Make WordPress Core

#58958 closed defect (bug) (duplicate)

WordPress gives false reports of insecure PHP still maintained by the OS.

Reported by: detechno's profile detechno Owned by:
Milestone: Priority: normal
Severity: normal Version:
Component: Site Health Keywords:
Focuses: Cc:

Description

Commonly an OS (like Ubuntu, Debian, RedHat) will backport security fixes to a php version which is otherwise not maintained by PHP upstream.

Wordpress ignores this fact and asserts that it does not receive security updates which is wrong. Instead WordPress must also write about this assertion -- that it's assuming the PHP that it's using is upstream PHP.

Attachments (1)

screenshots.png (24.0 KB) - added by detechno 18 months ago.
False positive about outdated PHP version running on Debian buster.

Download all attachments as: .zip

Change History (2)

@detechno
18 months ago

False positive about outdated PHP version running on Debian buster.

#1 @SergeyBiryukov
18 months ago

  • Component changed from General to Site Health
  • Milestone Awaiting Review deleted
  • Resolution set to duplicate
  • Status changed from new to closed

Hi there, welcome to WordPress Trac! Thanks for the ticket.

We're already tracking this in #50455, let's continue the discussion there.

Note: See TracTickets for help on using tickets.