Search for packages
| purl | pkg:composer/symfony/validator@5.4.43 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-fhmx-pjm9-zqdd | Symfony has an incorrect response from Validator when input ends with `\n` ### Description It is possible to trick a `Validator` configured with a regular expression using the `$` metacharacters, with an input ending with `\n`. ### Resolution Symfony now uses the `D` regex modifier to match the entire input. The patch for this issue is available [here](https://github.com/symfony/symfony/commit/7d1032bbead9a4229b32fa6ebca32681c80cb76f) for branch 5.4. ### Credits We would like to thank Offscript for reporting the issue and Alexandre Daubois for providing the fix. |
CVE-2024-50343
GHSA-g3rh-rrhp-jhh9 |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T19:14:58.314755+00:00 | GitLab Importer | Fixing | VCID-fhmx-pjm9-zqdd | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/validator/CVE-2024-50343.yml | 37.0.0 |
| 2025-07-03T13:57:23.624079+00:00 | GitLab Importer | Fixing | VCID-fhmx-pjm9-zqdd | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/symfony/validator/CVE-2024-50343.yml | 36.1.3 |
| 2025-07-01T14:35:46.950201+00:00 | GHSA Importer | Fixing | VCID-fhmx-pjm9-zqdd | https://github.com/advisories/GHSA-g3rh-rrhp-jhh9 | 36.1.3 |
| 2025-07-01T12:10:37.559974+00:00 | GithubOSV Importer | Fixing | VCID-fhmx-pjm9-zqdd | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/11/GHSA-g3rh-rrhp-jhh9/GHSA-g3rh-rrhp-jhh9.json | 36.1.3 |