FEDORA-2018-eba0006df2 created by remi 2 years ago for Fedora 28
stable

Version 2.8.41 (2018-05-25)

  • bug #27359 [HttpFoundation] Fix perf issue during MimeTypeGuesser intialization (nicolas-grekas)
  • security #cve-2018-11408 [SecurityBundle] Fail if security.http_utils cannot be configured
  • security #cve-2018-11406 clear CSRF tokens when the user is logged out
  • security #cve-2018-11385 Adding session authentication strategy to Guard to avoid session fixation
  • security #cve-2018-11385 Adding session strategy to ALL listeners to avoid any possible fixation
  • security #cve-2018-11386 [HttpFoundation] Break infinite loop in PdoSessionHandler when MySQL is in loose mode

Version 2.8.40 (2018-05-21)

  • bug #26781 [Form] Fix precision of MoneyToLocalizedStringTransformer's divisions on transform() (syastrebov)
  • bug #27286 [Translation] Add Occitan plural rule (kylekatarnls)
  • bug #27246 Disallow invalid characters in session.name (ostrolucky)
  • bug #24805 [Security] Fix logout (MatTheCat)
  • bug #27141 [Process] Suppress warnings when open_basedir is non-empty (cbj4074)
  • bug #27250 [Session] limiting :key for GET_LOCK to 64 chars (oleg-andreyev)
  • bug #27237 [Debug] Fix populating error_get_last() for handled silent errors (nicolas-grekas)
  • bug #27236 [Filesystem] Fix usages of error_get_last() (nicolas-grekas)
  • bug #27152 [HttpFoundation] use brace-style regex delimiters (xabbuh)
  • feature #24896 Add CODE_OF_CONDUCT.md (egircys)

How to install

sudo dnf upgrade --advisory=FEDORA-2018-eba0006df2

This update has been submitted for testing by remi.

2 years ago

This update has obsoleted php-symfony-2.8.40-1.fc28, and has inherited its bugs and notes.

2 years ago

This update has been pushed to testing.

2 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for batched by remi.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago

Automated Test Results