Multiple security issues were found in PHP, a widely-used open source general purpose scripting language which could result in information disclosure, denial of service or incorrect validation of path names.
For the oldstable distribution (stretch), these problems have been fixed in version 7.0.33-0+deb9u7.
We recommend that you upgrade your php7.0 packages.
Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/