AVG-2446 log

Package composer
Status Not affected
Severity Medium
Type arbitrary command execution
Affected 2.1.8-1
Fixed 2.1.9-1
Current 2.8.4-1 [extra]
Ticket None
Created Tue Oct 5 20:12:48 2021
Issue Severity Remote Type Description
CVE-2021-41116 Medium Yes Arbitrary command execution
Windows users running Composer before version 2.1.9 to install untrusted dependencies are subject to command injection and should upgrade their composer...