Описание
Symfony collectionCascaded and collectionCascadedDeeply fields security bypass
When using the Validator component, if Symfony\\Component\\Validator\\Mapping\\Cache\\ApcCache is enabled (or any other cache implementing Symfony\\Component\\Validator\\Mapping\\Cache\\CacheInterface), some information is lost during serialization (the collectionCascaded and the collectionCascadedDeeply fields).
As a consequence, arrays or traversable objects stored in fields using the @Valid constraint are not traversed by the validator as soon as the validator configuration is loaded from the cache.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2013-4751
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4751
- https://exchange.xforce.ibmcloud.com/vulnerabilities/86364
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2013-4751.yaml
- https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/validator/CVE-2013-4751.yaml
- https://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released
- https://web.archive.org/web/20200228181137/http://www.securityfocus.com/bid/61709
- http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114380.html
- http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114436.html
- http://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released
Пакеты
symfony/validator
>= 2.0.0, < 2.0.24
2.0.24
symfony/validator
>= 2.1.0, < 2.1.12
2.1.12
symfony/validator
>= 2.2.0, < 2.2.5
2.2.5
symfony/validator
>= 2.3.0, < 2.3.3
2.3.3
symfony/symfony
>= 2.0.0, < 2.0.24
2.0.24
symfony/symfony
>= 2.1.0, < 2.1.12
2.1.12
symfony/symfony
>= 2.2.0, < 2.2.5
2.2.5
symfony/symfony
>= 2.3.0, < 2.3.3
2.3.3
Связанные уязвимости
php-symfony2-Validator has loss of information during serialization