AVG-1885 log
Package | composer |
Status | Fixed |
Severity | Medium |
Type | arbitrary code execution |
Affected | 2.0.12-1 |
Fixed | 2.0.13-1 |
Current | 2.8.4-1 [extra] |
Ticket | None |
Created | Tue Apr 27 22:56:17 2021 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2021-29472 | Medium | Yes | Arbitrary code execution | A security issue was found in Composer before versions 1.10.22 and 2.0.13. URLs for Mercurial repositories in the root composer.json and package source... |