Sicherheit: Mehrere Probleme in Symfony

Lesezeichen hinzufügen

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--===============2257119001348292313==
Content-Language: en-US
Content-Type: multipart/signed; micalg=pgp-sha256;
protocol="application/pgp-signature";
boundary="------------2bEpM9vjDlzt86H4wgw2HRSH"

This is an OpenPGP/MIME signed message (RFC 4880 and 3156)
--------------2bEpM9vjDlzt86H4wgw2HRSH
Content-Type: multipart/mixed;
boundary="------------eB4W3bynQnIixxDcVh7RLXe5";
protected-headers="v1"
From: Hlib Korzhynskyy <hlib.korzhynskyy@canonical.com>
Reply-To: security@ubuntu.com
To: ubuntu-security-announce@lists.ubuntu.com
Message-ID: <e2441cb2-6a3e-45d2-8ddb-23ca6537f413@canonical.com>
Subject: [USN-7272-1] Symfony vulnerabilities

--------------eB4W3bynQnIixxDcVh7RLXe5
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: base64

==========================================================================
Ubuntu Security Notice USN-7272-1
February 18, 2025

symfony vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in Symfony.

Software Description:
- symfony: set of reusable components and framework for web projects

Details:

Soner Sayakci discovered that Symfony incorrectly handled cookie storage in
the web cache. An attacker could possibly use this issue to obtain
sensitive information and access unauthorized resources. (CVE-2022-24894)

Marco Squarcina discovered that Symfony incorrectly handled the storage of
user session information. An attacker could possibly use this issue to
perform a cross-site request forgery (CSRF) attack. (CVE-2022-24895)

Pierre Rudloff discovered that Symfony incorrectly checked HTML input. An
attacker could possibly use this issue to perform cross site scripting.
(CVE-2023-46734)

Vladimir Dusheyko discovered that Symfony incorrectly sanitized special
input with a PHP directive in URL query strings. An attacker could possibly
use this issue to expose sensitive information or cause a denial of
service. This issue only affected Ubuntu 24.04 LTS and Ubuntu 22.04 LTS.
(CVE-2024-50340)

Oleg Andreyev, Antoine Makdessi, and Moritz Rauch discovered that Symfony
incorrectly handled user authentication. An attacker could possibly use
this issue to access unauthorized resources and expose sensitive
information. This issue was only addressed in Ubuntu 24.04 LTS.
(CVE-2024-50341, CVE-2024-51996)

Linus Karlsson and Chris Smith discovered that Symfony returned internal
host information during host resolution. An attacker could possibly use
this issue to obtain sensitive information. This issue only affected Ubuntu
24.04 LTS and Ubuntu 22.04 LTS. (CVE-2024-50342)

It was discovered that Symfony incorrectly parsed user input through
regular expressions. An attacker could possibly use this issue to expose
sensitive information. (CVE-2024-50343)

Sam Mush discovered that Symfony incorrectly parsed URIs with special
characters. An attacker could possibly use this issue to perform phishing
attacks. (CVE-2024-50345)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
php-symfony                     6.4.5+dfsg-3ubuntu3+esm1
                                  Available with Ubuntu Pro

Ubuntu 22.04 LTS
php-symfony                     5.4.4+dfsg-1ubuntu8+esm1
                                  Available with Ubuntu Pro

Ubuntu 20.04 LTS
php-symfony                     4.3.8+dfsg-1ubuntu1+esm2
                                  Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-7272-1
CVE-2022-24894, CVE-2022-24895, CVE-2023-46734, CVE-2024-50340,
CVE-2024-50341, CVE-2024-50342, CVE-2024-50343, CVE-2024-50345,
CVE-2024-51996
--------------eB4W3bynQnIixxDcVh7RLXe5--

--------------2bEpM9vjDlzt86H4wgw2HRSH
Content-Type: application/pgp-signature; name="OpenPGP_signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="OpenPGP_signature.asc"

-----BEGIN PGP SIGNATURE-----

wsF5BAABCAAjFiEELOLXZEFYQHcSWEHiyfW2m9Ldu6sFAme0wxMFAwAAAAAACgkQyfW2m9Ldu6v1
5w/6AlRosCAUG4gB9vyQslp/QHv5Z5CK4aZSt9W5C5XqJ6F4GIlN3aMtBwD6Kzgv7zKad3qFL3NM
HBmrnQmKaDW0rwjZq1qheAP3pIzXmkM/iePx2PQIVRqmfwAvTG5whRCn6Wq3BKMUkzCZA0c8shuT
DRRQo75NrQ2h+eluM8KGUutSiuyb98Wofaif2YSxc0C4FZLnYQASBCeUjSCDPVuOsdcCuobNgSMj
aRpWVe9uTu0dgttpf4uDioB28IxSYGpY8EPVDr9/bx1yd7AQmaF69G2dqTGaXxwD4uChhZA2p15T
8eATVRY3V8HAimOKYgVj1KoANT1LUaXT3JwxOSuH+4Ou0fMnTn+pQUptrv5kCHlOqkhIzCMMl/Af
nQsEL5fdRrfuiDAbLwdJGUO2fgHE5A31YJHLwWTlu/hhP82qb6V63wyCYXyIqoQY9EqDhQDuK2DN
OFkaLmSG0hER5QrtNELOR/6MG50GBFpdC/G4rEA7/5UeQMyES8GfUISNDOchsROD1jPNQ+OFMQwt
o3MNW1koDrousYueA9fOSAXBovx0pOC76PL4b1zT9bEb0IOlp/FrsiFcWZ6QnIi0IRcVxjNzQ4OI
jLbvx0gpBxMjD+trd0c2RHPn0fC2BkOhdW8BfJS2pNH3kYCki5v27R2ZYZ0k3IVar+7Lng7/IqSL
z9g=
=dXhM
-----END PGP SIGNATURE-----

--------------2bEpM9vjDlzt86H4wgw2HRSH--

--===============2257119001348292313==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: base64
Content-Disposition: inline

Cg==

--===============2257119001348292313==--