Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
phpc.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A server for PHP programmers & friends. Join us for discussions on the PHP programming language, frameworks, packages, tools, open source, tech, life, and more.

Administered by:

Server stats:

840
active users

phpc.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.6

Public *
Wouter de Jong

Someone has created bogus CVE reports for Symfony (CVE-2024-36611 and CVE-2024-36610).

You might experience warnings from `composer audit` or other tools about these bogus CVEs when using Symfony components <7.1.

These MUST BE IGNORED, the reports are NOT security issues.

We're trying to find out how we can solve this. If someone has experience with this, please let us know!

#symfony
Wouter de Jong

Fortunately, the biggest advisory databases in PHP have responded quickly and the bogus Symfony security advisories are withdrawn from Packagist, Roave and GitHub.

Hopefully this has mitigated the impact for all projects.

Thanks to everyone involved!

Dec 03, 2024, 04:50 PM·Quiet public·Tusky
2boosts·2favorites
SearchLive feeds
About