Search CVE reports
1 – 2 of 2 results
CVE-2023-29197
Medium prioritySome fixes available 3 of 9
guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. Affected versions are subject to improper header parsing. An attacker could sneak in a newline (\n) into both the header names and values. While...
2 affected packages
php-guzzlehttp-psr7, php-nyholm-psr7
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| php-guzzlehttp-psr7 | Not affected | Fixed | Fixed | Not in release | Ignored |
| php-nyholm-psr7 | Not affected | Fixed | Ignored | Not in release | Ignored |
CVE-2022-24775
Medium prioritySome fixes available 2 of 6
guzzlehttp/psr7 is a PSR-7 HTTP message library. Versions prior to 1.8.4 and 2.1.1 are vulnerable to improper header parsing. An attacker could sneak in a new line character and pass untrusted values. The issue is patched in 1.8.4...
1 affected packages
php-guzzlehttp-psr7
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
|---|---|---|---|---|---|
| php-guzzlehttp-psr7 | Not affected | Fixed | Fixed | — | Ignored |