security update in Fedora 28 for php-symfony3

Status: stable 5 months ago

Version 3.4.20 (2018-12-06)

  • security CVE-2018-19790 [Security\Http] detect bad redirect targets using backslashes (@xabbuh)
  • security CVE-2018-19789 [Form] Filter file uploads out of regular form types (@nicolas-grekas)
  • bug #29436 [Cache] Fixed Memcached adapter doClear()to call flush() (raitocz)
  • bug #29441 [Routing] ignore trailing slash for non-GET requests (nicolas-grekas)
  • bug #29432 [DI] dont inline when lazy edges are found (nicolas-grekas)
  • bug #29413 [Serializer] fixed DateTimeNormalizer to maintain microseconds when a different timezone required (rvitaliy)
  • bug #29424 [Routing] fix taking verb into account when redirecting (nicolas-grekas)
  • bug #29414 [DI] Fix dumping expressions accessing single-use private services (chalasr)
  • bug #29375 [Validator] Allow ConstraintViolation::__toString() to expose codes that are not null or emtpy strings (phansys)
  • bug #29376 [EventDispatcher] Fix eventListener wrapper loop in TraceableEventDispatcher (jderusse)
  • bug #29343 [Form] Handle all case variants of "nan" when parsing a number (mwhudson, xabbuh)
  • bug #29355 [PropertyAccess] calculate cache keys for property setters depending on the value (xabbuh)
  • bug #29369 [DI] fix combinatorial explosion when analyzing the service graph (nicolas-grekas)
  • bug #29349 [Debug] workaround opcache bug mutating "$this" !?! (nicolas-grekas)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-66547a8c14

Comments 7

This update has been submitted for testing by remi.

remi edited this update.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by remi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

Content Type
Test Gating
Submitted by
Update Type
Update Severity
stable threshold: 3
unstable threshold: -3
submitted 5 months ago
in testing 5 months ago
in stable 5 months ago
modified 5 months ago

Automated Test Results