[USN-7171-1] PHPUnit vulnerability

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEELOLXZEFYQHcSWEHiyfW2m9Ldu6sFAmdi14gFAwAAAAAACgkQyfW2m9Ldu6uN
oxAArBwIaafWYcXyucD1y6Djc+LMNlvicbxF6B9DgVyaeYoDAaT60QKHhvqfW/uNUXz0LOYbpV3T
eihpDtdZnODisW3zvnSyACZl2TmrKVlUAE53iapCmwtsvCMZ4KAFNjObbTk5/cD/xi2UufzQNPQr
vVyGpl37N9IxeWqYy3d+TBkRmTmsLSEzbvAB54jETe60WUlcbSxKJ9PBSL5kbZJcSBeyuKxDgExj
WcPUZQzUtLvz0UnKiZPajf7M0qpJrAPdn74dV8/izzBseDNFjwmuPm3mAtuDb+nwRh5S+3IlT+h/
7YPhUL4gRMUqK1e3JnEGNXHcrC/0283wXM2WqUVnUm/4U89wJbOGayJ3A5u3wObF3xMkKeGCrTow
xkTyF1IGmykEjaXwOy6ylc8h38tzVCOgkqyAt/jAyocNzQ89YcnZz0NRvfWPx3Wofhi8FhPjY0+v
ayWEZDIyI87sgO4vuelQUaYcDAfm+GVRQNOWb/NdxFqF0Y8HF42bJjeDSabUDtDYkKDGXTuftgPS
ajVtRMERUWiJXw0/FdlsjlihZNaGuOqXKm4izijpKJNXDQRuvLbdOOBkWbMBNIF539K6rO9IVJ1c
9weEsuKnS9lRfOHOguqeW8kBGvem8IOMOpw6J4CNcMlghJSNP5CUb+5VnwROsldqUrcdsXpdhGWM
zXU=
=snDF
-----END PGP SIGNATURE-----
==========================================================================
Ubuntu Security Notice USN-7171-1
December 18, 2024

phpunit vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 16.04 LTS

Summary:

PHPUnit could be made to crash or run programs if it received specially
crafted network traffic.

Software Description:
- phpunit: Unit testing suite for PHP

Details:

It was discovered that PHPUnit incorrectly handled web requests if exposed
to the internet. An attacker could possibly use this issue to achive remote
code execution or obtain sensitive information.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS
  phpunit                         5.1.3-1+ubuntu3+esm1
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
  https://ubuntu.com/security/notices/USN-7171-1
  CVE-2017-9841