4 matches found
PT-2024-10555 · Symfony · Symfony Httpfoundation
Name of the Vulnerable Software and Affected Versions: Symfony HttpFoundation component versions 2.0.X through 2.5.X Description: This issue allows for a Denial of Service DoS attack when an arbitrarily long hostname is sent by a client. The parsing of the hostname in the Request::getHost functio...
Fedora 18 : php-symfony2-HttpFoundation-2.2.5-1.fc18 (2013-14579)
Updated to 2.2.5 CVE-2013-4752 Request::getHost poisioning Release blog posts : - http://symfony.com/blog/symfony-2-2-4-released - http://symfony.com/blog/security-releases-symfony-2-0- 24-2-1-12-2-2-5-and-2-3-3-released Full change log:...
Fedora 19 : php-symfony2-HttpFoundation-2.2.5-1.fc19 (2013-14608)
Updated to 2.2.5 CVE-2013-4752 Request::getHost poisioning Release blog posts : - http://symfony.com/blog/symfony-2-2-4-released - http://symfony.com/blog/security-releases-symfony-2-0- 24-2-1-12-2-2-5-and-2-3-3-released Full change log:...
Request::getHost() poisoning
More info at https://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released...