search

KnpLabs / Gaufrette

PHP library that provides a filesystem abstraction layer − will be a feast for your files!
http://knplabs.github.io/Gaufrette
MIT License
2.47k stars 355 forks source link

Fix CVE-2023-49316 - Create new adapter for phpseclib V.3 #711

Open thereisnobugs opened 11 months ago

thereisnobugs commented 11 months ago

There is CVE-2023-49316 in package phpseclib/phpseclib < 3.0.34

What has been done

  1. Created a new adapter for phpseclib v.3
  2. Fixed namespaces in new adapter and some deprecated code
  3. Left the old PhpseclibSftp adapter to compatibility
  4. PR to https://github.com/Gaufrette/phpseclib-sftp-adapter/pull/1