Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved. 
We have other packages those needs to be published for security fixes we will try to prioritise it. 

------------------------------
SANKET RATHI
------------------------------

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

Thanks in advance. I appreciate the effort very much !!

Kind regards,

Stefano

------------------------------
Stefano Calisto
------------------------------

Original Message:
Sent: Fri March 11, 2022 12:17 PM
From: SANKET RATHI
Subject: PHP Version 7.4.28 or newer

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved.
We have other packages those needs to be published for security fixes we will try to prioritise it.

------------------------------
SANKET RATHI

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

Hi Sanket


Is there an estimate when we can expect PHP 7.4.34  to address the following Vulnerability CVE-2022-2224[1-6] and CVE-2022-31630, CVE-2022-37454?

Thanks in advance and best regards,
Michel

------------------------------
Michel Gehring
------------------------------

Original Message:
Sent: Fri March 11, 2022 12:17 PM
From: SANKET RATHI
Subject: PHP Version 7.4.28 or newer

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved. 
We have other packages those needs to be published for security fixes we will try to prioritise it. 

------------------------------
SANKET RATHI

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

We will update it as soon as possible.

------------------------------
Ayappan P
------------------------------

Original Message:
Sent: Tue November 15, 2022 06:42 AM
From: Michel Gehring
Subject: PHP Version 7.4.28 or newer

Hi Sanket


Is there an estimate when we can expect PHP 7.4.34  to address the following Vulnerability CVE-2022-2224[1-6] and CVE-2022-31630, CVE-2022-37454?

Thanks in advance and best regards,
Michel

------------------------------
Michel Gehring

Original Message:
Sent: Fri March 11, 2022 12:17 PM
From: SANKET RATHI
Subject: PHP Version 7.4.28 or newer

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved. 
We have other packages those needs to be published for security fixes we will try to prioritise it. 

------------------------------
SANKET RATHI

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

We have published php 7.4.33 in AIX Toolbox. This version has fix for CVE-2022-31630 and CVE-2022-37454.
https://public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/php/
CVE-2022-2224[1-6]  seems to be affecting Juniper Networks Junos OS, not php.

------------------------------
RESHMA KUMAR
------------------------------

Original Message:
Sent: Wed November 16, 2022 09:29 AM
From: Ayappan P
Subject: PHP Version 7.4.28 or newer

We will update it as soon as possible.

------------------------------
Ayappan P

Original Message:
Sent: Tue November 15, 2022 06:42 AM
From: Michel Gehring
Subject: PHP Version 7.4.28 or newer

Hi Sanket


Is there an estimate when we can expect PHP 7.4.34  to address the following Vulnerability CVE-2022-2224[1-6] and CVE-2022-31630, CVE-2022-37454?

Thanks in advance and best regards,
Michel

------------------------------
Michel Gehring

Original Message:
Sent: Fri March 11, 2022 12:17 PM
From: SANKET RATHI
Subject: PHP Version 7.4.28 or newer

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved. 
We have other packages those needs to be published for security fixes we will try to prioritise it. 

------------------------------
SANKET RATHI

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------

Original Message:
Sent: 12/2/2022 12:24:00 AM
From: RESHMA KUMAR
Subject: RE: PHP Version 7.4.28 or newer

We have published php 7.4.33 in AIX Toolbox. This version has fix for CVE-2022-31630 and CVE-2022-37454.
https://public.dhe.ibm.com/aix/freeSoftware/aixtoolbox/RPMS/ppc/php/
CVE-2022-2224[1-6]  seems to be affecting Juniper Networks Junos OS, not php.

------------------------------
RESHMA KUMAR
------------------------------

Original Message:
Sent: Wed November 16, 2022 09:29 AM
From: Ayappan P
Subject: PHP Version 7.4.28 or newer

We will update it as soon as possible.

------------------------------
Ayappan P

Original Message:
Sent: Tue November 15, 2022 06:42 AM
From: Michel Gehring
Subject: PHP Version 7.4.28 or newer

Hi Sanket


Is there an estimate when we can expect PHP 7.4.34  to address the following Vulnerability CVE-2022-2224[1-6] and CVE-2022-31630, CVE-2022-37454?

Thanks in advance and best regards,
Michel

------------------------------
Michel Gehring

Original Message:
Sent: Fri March 11, 2022 12:17 PM
From: SANKET RATHI
Subject: PHP Version 7.4.28 or newer

Hi Stefano,

The CVE is published recently and we will work on getting the fixed version of PHP from community and build and test on AIX.
There are some internal process also involved. 
We have other packages those needs to be published for security fixes we will try to prioritise it. 

------------------------------
SANKET RATHI

Original Message:
Sent: Mon March 07, 2022 07:30 AM
From: Stefano Calisto
Subject: PHP Version 7.4.28 or newer

Hi there

Is there an estimate when we can expect PHP 7.4.28 or newer to adress the following Vulnerability CVE-2021-21708 ?

Thanks in advance and kind regards

Stefano

------------------------------
Stefano Calisto
------------------------------