Mehrere Probleme in php-symfony3
ID: | FEDORA-2018-c8ddc44bbb |
Distribution: | Fedora |
Plattformen: | Fedora 27 |
Datum: | So, 8. Juli 2018, 00:39 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11407
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11386 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16652 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11385 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11406 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11408 |
Applikationen: | symfony |
Originalnachricht |
|
-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-c8ddc44bbb 2018-07-07 22:15:58.361056 -------------------------------------------------------------------------------- Name : php-symfony3 Product : Fedora 27 Version : 3.3.17 Release : 1.fc27 URL : http://symfony.com Summary : Symfony PHP framework (version 3) Description : Symfony PHP framework (version 3). NOTE: Does not require PHPUnit bridge. -------------------------------------------------------------------------------- Update Information: ## 3.3.17 (2018-05-25) * security #cve-2018-11407 [Ldap] cast to string when checking empty passwords * security #cve-2018-11408 [SecurityBundle] Fail if security.http_utils cannot be configured * security #cve-2018-11406 clear CSRF tokens when the user is logged out * security #cve-2018-11385 migrating session for UsernamePasswordJsonAuthenticationListener * security #cve-2018-11386 [HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 25 2018 Shawn Iwinski |