stable

composer-1.10.27-1.el7

FEDORA-EPEL-2023-3ee7f851c6 created by remi a year ago for Fedora EPEL 7

Version 1.10.27 - 2023-09-29

  • Security: Fixed possible remote code execution vulnerability if composer.phar is publicly accessible, executable as PHP, and register_argc_argv is enabled in php.ini (GHSA-jm6m-4632-36hf / CVE-2023-43655)

This update has been submitted for testing by remi.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

remi edited this update.

a year ago

This update has been pushed to testing.

a year ago

remi edited this update.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update has been pushed to stable.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
modified
a year ago
approved
a year ago
BZ#2241496 CVE-2023-43655 composer: Remote Code Execution via web-accessible composer.phar
0
0
BZ#2241497 CVE-2023-43655 composer: Remote Code Execution via web-accessible composer.phar [epel-all]
0
0

Automated Test Results