Register | Log in

php8.2

Choose email to subscribe with

general

source: php8.2 (main)
version: 8.2.29-1~deb12u1
maintainer: Debian PHP Maintainers (DMD)
uploaders: Lior Kaplan [DMD] – Ondřej Surý [DMD]
arch: all any
std-ver: 4.5.0.0
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 8.2.29-1~deb12u1
old-sec: 8.2.29-1~deb12u1

versioned links

8.2.29-1~deb12u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

package is gone

This package is not in any development repository. This probably means that the package has been removed (or has been renamed). Thus the information here is of little interest ... the package is going to disappear unless someone takes it over and reintroduces it.

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:01:38
Last run: 2025-03-11T14:26:17.000Z
Previous status: unknown

testing: pass (log)
The tests ran in 0:07:26
Last run: 2025-01-04T12:30:29.000Z
Previous status: unknown

stable: fail (log)
The tests ran in 0:00:19
Last run: 2025-08-11T03:42:15.000Z
Previous status: unknown

Created: 2024-12-03 Last update: 2026-01-18 10:31

3 security issues in bookworm high

There are 3 open security issues in bookworm.

3 important issues:

CVE-2025-14177: In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function may leak uninitialized heap memory into the APPn segments (e.g., APP1) when reading images in multi-chunk mode (such as via php://filter). This occurs due to a bug in php_read_stream_all_chunks() that overwrites the buffer without advancing the pointer, leaving tail bytes uninitialized. This may lead to information disclosure of sensitive heap data and affect the confidentiality of the target server.
CVE-2025-14178: In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs in array_merge() when the total element count of packed arrays exceeds 32-bit limits or HT_MAX_SIZE, due to an integer overflow in the precomputation of element counts using zend_hash_num_elements(). This may lead to memory corruption or crashes and affect the integrity and availability of the target server.
CVE-2025-14180: In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.

Created: 2025-12-17 Last update: 2025-12-28 04:02

5 security issues in sid high

There are 5 open security issues in sid.

5 important issues:

CVE-2025-1217:
CVE-2025-1219:
CVE-2025-1734:
CVE-2025-1736:
CVE-2025-1861:

Created: 2025-03-14 Last update: 2025-03-14 21:01

news

[2025-07-28] Accepted php8.2 8.2.29-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2025-07-28] Accepted php8.2 8.2.29-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2025-03-19] Accepted php8.2 8.2.28-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2025-03-17] Removed 8.2.27-1 from unstable (Debian FTP Masters)
[2025-03-14] Accepted php8.2 8.2.28-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2025-01-10] php8.2 REMOVED from testing (Debian testing watch)
[2024-12-28] php8.2 8.2.27-1 MIGRATED to testing (Debian testing watch)
[2024-12-24] Accepted php8.2 8.2.27-1 (source) into unstable (Ondřej Surý)
[2024-12-08] php8.2 8.2.26-4 MIGRATED to testing (Debian testing watch)
[2024-12-03] Accepted php8.2 8.2.26-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-12-02] Accepted php8.2 8.2.26-4 (source) into unstable (Ondřej Surý)
[2024-11-26] Accepted php8.2 8.2.26-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-10-06] Accepted php8.2 8.2.24-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-10-02] Accepted php8.2 8.2.24-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-09-29] php8.2 8.2.24-1 MIGRATED to testing (Debian testing watch)
[2024-09-27] Accepted php8.2 8.2.24-1 (source) into unstable (Ondřej Surý)
[2024-09-01] php8.2 8.2.23-1 MIGRATED to testing (Debian testing watch)
[2024-08-30] Accepted php8.2 8.2.23-1 (source) into unstable (Ondřej Surý)
[2024-07-09] php8.2 8.2.21-1 MIGRATED to testing (Debian testing watch)
[2024-07-04] Accepted php8.2 8.2.21-1 (source) into unstable (Ondřej Surý)
[2024-06-29] php8.2 8.2.20-3 MIGRATED to testing (Debian testing watch)
[2024-06-24] Accepted php8.2 8.2.20-3 (source) into unstable (Ondřej Surý)
[2024-06-22] Accepted php8.2 8.2.20-2 (source) into unstable (Ondřej Surý)
[2024-06-22] Accepted php8.2 8.2.20-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-06-20] Accepted php8.2 8.2.20-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-05-06] php8.2 8.2.18-1 MIGRATED to testing (Debian testing watch)
[2024-05-05] Accepted php8.2 8.2.18-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-04-15] Accepted php8.2 8.2.18-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Ondřej Surý)
[2024-04-12] Accepted php8.2 8.2.18-1 (source) into unstable (Ondřej Surý)
[2024-03-16] Accepted php8.2 8.2.17-1 (source) into unstable (Ondřej Surý)

1
2

bugs [bug history graph]

all: 0

links

homepage
buildd: logs, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing