stable

php-symfony-2.7.7-2.fc22 and php-twig-1.23.1-2.fc22

FEDORA-2015-0b89738311 created by remi 9 years ago for Fedora 22

Twig 1.23.1 (2015-11-05)

  • fixed some exception messages which triggered PHP warnings
  • fixed BC on Twig_Test_NodeTestCase

Twig 1.23.0 (2015-10-29)

  • deprecated the possibility to override an extension by registering another one with the same name
  • deprecated Twig_ExtensionInterface::getGlobals() (added Twig_Extension_GlobalsInterface for BC)
  • deprecated Twig_ExtensionInterface::initRuntime() (added Twig_Extension_InitRuntimeInterface for BC)
  • deprecated Twig_Environment::computeAlternatives()

Symfony 2.7.7 (2015-11-23)

  • security #16631 CVE-2015-8124: Session Fixation in the "Remember Me" Login Feature (xabbuh)
  • security #16630 CVE-2015-8125: Potential Remote Timing Attack Vulnerability in Security Remember-Me Service (xabbuh)
  • bug #16588 Sent out a status text for unknown HTTP headers. (dawehner)
  • bug #16295 [DependencyInjection] Unescape parameters for all types of injection (Nicofuma)
  • bug #16574 [Process] Fix PhpProcess with phpdbg runtime (nicolas-grekas)
  • bug #16578 [Console] Fix bug in windows detection (kbond)
  • bug #16546 [Serializer] ObjectNormalizer: don't serialize static methods and props (dunglas)
  • bug #16352 Fix the server variables in the router_*.php files (leofeyer)
  • bug #16537 [Validator] Allow an empty path with a non empty fragment or a query (jakzal)
  • bug #16528 [Translation] Add support for Armenian pluralization. (marcosdsanchez)
  • bug #16510 [Process] fix Proccess run with pts enabled (ewgRa)
  • bug #16292 fix race condition at mkdir (#16258) (ewgRa)
  • bug #15945 [Form] trigger deprecation warning when using empty_value (xabbuh)
  • bug #16384 [FrameworkBundle] JsonDescriptor - encode container params only once (xabbuh)
  • bug #16480 [VarDumper] Fix PHP7 type-hints compat (nicolas-grekas)
  • bug #16463 [PropertyAccess] Port of the performance optimization from 2.3 (dunglas)
  • bug #16462 [PropertyAccess] Fix dynamic property accessing. (dunglas)
  • bug #16454 [Serializer] GetSetNormalizer shouldn't set/get static methods (boekkooi)
  • bug #16453 [Serializer] PropertyNormalizer shouldn't set static properties (boekkooi)
  • bug #16471 [VarDumper] Fix casting for ReflectionParameter (nicolas-grekas)
  • bug #16294 [PropertyAccess] Major performance improvement (dunglas)
  • bug #16331 fixed Twig deprecation notices (fabpot)
  • bug #16306 [DoctrineBridge] Fix issue which prevent the profiler to explain a query (Baachi)
  • bug #16359 Use mb_detect_encoding with $strict = true (nicolas-grekas)
  • bug #16144 [Security] don't allow to install the split Security packages (xabbuh)

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2015-0b89738311

This update has been submitted for testing by remi.

9 years ago

This update has been pushed to testing.

9 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

9 years ago

This update has been submitted for stable by remi.

9 years ago

This update has been pushed to stable.

9 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
9 years ago
in testing
9 years ago
in stable
9 years ago
BZ#1285263 CVE-2015-8124 CVE-2015-8125 php-symfony: Session fixation and remote timing attack vulnerabilities
0
0
BZ#1285264 CVE-2015-8124 CVE-2015-8125 php-symfony: Session fixation and remote timing attack vulnerabilities [fedora-all]
0
0

Automated Test Results