USN-5300-2

Advisory lineage Upstream: 10 Downstream: 0

Upstream

CVE-2017-8923 CVE-2017-9118 CVE-2017-9119 CVE-2017-9120 CVE-2021-21707 UBUNTU-CVE-2017-8923

Published: 03 Mar 2022, 13:58

Last modified:27 Apr 2026, 18:59

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 Mar 2022, 13:58

Published

Vulnerability first disclosed

27 Apr 2026, 18:59

Last Modified

Vulnerability information updated

Description

php7.2, php7.4 vulnerabilities USN-5300-1 fixed vulnerabilities in PHP. This update provides the corresponding updates for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Original advisory details: It was discovered that PHP incorrectly handled certain scripts. An attacker could possibly use this issue to cause a denial of service. (CVE-2015-9253, CVE-2017-8923, CVE-2017-9118, CVE-2017-9120) It was discovered that PHP incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service, or possibly obtain sensitive information. (CVE-2017-9119) It was discovered that PHP incorrectly handled certain scripts with XML parsing functions. An attacker could possibly use this issue to obtain sensitive information. (CVE-2021-21707)

Affected Systems

ubuntu•php7.2
< 7.2.24-0ubuntu0.18.04.11
ubuntu•php7.4
< 7.4.3-4ubuntu2.10

USN-5300-2

Vulnerability Summary

Timeline

Description

Affected Systems

References (6)