Clik here to view.
Symfony 4.4.0-BETA1 released
Symfony 4.4.0-BETA1 has just been released. Here is a list of the most important changes:feature #34333 Revert "feature #34329 [ExpressionLanguage] add XOR operator (ottaviano)"...
View ArticleClik here to view.
Symfony 5.0.0-BETA1 released
Symfony 5.0.0-BETA1 has just been released. Here is a list of the most important changes:feature #34333 Revert "feature #34329 [ExpressionLanguage] add XOR operator (ottaviano)"...
View ArticleClik here to view.
Symfony 3.4.35 released
Symfony 3.4.35 has just been released. Here is a list of the most important changes:bug #34344 [Console] Constant STDOUT might be undefined (@nicolas-grekas)security #cve-2019-18889 [Cache] forbid...
View ArticleClik here to view.
Symfony 4.2.12 released
Symfony 4.2.12 has just been released. Here is a list of the most important changes:security #cve-2019-18886 [SecurityCore] throw AccessDeniedException when switch user fails (@nicolas-grekas)security...
View ArticleClik here to view.
Symfony 4.3.8 released
Symfony 4.3.8 has just been released. Here is a list of the most important changes:bug #34344 [Console] Constant STDOUT might be undefined (@nicolas-grekas)security #cve-2019-18886 [SecurityCore] throw...
View ArticleClik here to view.
Symfony 4.4.0-BETA2 released
Symfony 4.4.0-BETA2 has just been released. Here is a list of the most important changes:bug #34344 [Console] Constant STDOUT might be undefined (@nicolas-grekas)security #cve-2019-18886 [SecurityCore]...
View ArticleClik here to view.
CVE-2019-18889: Forbid serializing AbstractAdapter and TagAwareAdapter instances
Affected versionsSymfony 3.4.0 to 3.4.34, 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7 versions of the Symfony Cache component are affected by this security issue.The issue has been fixed in Symfony 3.4.35,...
View ArticleClik here to view.
Symfony 5.0.0-BETA2 released
Symfony 5.0.0-BETA2 has just been released. Here is a list of the most important changes:bug #34344 [Console] Constant STDOUT might be undefined (@nicolas-grekas)bug #34348 [Serializer] Fix...
View ArticleClik here to view.
CVE-2019-18887: Use constant time comparison in UriSigner
Affected versionsSymfony 2.8.0 to 2.8.51, 3.4.0 to 3.4.34, 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7 versions of the Symfony HttpKernel component are affected by this security issue.The issue has been fixed...
View ArticleClik here to view.
CVE-2019-18886: Prevent user enumeration using switch user functionality
Affected versionsSymfony 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7 versions of the Symfony Security/Http component are affected by this security issue.The issue has been fixed in Symfony 4.2.12 and 4.3.8.Note...
View ArticleClik here to view.
CVE-2019-11325: Fix escaping of strings in VarExporter
Affected versionsSymfony 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7 versions of the Symfony VarExporter component are affected by this security issue.The issue has been fixed in Symfony 4.2.12 and...
View ArticleClik here to view.
CVE-2019-18888: Prevent argument injection in a MimeTypeGuesser
Affected versionsSymfony 2.8.0 to 2.8.51, 3.4.0 to 3.4.34, 4.2.0 to 4.2.11 and 4.3.0 to 4.3.7 versions of the Symfony HttpFoundation component are affected by this security issue. Symfony 4.3.0 to...
View ArticleClik here to view.
Updates About the "Symfony 5: The Fast Track" Book
A few weeks ago, we announced the publication of Symfony 5: The Fast Track, a new book about developing modern applications with Symfony 5. We're thrilled to announce that book contents have been...
View ArticleClik here to view.
Let's talk at SymfonyCon!
In general conferences are a great place to learn, but even more to network, share and discuss ideas and meet new people. Unfortunately, not everybody feels equally comfortable approaching others,...
View ArticleClik here to view.
A Week of Symfony #672 (11-17 November 2019)
This week, Symfony 2.8.52, 3.4.35, 4.2.12 and 4.3.8 versions were published to fix some security vulnerabilities. In addition, Symfony 4.4-beta and 5.0-beta were published so you can test these...
View ArticleClik here to view.
Symfony 4.4 curated new features
Symfony 4.4.0 is going to be released in a few days. As for any other Symfony minor release, our backward compatibility promise applies and this means that you should be able to upgrade easily without...
View ArticleClik here to view.
Symfony 5.0 curated new features
Symfony 5.0.0 is going to be released in a few days. It contains all new features from 4.4. But for the first time ever, Symfony 5.0.0 will come with new components that are marked as...
View ArticleClik here to view.
Symfony 4.4.0-RC1 released
Symfony 4.4.0-RC1 has just been released. Here is a list of the most important changes:bug #34419 [Cache] Disable igbinary on PHP >= 7.4 (@nicolas-grekas)bug #34347 [Messenger] Perform no deep...
View ArticleClik here to view.
Symfony 5.0.0-RC1 released
Symfony 5.0.0-RC1 has just been released. Here is a list of the most important changes:bug #34419 [Cache] Disable igbinary on PHP >= 7.4 (@nicolas-grekas)bug #34347 [Messenger] Perform no deep...
View ArticleClik here to view.
New in Symfony 4.4: HttpClient Improvements
Contributed by Nicolas Grekas in #31641,#31831,#31976,#32104,#32231, and #32290.The Symfony HttpClient component was introduced in Symfony 4.3 as a low-level HTTP client with support for both PHP...
View Article