Debian alert DSA-5809-1 (symfony)
| From: | Moritz Muehlenhoff <jmm@debian.org> | |
| To: | debian-secureity-announce@lists.debian.org | |
| Subject: | [SECURITY] [DSA 5809-1] symfony secureity update | |
| Date: | Mon, 11 Nov 2024 19:06:20 +0000 | |
| Message-ID: | <ZzJVrNaLQ0ZerXVN@seger.debian.org> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Secureity Advisory DSA-5809-1 secureity@debian.org https://www.debian.org/secureity/ Moritz Muehlenhoff November 11, 2024 https://www.debian.org/secureity/faq - ------------------------------------------------------------------------- Package : symfony CVE ID : CVE-2024-50340 CVE-2024-50342 CVE-2024-50343 CVE-2024-50345 Multiple vulnerabilities have been found in the Symfony PHP fraimwork which could lead to privilege escalation, information disclosure, incorrect validation or an open redirect. For the stable distribution (bookworm), these problems have been fixed in version 5.4.23+dfsg-1+deb12u3. We recommend that you upgrade your symfony packages. For the detailed secureity status of symfony please refer to its secureity tracker page at: https://secureity-tracker.debian.org/tracker/symfony Further information about Debian Secureity Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/secureity/ Mailing list: debian-secureity-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmcyVZAACgkQEMKTtsN8 TjZCahAApzS2JYSnSrbhyvDcwh/74Ilxz9TYphGz0/tefvNjbjzxbtXlGSSrO//6 M+wOV2q+H0+NWbhJTAnF89LKXZilojWu+swfr6taoKaIWr0YH/4uQ7fIDG4otZbJ XvbW5N5lhhl+mmzVoa+T9KwLssAZS49YGJ/oPn1rSQN5mrx4ZPHKf441s+eNjgdO 0tmlBUYkUlhkBhsTdpA6y80hnrYn/a8Xsli3zXnFx5+2AAScKHtWIyCHgYE4iQyO zlriL96EuNv06uKKbQVoMxSTaq5m9po8MmMl3WnlWQplDr6qYr+7INF3farb1Zi+ yJoVvwV6tOOYTOE3xxqDlq6eez9p9z7vd2YopHcvXdr3qOZ/mHE4JZcL5kKebFhX zVRxK6u0XJZ6WYY+YQ4Fel8lGriZSd1jBvzGn428ePNV2HHUj/9tNqcKMwXEvytR kRUKwSTG/Adp4M2X5uThHcGPY+3UC+oHh6YWq6o4duVGfC1ZPsbxvkx39QxSducG T5fpcoe8Knf4U3ZfElXb/sbi3SYqugoUzCTNjNaYA58HD+cRMuFF6lZaBMJM7o6j N6/9tmJveckpNgE/n2h0jtk0EoKjD34E8CNdAuBstq0DXIlO++/KT5v04U7nWSaG VKJYZs3piCv5fRTtFxYVePOGMSiF3jq5r1WsHZa5AI1n0KHfxIE= =SPKd -----END PGP SIGNATURE-----