[pkg-php-pear] Bug#1034597: cloning 1034581, reassign -1 to php-nyholm-psr7
Salvatore Bonaccorso
carnil at debian.org
Wed Apr 19 07:33:17 BST 2023
Control: retitle -1 php-nyholm-psr7: CVE-2023-29197: Improper Input Validation
Hi David,
On Wed, Apr 19, 2023 at 08:29:49AM +0200, Salvatore Bonaccorso wrote:
> Hi David,
>
> On Wed, Apr 19, 2023 at 07:58:46AM +0200, David Prévot wrote:
> > clone 1034581 -1
> > reassign -1 php-nyholm-psr7 1.5.1-1
> > thanks
>
> FWIW, I do not know (yet) if myholm-psr7 will get a own CVE for it.
> php-slim-psr7 did in fact got one (see #1034580).
Okay, actually the project is using CVE-2023-29197 as well per
https://github.com/Nyholm/psr7/security/advisories/GHSA-wjfc-pgfp-pv9c
.
Added it as such as well to the tracker.
Regards,
Salvatore
More information about the pkg-php-pear
mailing list