Debian 8: DLA-1999-1 Moderate: Symfony Timing Attack and Code Execution

debian lts

November 18, 2019

Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to a timing attack/information leak, argument injection and code execution via unserializatio...

Topics Covered

security advisory information leak code execution debian security patch timing attack symfony

Summary

For Debian 8 "Jessie", these problems have been fixed in version
2.3.21+dfsg-4+deb8u6.

We recommend that you upgrade your symfony packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

<pre><font face="Courier">Package: symfony

Version: 2.3.21+dfsg-4+deb8u6

CVE ID: CVE-2019-18886 CVE-2019-18887 CVE-2019-18888

Topics Covered

security advisory information leak code execution debian security patch timing attack symfony

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Debian 8: DLA-1999-1 Moderate: Symfony Timing Attack and Code Execution

Topics Covered

Summary

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Debian 8: DLA-1999-1 Moderate: Symfony Timing Attack and Code Execution

Topics Covered

Summary

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!