Skip to content

Commit a942cbb

Browse files
wouterjwouterj
committed
security #5323 [Contributing][Security] add CVE-2015-4050 (xabbuh)
This PR was merged into the 2.3 branch. Discussion ---------- [Contributing][Security] add CVE-2015-4050 | Q | A | ------------- | --- | Doc fix? | no | New docs? | no | Applies to | all | Fixed tickets | Commits ------- 8c6afd8 [Contributing][Security] add CVE-2015-4050
2 parents 65817d3 + 8c6afd8 commit a942cbb

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

contributing/code/security.rst

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -96,6 +96,7 @@ Security Advisories
9696
This section indexes security vulnerabilities that were fixed in Symfony
9797
releases, starting from Symfony 1.0.0:
9898

99+
* May 26, 2015: `CVE-2015-4050: ESI unauthorized access <http://symfony.com/blog/cve-2015-4050-esi-unauthorized-access>`_ (Symfony 2.3.29, 2.5.12 and 2.6.8)
99100
* April 1, 2015: `CVE-2015-2309: Unsafe methods in the Request class <http://symfony.com/blog/cve-2015-2309-unsafe-methods-in-the-request-class>`_ (Symfony 2.3.27, 2.5.11 and 2.6.6)
100101
* April 1, 2015: `CVE-2015-2308: Esi Code Injection <http://symfony.com/blog/cve-2015-2308-esi-code-injection>`_ (Symfony 2.3.27, 2.5.11 and 2.6.6)
101102
* September 3, 2014: `CVE-2014-6072: CSRF vulnerability in the Web Profiler <http://symfony.com/blog/cve-2014-6072-csrf-vulnerability-in-the-web-profiler>`_ (Symfony 2.3.19, 2.4.9 and 2.5.4)

0 commit comments

Comments
 (0)