—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA512<\/p>\n
– ————————————————————————-
Debian Security Advisory DSA-5771-1 security@debian.org
https:\/\/www.debian.org\/security\/ Moritz Muehlenhoff
September 17, 2024 https:\/\/www.debian.org\/security\/faq
– ————————————————————————-<\/p>\n
Package : php-twig
CVE ID : CVE-2024-45411<\/p>\n
Fabien Potencier discovered that under some conditions the sandbox
mechanism of Twig, a template engine for PHP, could by bypassed.<\/p>\n
For the stable distribution (bookworm), this problem has been fixed in
version 3.5.1-1+deb12u1.<\/p>\n
We recommend that you upgrade your php-twig packages.<\/p>\n
For the detailed security status of php-twig please refer to
its security tracker page at:
https:\/\/security-tracker.debian.org\/tracker\/php-twig<\/p>\n
Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https:\/\/www.debian.org\/security\/<\/p>\n
Mailing list: debian-security-announce@lists.debian.org
—–BEGIN PGP SIGNATURE—–<\/p>\n
iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmbp6wEACgkQEMKTtsN8
TjbMmw\/9EQoKouvCA3UV7O8WQPnfbILtLGGR4ezpswEqDtV1BRJTtGsa0BL5P4RY
7ut8k9pLs\/yyUtAjzk5CwikchUFaOYyK8ZHlHugOj3QC2AtdyP8WEqeM226rIqUb
TUdO1wcpzVTN4HTl4pKbHYRYNGa8O16sDQsiM805zdauLnbM+LJJpBmoaok6dcg9
cNHQ0nUinMoFPU2f2Ap2tDzre+r1CJ8tNajEhD8FZFSXX+50hgooS6hSBA4yATNa
MrOYuXetNgG+hF+7LI5zJnERLhzCFiqNc0Kx3G9YWhUNAsIkURB5PIyUQf1Oi4hr
iUfRGY1MuR7qhCZiDJF3PJxX99eRAijO8wx+pm0FqD8lhQE6X2yniCEY0Nv4ofWX
5VAoG7MnZXbFnYGlmoAcqs3BjlYLCX9p11fkfZpOfFyuOyEYVMNJbf8wYB0PIyfz
bcf9PiBkV2HdawCUmZEqo4MKJ1\/4RpLMk28VZbbD4vGlldGSG9gjSG+r2gfqHKay
Vvfmp\/N0gWaD3H0PQ8NZdXWidqrdy4SmeFLclNC0gYC9XqVe6Xa1PgDgRNw4mdqx
uI68\/orZeQC3eeXSEjhk41iXDRaWZMG5PFIXAubpFnRrnje+uIl1xNP99w8y\/qLR
FOWHOYo9\/\/0j6\/ohNxJEX44l9zbIphiO8ljPUYu4Ai2eozwdxFE=
=WH+j
—–END PGP SIGNATURE—–<\/p>\n","protected":false},"excerpt":{"rendered":"
—–BEGIN PGP SIGNED MESSAGE—–Hash: SHA512 – ————————————————————————-Debian Security Advisory DSA-5771-1 security@debian.orghttps:\/\/www.debian.org\/security\/ Moritz MuehlenhoffSeptember 17, 2024 https:\/\/www.debian.org\/security\/faq– ————————————————————————- Package : php-twigCVE ID : CVE-2024-45411 Fabien Potencier discovered that under some conditions the sandboxmechanism of Twig, a template engine for PHP, could by bypassed. For the stable distribution (bookworm), this problem has been fixed inversion 3.5.1-1+deb12u1. We …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-59781","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59781","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=59781"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/59781\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=59781"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=59781"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=59781"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}