-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 01 Feb 2023 19:25:18 +0100 Source: symfony Architecture: source Version: 5.4.20+dfsg-1 Distribution: unstable Urgency: medium Maintainer: Debian PHP PEAR Maintainers <pkg-php-pear@lists.alioth.debian.org> Changed-By: David Prévot <taffit@debian.org> Changes: symfony (5.4.20+dfsg-1) unstable; urgency=medium . [ Nicolas Grekas ] * [HttpKernel] Remove private headers before storing responses with HttpCache [CVE-2022-24894] * [Security/Http] Remove CSRF tokens from storage on successful login [CVE-2022-24895] . [ Fabien Potencier ] * Update VERSION for 5.4.20 Checksums-Sha1: 813eeb3649251f7364a433d3c94cc1b7d9b01d4e 13201 symfony_5.4.20+dfsg-1.dsc 63c8da813f53bc3ab159314d1ae57997333834b6 4906148 symfony_5.4.20+dfsg.orig.tar.xz 6fca4376ef6ac62bdba90eec17b7f50315e0f78b 57812 symfony_5.4.20+dfsg-1.debian.tar.xz c4b2afde503bba77200a2022e4d8952fd5637e2e 53571 symfony_5.4.20+dfsg-1_amd64.buildinfo Checksums-Sha256: ea51b2bd416032b192827a4edd0525ea9c4e21620d7734b11324b17bb551dc3f 13201 symfony_5.4.20+dfsg-1.dsc 06b0e16683cf3d0c1740b9bb76894ac5eca0ce6dc60370857e32655c1ae2f67b 4906148 symfony_5.4.20+dfsg.orig.tar.xz 373b0adde477e65c8e92a637f8efb05d5d60c6509f843409d98e5d401c7e7a06 57812 symfony_5.4.20+dfsg-1.debian.tar.xz eec3a6214e22bbc94577f9c65b61676a377d378f37d97718d9a946c26ef0090a 53571 symfony_5.4.20+dfsg-1_amd64.buildinfo Files: 89989d087d188c51f021d27c817e04db 13201 php optional symfony_5.4.20+dfsg-1.dsc fa1125a4306afdb22eb72e5201fd72b4 4906148 php optional symfony_5.4.20+dfsg.orig.tar.xz 232438cf3d3b2f78de817b9b800f9b30 57812 php optional symfony_5.4.20+dfsg-1.debian.tar.xz 9e818f1c385ae0c234438cb6178a52f6 53571 php optional symfony_5.4.20+dfsg-1_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQFGBAEBCAAwFiEEeHVNB7wJXHRI941mBYwc+UT2vTwFAmPaskcSHHRhZmZpdEBk ZWJpYW4ub3JnAAoJEAWMHPlE9r08CdQIAIENDRG4wrawnkEIKHkeDfpZOlEe6ydl mTUmOT+NueSdEqntLXTfHuUcy0oA2g9lvRXufVC99+1tazHdR971gDSnVAwjojNk UueeVEmqKwJMD1cIt2fMKkJXuDJuUpQKsmy4lbiMeYlGdEWjfGQMhTEsYJNrsuym 9YWlCZmPRbg+0qlqCOJ7Arx5Ryt4ZgfwjsNQViY0oEIChEEb+QJOCp+mniWqxjQI SpACpv3ukNV3/vkdLWstDW+LKYh8khR1foqtj7pHgxfOt/9mPhLtgSvMFncJRCe2 eu/QUW+CcfJxI6veSFmmndIu3m6OuNk68oCqI8NbLNEBHIFoKxyT2cs= =Q7SE -----END PGP SIGNATURE-----