4
2

More than 3 years have passed since last update.

CVE-2021-3129: Laravel 8.4.2以前で任意コードが実行される脆弱性をLaravel 6 (LTS)で修正

Last updated at Posted at 2021-02-23
  • 2021-03-03: Packagistにfacade/ignition 1.16.15 が登録されました。
  • 2021-03-03: facade/ignition 1.16.15 is now available on Packagist.

Laravel 8.4.2以前で任意コードが実行される脆弱性をLaravel 6 (LTS)で修正するには、facade/ignitionを1.16.15以降に更新すれば良いが、現時点でPackagistに登録されていないので、以下で更新する。

For Laravel 6 (LTS), to fix vulnerability of arbitrary code execution in Laravel 8.4.2 and before, you can update facade/ignition to 1.16.15 as below since it's not tagged on Packagist yet.

$ # OBSOLETE: composer require facade/ignition 1.x-dev --dev
$ composer require facade/ignition ^1.6.15 --dev

CVE-2021-3129
https://nvd.nist.gov/vuln/detail/CVE-2021-3129

4
2
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
4
2