[pkg-php-pear] Bug#1120661: trixie-pu: package symfony/6.4.21+dfsg-2+deb13u1
David Prévot
taffit at debian.org
Fri Nov 14 04:33:35 GMT 2025
Package: release.debian.org
Severity: normal
Tags: trixie
X-Debbugs-Cc: symfony at packages.debian.org, Debian PHP PEAR Maintainers <pkg-php-pear at lists.alioth.debian.org>
Control: affects -1 + src:symfony
User: release.debian.org at packages.debian.org
Usertags: pu
Hi,
As agreed with the security team, I’d like to see CVE-2025-64500 fixed
in trixie. The patch is minimal, and only affects
php-symfony-http-foundation that is not part of the dependency chain of
any end-user package AFAICT.
[ Checklist ]
[x] *all* changes are documented in the d/changelog
[x] I reviewed all changes and I approve them
[x] attach debdiff against the package in (old)stable
[x] the issue is verified as fixed in unstable
Thanks in advance.
Regards,
taffit
-------------- next part --------------
A non-text attachment was scrubbed...
Name: trixie.patch
Type: text/x-diff
Size: 6276 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-php-pear/attachments/20251114/a23f678b/attachment-0002.patch>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 488 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-php-pear/attachments/20251114/a23f678b/attachment-0002.sig>
More information about the pkg-php-pear
mailing list