Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in secure cookie bypass, XXE attacks or incorrect validation of password hashes.
https://security-tracker.debian.org/tracker/DSA-5660-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-5660-1
Continue reading...