Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports

Toggle filters

1 – 2 of 2 results

CVE-2023-29197

Medium priority

Some fixes available 3 of 9

guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\n) into both the header names and values. While...

2 affected packages

php-guzzlehttp-psr7, php-nyholm-psr7

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
php-guzzlehttp-psr7 Not affected Fixed Fixed Not in release Ignored
php-nyholm-psr7 Not affected Fixed Ignored Not in release Ignored
Show less packages

CVE-2022-24775

Medium priority

Some fixes available 2 of 6

guzzlehttp/psr7 is a PSR-7 HTTP message library. Versions prior to 1.8.4 and 2.1.1 are vulnerable to improper header parsing. An attacker could sneak in a new line character and pass untrusted values. The issue is patched in 1.8.4...

1 affected packages

php-guzzlehttp-psr7

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
php-guzzlehttp-psr7 Not affected Fixed Fixed Ignored
Show less packages