Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian 12 php8.2 Critical Buffer Overflow Fix DLA-4669-1 CVE-2026-14355

debian lts
Calendar Grey July 4, 2026
Dist Debian Esm H88
Upgrade your php8.2 packages on Debian 12 bookworm to fix a critical buffer overflow leading to memory corruption issues.
It was discovered that a buffer overflow in the implementation of AES Key Wrap with Padding in the openssl extension of PHP, a widely-used open source general purpose scripting lan...

Summary

For Debian 12 bookworm, this problem has been fixed in version
8.2.32-1~deb12u1.

We recommend that you upgrade your php8.2 packages.

For the detailed security status of php8.2 please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/php8.2

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
critical
Lowest
Low
Medium
High
Critical

Package: php8.2
Version: 8.2.32-1~deb12u1
CVE ID: CVE-2026-14355

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here