smarty3 3.1.39-2+deb11u1 source package in Debian
Changelog
smarty3 (3.1.39-2+deb11u1) bullseye-security; urgency=high
* Non-maintainer upload.
* Fix the following CVE:
- CVE-2021-21408: template authors could run restricted static php methods
- CVE-2021-29454: template authors could run arbitrary PHP code by crafting
a malicious math string
- CVE-2022-29221: template authors could inject php code by choosing a
malicious {block} name or {include} file name
-- Markus Koschany <email address hidden> Sat, 28 May 2022 23:55:24 +0200
Upload details
- Uploaded by:
- Mike Gabriel
- Uploaded to:
- Bullseye
- Original maintainer:
- Mike Gabriel
- Architectures:
- all
- Section:
- web
- Urgency:
- Very Urgent
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bullseye | release | main | web |
Builds
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| smarty3_3.1.39-2+deb11u1.dsc | 2.1 KiB | 7a3791a709f79b840375f7f3ab384f56a5db94f9e2b60d1db2008526aac12423 |
| smarty3_3.1.39.orig.tar.gz | 258.4 KiB | d89ed84ed9bdf2697df9fb867acb03514ddafc8322e1b31860168adec91e70c2 |
| smarty3_3.1.39-2+deb11u1.debian.tar.xz | 8.8 KiB | 3af7564d1dc9fc93df05926173ba30e9718c5f7786c42091e5001948e36ccfce |
No changes file available.
