Fedora 20: php-symfony Security Update

    Date18 Apr 2015
    CategoryFedora
    134
    Posted ByLinuxSecurity Advisories
    **2.5.11** (2015-04-01) * security #14167 CVE-2015-2308 (nicolas-grekas) * security #14166 CVE-2015-2309 (neclimdul)
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2015-5464
    2015-04-04 03:51:56
    --------------------------------------------------------------------------------
    
    Name        : php-symfony
    Product     : Fedora 20
    Version     : 2.5.11
    Release     : 1.fc20
    URL         : http://symfony.com
    Summary     : PHP framework for web projects
    Description :
    PHP framework for web projects
    
    --------------------------------------------------------------------------------
    Update Information:
    
    **2.5.11** (2015-04-01)
    * security #14167 CVE-2015-2308 (nicolas-grekas)
    * security #14166 CVE-2015-2309 (neclimdul)
    
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Thu Apr  2 2015 Remi Collet  - 2.5.11-1
    - Update to 2.5.11
    - security fix for CVE-2015-2308 and CVE-2015-2309
    * Wed Mar 18 2015 Remi Collet  - 2.5.10-1
    - Update to 2.5.10
    * Mon Dec 15 2014 Remi Collet  - 2.5.8-1
    - Update to 2.5.8
    * Thu Nov 20 2014 Shawn Iwinski  - 2.5.7-1
    - Updated to 2.5.7 (BZ #1166396)
    - Added php-composer(egulias/email-validator) dependency
    * Sun Nov  2 2014 Shawn Iwinski  - 2.5.6-2
    - Exclude "intl-data" test group instead of removing test files
    * Sun Nov  2 2014 Shawn Iwinski  - 2.5.6-1
    - Updated to 2.5.6 (BZ #1157502)
    - "php-twig-Twig" dependency updated to "php-composer(twig/twig)"
    - Obsoleted php-symfony-icu (data now in intl component)
    * Mon Sep 29 2014 Remi Collet  - 2.5.5-1
    - update to 2.5.5
    - hack PHPUnit autoloader to not use old system symfony
    - don't skip any Yaml test
    * Wed Sep  3 2014 Shawn Iwinski  - 2.5.4-1
    - Updated to 2.5.4 (CVE-2014-6072, CVE-2014-5245, CVE-2014-4931, CVE-2014-6061,
      CVE-2014-5244, BZ #1138285)
    - Removed test files from PropertyAccess and Stopwatch components
    - Updated skipped tests
    * Tue Aug 12 2014 Remi Collet  - 2.5.3-1
    - update to 2.5.3
    - fix test bootstrap for PHPUnit 4.2
    * Sat Jul 19 2014 Remi Collet  - 2.5.2-2
    - fix license handling
    * Fri Jul 18 2014 Shawn Iwinski  - 2.5.2-1
    - Updated to 2.5.2 (BZ #1100720)
    - Added php-composer() virtual provides
    - Updated most dependencies to use available php-composer virtual provides
    - php-password-compat conditional changed from "0%{?el6}%{?el7}" to
      ""%{php_version}" < "5.5""
    * Sat Jun  7 2014 Fedora Release Engineering  - 2.4.4-2
    - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
    * Wed Apr 30 2014 Shawn Iwinski  - 2.4.4-1
    - Updated to 2.4.4 (BZ #1038134)
    - Updated Doctrine dependencies
    - Sub-pkg phpcompatinfo without Tests directory since they are not pkged
    * Mon Feb 17 2014 Shawn Iwinski  - 2.4.2-1
    - Updated to 2.4.2 (BZ #1038134)
    - Re-enabled tests
    - Added expressionlanguage component sub-pkg
    - Added provides for security component composer sub-pkgs
    * Mon Jan 13 2014 Remi Collet  - 2.3.9-0
    - EPEL-7 bootstrap build
    * Sun Jan  5 2014 Shawn Iwinski  - 2.3.9-1
    - Updated to 2.3.9 (BZ #1038134)
    - Conditional %{?dist}
    - Minor bash cosmetic changes
    - Skip additional test relying on external resources
    - Skip additional el6 test
    * Wed Dec 18 2013 Shawn Iwinski  - 2.3.8-1
    - Updated to 2.3.8 (BZ #1038134)
    - Temporarily skip test known to fail on Fedora > 20
    * Sat Dec 14 2013 Remi Collet  - 2.3.7-4
    - fix PEAR compatibility: add missing "autoloader.php"
    --------------------------------------------------------------------------------
    
    This update can be installed with the "yum" update program.  Use
    su -c 'yum update php-symfony' at the command line.
    For more information, refer to "Managing Software with yum",
    available at http://docs.fedoraproject.org/yum/.
    
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://admin.fedoraproject.org/mailman/listinfo/package-announce
    
    You are not authorised to post comments.

    Comments powered by CComment

    LinuxSecurity Poll

    What do you think of the articles on LinuxSecurity?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/24-what-do-you-think-of-the-quality-of-the-articles-on-linuxsecurity?task=poll.vote&format=json
    24
    radio
    [{"id":"87","title":"Excellent, don't change a thing!","votes":"4","type":"x","order":"1","pct":57.14,"resources":[]},{"id":"88","title":"Should be more technical","votes":"2","type":"x","order":"2","pct":28.57,"resources":[]},{"id":"89","title":"Should include more HOWTOs","votes":"1","type":"x","order":"3","pct":14.29,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    Advisories

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.