5 matches found
CVE-2014-6061
CVE-2014-6061 affects Symfony HttpFoundation: parsing of the Authorization header in HTTP basic/digest auth is incorrect, potentially exploitable in certain server setups. Affected: Symfony HttpFoundation 2.0.x–2.5.x. Remediation: upgrade to fixed releases — Symfony 2.3.19+, 2.4.9+, or 2.5.4+. So...
Fedora Update for php-symfony FEDORA-2015-9025
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)
2.5.4 2014-09-03 - security 11832 CVE-2014-6072 fabpot - security 11831 CVE-2014-5245 stof - security 11830 CVE-2014-4931 aitboudad, Jeremy Derusse - security 11829 CVE-2014-6061 damz, fabpot - security 11828 CVE-2014-5244 nicolas-grekas, larowlan - bug 10197 FrameworkBundle PhpExtractor bugfix a...
Security issue when parsing the Authorization header
More info at https://symfony.com/cve-2014-6061...
CVE-2014-6061: Security issue when parsing the Authorization header
Affected Versions All 2.0.X, 2.1.X, 2.2.X, 2.3.X, 2.4.X, and 2.5.X versions of the Symfony HttpFoundation component are affected by this security issue. This issue has been fixed in Symfony 2.3.19, 2.4.9, and 2.5.4. Note that no fixes are provided for Symfony 2.0, 2.1, and 2.2 as they are not...