21 matches found
[SECURITY] Fedora 37 Update: php-symfony4-4.4.50-1.fc37
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 34 Update: php-symfony4-4.4.24-1.fc34
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 33 Update: php-symfony4-4.4.24-1.fc33
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 33 Update: php-symfony3-3.4.49-1.fc33
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 32 Update: php-symfony4-4.4.13-1.fc32
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
GHSA-W2FR-65VP-MXW3 Deserialization of untrusted data in Symfony
In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to...
[SECURITY] Fedora 31 Update: php-symfony3-3.4.35-2.fc31
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...
Arbitrary file deletion
In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to...
DEBIAN-CVE-2019-10912
In Symfony before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, it is possible to cache objects that may contain bad user input. On serialization or unserialization, this could result in the deletion of files that the current user has access to. This is related to...
Fedora 30 : php-symfony (2019-0ef4149687)
Version 2.8.50 2019-04-17 - security cve-2019-10910 DI Check service IDs are valid nicolas-grekas - security cve-2019-10909 FrameworkBundleForm Fix XSS issues in the form theme of the PHP templating engine stof - security cve-2019-10912 PHPUnit Bridge Prevent destructors with side-effects from...
Fedora 30 : php-symfony4 (2019-f5d6a7ce74)
Version 4.2.7 2019-04-17 - bug 31107 Routing fix trailing slash redirection with non-greedy trailing vars nicolas-grekas - bug 31108 FrameworkBundle decorate the ValidatorBuilder's translator with LegacyTranslatorProxy nicolas-grekas - bug 31121 HttpKernel Fix get session when the request stack i...
Fedora 29 : php-symfony (2019-f8db687840)
Version 2.8.50 2019-04-17 - security cve-2019-10910 DI Check service IDs are valid nicolas-grekas - security cve-2019-10909 FrameworkBundleForm Fix XSS issues in the form theme of the PHP templating engine stof - security cve-2019-10912 PHPUnit Bridge Prevent destructors with side-effects from...
Fedora 29 : php-symfony3 (2019-a3ca65028c)
Version 3.4.26 2019-04-17 - bug 31084 HttpFoundation Make MimeTypeExtensionGuesser case insensitive vermeirentony - bug 31142 Revert 'bug 30423 Security Rework firewall's access denied rule dimabory' chalasr - security cve-2019-10910 DI Check service IDs are valid nicolas-grekas - security...
Fedora 28 : php-symfony (2019-3ee6a7adf2)
Version 2.8.50 2019-04-17 - security cve-2019-10910 DI Check service IDs are valid nicolas-grekas - security cve-2019-10909 FrameworkBundleForm Fix XSS issues in the form theme of the PHP templating engine stof - security cve-2019-10912 PHPUnit Bridge Prevent destructors with side-effects from...
[SECURITY] Fedora 29 Update: php-symfony4-4.1.12-1.fc29
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 30 Update: php-symfony3-3.4.26-1.fc30
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 29 Update: php-symfony3-3.4.20-1.fc29
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 28 Update: php-symfony3-3.4.14-1.fc28
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 27 Update: php-symfony4-4.0.14-1.fc27
Symfony PHP framework version 4. NOTE: Does not require PHPUnit bridge...
[SECURITY] Fedora 28 Update: php-symfony3-3.4.11-1.fc28
Symfony PHP framework version 3. NOTE: Does not require PHPUnit bridge...