Swiftmailer Security issue

Issue #422 new
Javier Salmeron created an issue

On 25.12.2016 a security issue (CVE-2016-10074) was found in the Swiftmailer component for versions lower than 5.4.5. Could you confirm if that affects the security of the application?

More info: http://pwnscriptum.com/

Comments (1)

  1. Redneck Bob

    Unless the fix was back ported, then zurmo-bleeding-3.2.1.7b42ab1dca0b is running swift mailer 4.1.5.

    [root@ecr zurmo]# ls -atl ../zurmo-bleeding-3.2.1.7b42ab1dca0b.tar
    -rw-r--r--. 1 root root 102973440 Feb 12 14:21 ../zurmo-bleeding-3.2.1.7b42ab1dca0b.tar
    [root@ecr zurmo]# cat ./app/protected/extensions/swiftmailer/VERSION
    Swift-4.1.5
    
  2. Log in to comment