Name | TEMP-0000000-DD73A0 |
Description | Unexpected database bindings via requests (follow-up) |
Source | Automatically generated temporary name. Not for external reference. |
Vulnerable and fixed packages
The table below lists information on source packages.
Source Package | Release | Version | Status |
---|
php-laravel-framework (PTS) | bullseye | 6.20.14+dfsg-2+deb11u1 | fixed |
| bullseye (security) | 6.20.14+dfsg-2+deb11u2 | fixed |
| sid, bookworm | 8.83.26+dfsg-2 | fixed |
The information below is based on the following data on fixed versions.
Notes
https://github.com/laravel/framework/security/advisories/GHSA-x7p5-p2c9-phvg
https://github.com/illuminate/database/commit/c2d71addea1a2c79b8a4369ee57d3c08da57b601 (v6.20.14)
https://github.com/illuminate/database/commit/7797c2ae3fc9814963f0b8bb9c6c9bfd32988623 (v6.20.14)
https://github.com/illuminate/database/commit/fd2d667140194c658698310ef913043d28241c63 (v6.20.14)