diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-24 21:40:06 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-11-24 21:41:19 +0100 |
| commit | 12c10b52303ad502efc4242f9648f386c203f6b4 (patch) | |
| tree | b432c35aded0b0a017385b2819539ebf5c6578d4 | |
| parent | c812c4e7b5564649425ca7af6e2534c130858231 (diff) | |
Update status for CVE-2021-41267/symfony
A vulnerable version was never in unstable. The issue got introduced in
5.2.0 upstream. Later to unstable was uploaded directly 5.3.12
(following some experimental uploads) which contains the fix.
| -rw-r--r-- | data/CVE/list.2021 | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index 43da89fd45..5ee009f71a 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -6803,7 +6803,7 @@ CVE-2021-41269 (cron-utils is a Java library to define, parse, validate, migrate CVE-2021-41268 (Symfony/SecurityBundle is the security system for Symfony, a PHP frame ...) TODO: check CVE-2021-41267 (Symfony/Http-Kernel is the HTTP kernel component for Symfony, a PHP fr ...) - - symfony 5.3.12+dfsg-1 + - symfony <not-affected> (Vulnerable code never in released version in unstable) NOTE: https://github.com/symfony/symfony/security/advisories/GHSA-q3j3-w37x-hq2q NOTE: https://github.com/symfony/symfony/commit/95dcf51682029e89450aee86267e3d553aa7c487 (v5.3.12) TODO: check |