search

UTCWeb / utcapiproxy

Multipurpose Laravel App
0 stars 2 forks source link

Guzzle HTTP security vulnerability #7

Open UTCGilligan opened 3 months ago

UTCGilligan commented 3 months ago 
❯ composer audit
Found 1 security vulnerability advisory affecting 1 package:
+-------------------+----------------------------------------------------------------------------------+
| Package           | guzzlehttp/psr7                                                                  |
| Severity          | medium                                                                           |
| CVE               | CVE-2023-29197                                                                   |
| Title             | Improper header validation                                                       |
| URL               | https://github.com/guzzle/psr7/security/advisories/GHSA-wxmh-65f7-jcvw           |
| Affected versions | >=2,<2.4.5|<1.9.1                                                                |
| Reported at       | 2023-04-17T16:00:00+00:00                                                        |
+-------------------+----------------------------------------------------------------------------------+
❯
UTCGilligan commented 3 months ago

Should run composer update and then run the Envoy deployment script.