ELA-198-1 libonig security update

multiple vulnerabilities

2019-12-04
Packagelibonig
Version5.9.1-1+deb7u4
Related CVEs CVE-2019-19012 CVE-2019-19204 CVE-2019-19246


Several vulnerabilities were discovered in the Oniguruma regular expressions library, notably used in PHP mbstring.



For Debian 7 Wheezy, these problems have been fixed in version 5.9.1-1+deb7u4.

We recommend that you upgrade your libonig packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.