--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2019-3ee6a7adf2
2019-04-27 21:35:40.510401
--------------------------------------------------------------------------------Name        : php-symfony
Product     : Fedora 28
Version     : 2.8.51
Release     : 1.fc28
URL         : https://symfony.com
Summary     : PHP framework for web projects
Description :
PHP framework for web projects

--------------------------------------------------------------------------------Update Information:

**Version 2.8.50** (2019-04-17)   * security #cve-2019-10910 [DI] Check service
IDs are valid (nicolas-grekas)  * security #cve-2019-10909
[FrameworkBundle][Form] Fix XSS issues in the form theme of the PHP templating
engine (stof)  * security #cve-2019-10912 [PHPUnit Bridge] Prevent destructors
with side-effects from being unserialized (nicolas-grekas)  * security
#cve-2019-10911 [Security] Add a separator in the remember me cookie hash
(pborreli)  * security #cve-2019-10913 [HttpFoundation] reject invalid method
override (nicolas-grekas)
--------------------------------------------------------------------------------ChangeLog:

* Thu Apr 18 2019 Remi Collet  - 2.8.51-1
- update to 2.8.51
* Sat Feb  2 2019 Fedora Release Engineering  - 2.8.49-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild
* Fri Dec  7 2018 Remi Collet  - 2.8.49-1
- update to 2.8.49
* Tue Nov 27 2018 Remi Collet  - 2.8.48-1
- update to 2.8.48
* Mon Nov  5 2018 Remi Collet  - 2.8.47-1
- update to 2.8.47
* Thu Oct 18 2018 Remi Collet  - 2.8.46-2
- ignore doctrine/data-fixtures version
* Mon Oct  1 2018 Remi Collet  - 2.8.46-1
- update to 2.8.46
* Tue Aug 28 2018 Remi Collet  - 2.8.45-1
- update to 2.8.45
- debug and ldap: add missing dependency on common
* Wed Aug  1 2018 Shawn Iwinski  - 2.8.44-1
- Update to 2.8.44 (CVE-2018-14773 / CVE-2018-14774)
* Fri Jul 13 2018 Fedora Release Engineering  - 2.8.42-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Mon Jun 25 2018 Shawn Iwinski  - 2.8.42-1
- Update to 2.8.42
* Mon May 28 2018 Remi Collet  - 2.8.41-1
- update to 2.8.41
* Thu May 24 2018 Remi Collet  - 2.8.40-1
- update to 2.8.40
* Fri May  4 2018 Remi Collet  - 2.8.39-1
- update to 2.8.39
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2019-3ee6a7adf2' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Fedora 28: php-symfony Security Update 2019-3ee6a7adf2

April 27, 2019
**Version 2.8.50** (2019-04-17) * security #cve-2019-10910 [DI] Check service IDs are valid (nicolas-grekas) * security #cve-2019-10909 [FrameworkBundle][Form] Fix XSS issues in t...

Summary

PHP framework for web projects

**Version 2.8.50** (2019-04-17) * security #cve-2019-10910 [DI] Check service

IDs are valid (nicolas-grekas) * security #cve-2019-10909

[FrameworkBundle][Form] Fix XSS issues in the form theme of the PHP templating

engine (stof) * security #cve-2019-10912 [PHPUnit Bridge] Prevent destructors

with side-effects from being unserialized (nicolas-grekas) * security

#cve-2019-10911 [Security] Add a separator in the remember me cookie hash

(pborreli) * security #cve-2019-10913 [HttpFoundation] reject invalid method

override (nicolas-grekas)

* Thu Apr 18 2019 Remi Collet - 2.8.51-1

- update to 2.8.51

* Sat Feb 2 2019 Fedora Release Engineering - 2.8.49-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild

* Fri Dec 7 2018 Remi Collet - 2.8.49-1

- update to 2.8.49

* Tue Nov 27 2018 Remi Collet - 2.8.48-1

- update to 2.8.48

* Mon Nov 5 2018 Remi Collet - 2.8.47-1

- update to 2.8.47

* Thu Oct 18 2018 Remi Collet - 2.8.46-2

- ignore doctrine/data-fixtures version

* Mon Oct 1 2018 Remi Collet - 2.8.46-1

- update to 2.8.46

* Tue Aug 28 2018 Remi Collet - 2.8.45-1

- update to 2.8.45

- debug and ldap: add missing dependency on common

* Wed Aug 1 2018 Shawn Iwinski - 2.8.44-1

- Update to 2.8.44 (CVE-2018-14773 / CVE-2018-14774)

* Fri Jul 13 2018 Fedora Release Engineering - 2.8.42-2

- Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild

* Mon Jun 25 2018 Shawn Iwinski - 2.8.42-1

- Update to 2.8.42

* Mon May 28 2018 Remi Collet - 2.8.41-1

- update to 2.8.41

* Thu May 24 2018 Remi Collet - 2.8.40-1

- update to 2.8.40

* Fri May 4 2018 Remi Collet - 2.8.39-1

- update to 2.8.39

su -c 'dnf upgrade --advisory FEDORA-2019-3ee6a7adf2' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

FEDORA-2019-3ee6a7adf2 2019-04-27 21:35:40.510401 Product : Fedora 28 Version : 2.8.51 Release : 1.fc28 URL : https://symfony.com Summary : PHP framework for web projects Description : PHP framework for web projects **Version 2.8.50** (2019-04-17) * security #cve-2019-10910 [DI] Check service IDs are valid (nicolas-grekas) * security #cve-2019-10909 [FrameworkBundle][Form] Fix XSS issues in the form theme of the PHP templating engine (stof) * security #cve-2019-10912 [PHPUnit Bridge] Prevent destructors with side-effects from being unserialized (nicolas-grekas) * security #cve-2019-10911 [Security] Add a separator in the remember me cookie hash (pborreli) * security #cve-2019-10913 [HttpFoundation] reject invalid method override (nicolas-grekas) * Thu Apr 18 2019 Remi Collet - 2.8.51-1 - update to 2.8.51 * Sat Feb 2 2019 Fedora Release Engineering - 2.8.49-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild * Fri Dec 7 2018 Remi Collet - 2.8.49-1 - update to 2.8.49 * Tue Nov 27 2018 Remi Collet - 2.8.48-1 - update to 2.8.48 * Mon Nov 5 2018 Remi Collet - 2.8.47-1 - update to 2.8.47 * Thu Oct 18 2018 Remi Collet - 2.8.46-2 - ignore doctrine/data-fixtures version * Mon Oct 1 2018 Remi Collet - 2.8.46-1 - update to 2.8.46 * Tue Aug 28 2018 Remi Collet - 2.8.45-1 - update to 2.8.45 - debug and ldap: add missing dependency on common * Wed Aug 1 2018 Shawn Iwinski - 2.8.44-1 - Update to 2.8.44 (CVE-2018-14773 / CVE-2018-14774) * Fri Jul 13 2018 Fedora Release Engineering - 2.8.42-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Mon Jun 25 2018 Shawn Iwinski - 2.8.42-1 - Update to 2.8.42 * Mon May 28 2018 Remi Collet - 2.8.41-1 - update to 2.8.41 * Thu May 24 2018 Remi Collet - 2.8.40-1 - update to 2.8.40 * Fri May 4 2018 Remi Collet - 2.8.39-1 - update to 2.8.39 su -c 'dnf upgrade --advisory FEDORA-2019-3ee6a7adf2' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Change Log

References

Update Instructions

Severity
Product : Fedora 28
Version : 2.8.51
Release : 1.fc28
URL : https://symfony.com
Summary : PHP framework for web projects

Related News

4.Lock AbstractDigital Esm H320
2 - 3 min read
Recent research sheds light on the security vulnerabilities prevalent in Linux vendor kernels due to flawed engineering processes that backport
28.Lock Globe Esm H320
1 - 2 min read
The intersection of Linux and quantum computing has become increasingly apparent, emphasizing the importance of Linux-based operating systems in
6.EmailConnection Touch Esm H320
2 - 3 min read
Recent security updates for Ubuntu and Debian have been released to address vulnerabilities in Thunderbird, the popular open-source mail and
30.Lock Globe Motherboard Esm H320
1 - 2 min read
As cybersecurity practitioners, we are no strangers to the constant threat of malicious actors and the importance of remaining vigilant to protect
22.Lock ScreenEffect Esm H320
1 - 2 min read
EndeavorOS Gemini is a captivating and charming desktop operating system based on Arch Linux. The new release includes a kernel upgrade, 3D graphics
25.@Sign Hook Keyboard Esm H320
1 min read
Cyber risk is increasing for individuals and organizations, making flexible and robust solutions for identifying spam and malware increasingly
19.Laptop Bed Esm H320
2 - 3 min read
The recently released Linux Kernel 6.9 brings forth a blend of crucial upgrades and enhancements, catering to the ever-evolving needs of the Linux
4.Lock AbstractDigital Esm H320
1 - 2 min read
Nmap 7.95 introduces myriad enhancements, primarily focusing on OS and service detection signatures. This reflects the dedication of the Nmap

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved