DSA-3248-1

Source
https://storage.googleapis.com/debian-osv/dsa-osv/DSA-3248-1.json
Aliases
Published
2015-05-02T00:00:00Z
Modified
2022-08-10T07:06:28.588684Z
Details

It was discovered that missing input saniting in Snoopy, a PHP class that simulates a web browser may result in the execution of arbitrary commands.

For the oldstable distribution (wheezy), this problem has been fixed in version 2.0.0-1~deb7u1.

For the stable distribution (jessie), this problem was fixed before the initial release.

For the unstable distribution (sid), this problem has been fixed in version 2.0.0-1.

We recommend that you upgrade your libphp-snoopy packages.

References

Affected packages

Debian:7 / libphp-snoopy

libphp-snoopy

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
2.0.0-1~deb7u1

Affected versions

1.*

1.2.4-2

2.*

2.0.0-1~deb6u1