Cyku Hong discovered that Nette was not properly handling and validating data used for code generation. A remote attacker could possibly use this issue to execute arbitrary code.
{ "availability": "Available with Ubuntu Pro: https://ubuntu.com/pro", "binaries": [ { "binary_version": "2.3.8-1ubuntu1+esm1", "binary_name": "php-nette" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "2.4-20160731-1ubuntu0.1", "binary_name": "php-nette" } ] }