Synnovis Restores Systems After Cyber-Attack, But Blood Shortages Remain

Hacktivists Claim Leak of CrowdStrike Threat Intelligence

CrowdStrike Falcon Outage Exploited for Social Engineering

Despite Bans, AI Code Tools Widespread in Organizations

North Korean Hackers Target Critical Infrastructure for Military Gain

The CrowdStrike Outage and Market-Driven Brittleness

python-setuptools-69.0.3-4.fc40

python-setuptools-67.7.2-8.fc39

USN-6919-1: Linux kernel vulnerabilities

USN-6918-1: Linux kernel vulnerabilities

USN-6917-1: Linux kernel vulnerabilities

curl-8.6.0-9.fc40