A week of symfony #606 (6-12 August 2018)

This week Symfony fixed some circular reference issues and improved the performance of the lint:xliff command. In addition, the Symfony and Twig certifications announced a special offer to get you certified with a 40% discount. Symfony development highlights 2.8 changelog: 74a4cea: [HttpFoundation] fixed false-positive ConflictingHeadersException ea0b508: [Security] call AccessListener after LogoutListener 3.4 changelog: ba31bab: [DependencyInjection]…

Become Symfony or Twig certified before September 30th

2 months to become a Symfony or a Twig certified developer, it’s time to test and secure your Symfony or Twig experience! We are offering a special deal on all certifications: if you take your certification exam before September 30th, you’ll get a 40% discount on your certification fees. Use the code CERTIF40 while buying…

A week of symfony #605 (30 July – 5 August 2018)

This week Symfony published 2.7.49, 2.8.44, 3.3.18, 3.4.14, 4.0.14 and 4.1.3 security releases to fix two security vulnerabilities related to HTTP headers. Symfony development highlights 2.8 changelog: 9d0ff4f: [HttpKernel] fixed invalid REMOTE_ADDR in inline subrequest when configuring trusted proxy with subnet 6604978: [HttpFoundation] removed support for legacy and risky HTTP headers 0f7667d: [HttpKernel] fixed trusted…

Symfony 4.1.3 released

Symfony 4.1.3 has just been released. Here is a list of the most important changes: security #cve-2018-14774 [HttpKernel] fix trusted headers management in HttpCache and InlineFragmentRenderer (@nicolas-grekas) security #cve-2018-14773 [HttpFoundation] Remove support for legacy and risky HTTP headers (@nicolas-grekas) bug #28003 [HttpKernel] Fixes invalid REMOT _ADDR in inline subrequest when configuring trusted proxy with subnet…

Symfony 4.0.14 released

Symfony 4.0.14 has just been released. Here is a list of the most important changes: security #cve-2018-14774 [HttpKernel] fix trusted headers management in HttpCache and InlineFragmentRenderer (@nicolas-grekas) security #cve-2018-14773 [HttpFoundation] Remove support for legacy and risky HTTP headers (@nicolas-grekas) bug #28003 [HttpKernel] Fixes invalid REMOT _ADDR in inline subrequest when configuring trusted proxy with subnet…

Symfony 3.4.14 released

Symfony 3.4.14 has just been released. Here is a list of the most important changes: security #cve-2018-14774 [HttpKernel] fix trusted headers management in HttpCache and InlineFragmentRenderer (@nicolas-grekas) security #cve-2018-14773 [HttpFoundation] Remove support for legacy and risky HTTP headers (@nicolas-grekas) bug #28003 [HttpKernel] Fixes invalid REMOT _ADDR in inline subrequest when configuring trusted proxy with subnet…

Symfony 2.8.44 released

Symfony 2.8.44 has just been released. Here is a list of the most important changes: security #cve-2018-14774 [HttpKernel] fix trusted headers management in HttpCache and InlineFragmentRenderer (@nicolas-grekas) security #cve-2018-14773 [HttpFoundation] Remove support for legacy and risky HTTP headers (@nicolas-grekas) bug #28003 [HttpKernel] Fixes invalid REMOT _ADDR in inline subrequest when configuring trusted proxy with subnet…