Package: php-illuminate-database Version: 5.7.27-1 Severity: important Tags: security upstream X-Debbugs-Cc: Robin Gustafsson <ro...@rgson.se>, Debian Security Team <t...@security.debian.org>
Hi, A quick look at the php-illuminate-database code, as shipped in stable, makes me think that it is probably vulnerable to CVE-2021-21263 as fixed in 6.20.11 (and its follow up in 6.20.14 since the initial fix was incomplete) already fixed in Debian testing via php-laravel-framework source. Regards David
signature.asc
Description: PGP signature