View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0032432 | mantisbt | security | public | 2023-04-20 05:39 | 2023-10-14 12:28 |
Reporter | dregad | Assigned To | dregad | ||
Priority | high | Severity | major | Reproducibility | have not tried |
Status | closed | Resolution | fixed | ||
Target Version | 2.25.8 | Fixed in Version | 2.25.8 | ||
Summary | 0032432: Update guzzlehttp/psr7 to 1.9.1 | ||||
Description | Fixes a vulnerability (CVE-2023-29197), see https://github.com/mantisbt/mantisbt/security/dependabot/9 | ||||
Tags | No tags attached. | ||||
MantisBT: master-2.25 d7263eea 2023-04-19 17:21 dependabot[bot] Committer: dregad Details Diff |
Bump guzzlehttp/psr7 from 1.9.0 to 1.9.1 Fixes 0032432, PR https://github.com/mantisbt/mantisbt/pull/1882 Bumps [guzzlehttp/psr7](https://github.com/guzzle/psr7) from 1.9.0 to 1.9.1. - [Release notes](https://github.com/guzzle/psr7/releases) - [Changelog](https://github.com/guzzle/psr7/blob/1.9.1/CHANGELOG.md) - [Commits](https://github.com/guzzle/psr7/compare/1.9.0...1.9.1) --- updated-dependencies: - dependency-name: guzzlehttp/psr7 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Damien Regad <dregad@mantisbt.org> |
Affected Issues 0032432 |
|
mod - composer.lock | Diff File |