Security Advisories - PKSA-7y48-mnc1-xvg1 - Packagist

PKSA-7y48-mnc1-xvg1 Security Advisory

[HIGH] CVE-2016-4423: Large username storage in session

PKSA-7y48-mnc1-xvg1 CVE-2016-4423 GHSA-whgv-8cg3-7hcm

Affected package: symfony/security-http

Affected version: >=2.3.0,<2.3.41|>=2.4.0,<2.5.0|>=2.5.0,<2.6.0|>=2.6.0,<2.7.0|>=2.7.0,<2.7.13|>=2.8.0,<2.8.6|>=3.0.0,<3.0.6

Reported by:
GitHub, FriendsOfPHP/security-advisories