stable

php-symfony-2.7.7-2.fc22 and php-twig-1.23.1-2.fc22

FEDORA-2015-0b89738311 created by remi 7 years ago for Fedora 22

Twig 1.23.1 (2015-11-05)

  • fixed some exception messages which triggered PHP warnings
  • fixed BC on Twig_Test_NodeTestCase

Twig 1.23.0 (2015-10-29)

  • deprecated the possibility to override an extension by registering another one with the same name
  • deprecated Twig_ExtensionInterface::getGlobals() (added Twig_Extension_GlobalsInterface for BC)
  • deprecated Twig_ExtensionInterface::initRuntime() (added Twig_Extension_InitRuntimeInterface for BC)
  • deprecated Twig_Environment::computeAlternatives()

Symfony 2.7.7 (2015-11-23)

  • security #16631 CVE-2015-8124: Session Fixation in the "Remember Me" Login Feature (xabbuh)
  • security #16630 CVE-2015-8125: Potential Remote Timing Attack Vulnerability in Security Remember-Me Service (xabbuh)
  • bug #16588 Sent out a status text for unknown HTTP headers. (dawehner)
  • bug #16295 [DependencyInjection] Unescape parameters for all types of injection (Nicofuma)
  • bug #16574 [Process] Fix PhpProcess with phpdbg runtime (nicolas-grekas)
  • bug #16578 [Console] Fix bug in windows detection (kbond)
  • bug #16546 [Serializer] ObjectNormalizer: don't serialize static methods and props (dunglas)
  • bug #16352 Fix the server variables in the router_*.php files (leofeyer)
  • bug #16537 [Validator] Allow an empty path with a non empty fragment or a query (jakzal)
  • bug #16528 [Translation] Add support for Armenian pluralization. (marcosdsanchez)
  • bug #16510 [Process] fix Proccess run with pts enabled (ewgRa)
  • bug #16292 fix race condition at mkdir (#16258) (ewgRa)
  • bug #15945 [Form] trigger deprecation warning when using empty_value (xabbuh)
  • bug #16384 [FrameworkBundle] JsonDescriptor - encode container params only once (xabbuh)
  • bug #16480 [VarDumper] Fix PHP7 type-hints compat (nicolas-grekas)
  • bug #16463 [PropertyAccess] Port of the performance optimization from 2.3 (dunglas)
  • bug #16462 [PropertyAccess] Fix dynamic property accessing. (dunglas)
  • bug #16454 [Serializer] GetSetNormalizer shouldn't set/get static methods (boekkooi)
  • bug #16453 [Serializer] PropertyNormalizer shouldn't set static properties (boekkooi)
  • bug #16471 [VarDumper] Fix casting for ReflectionParameter (nicolas-grekas)
  • bug #16294 [PropertyAccess] Major performance improvement (dunglas)
  • bug #16331 fixed Twig deprecation notices (fabpot)
  • bug #16306 [DoctrineBridge] Fix issue which prevent the profiler to explain a query (Baachi)
  • bug #16359 Use mb_detect_encoding with $strict = true (nicolas-grekas)
  • bug #16144 [Security] don't allow to install the split Security packages (xabbuh)

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2015-0b89738311

This update has been submitted for testing by remi.

7 years ago

This update has been pushed to testing.

7 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

7 years ago

This update has been submitted for stable by remi.

7 years ago

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
BZ#1285263 CVE-2015-8124 CVE-2015-8125 php-symfony: Session fixation and remote timing attack vulnerabilities
0
0
BZ#1285264 CVE-2015-8124 CVE-2015-8125 php-symfony: Session fixation and remote timing attack vulnerabilities [fedora-all]
0
0

Automated Test Results