View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0028530 | mantisbt | security | public | 2021-05-11 08:09 | 2021-06-17 03:05 |
Reporter | dregad | Assigned To | dregad | ||
Priority | normal | Severity | major | Reproducibility | N/A |
Status | closed | Resolution | fixed | ||
Product Version | 2.25.0 | ||||
Target Version | 2.25.1 | Fixed in Version | 2.25.1 | ||
Summary | 0028530: Update PHPMailer to 6.4.1 (fixes CVE-2020-36326) | ||||
Description | PHPMailer 6.4.1 is a security release. Fixes https://nvd.nist.gov/vuln/detail/CVE-2020-36326
PHPMailer versions >=6.1.8, <6.4.1 are affected; we're currently using 6.3.0, since 2.25.0; earlier MantisBT versions are not affected (2.24.2 was on PHPMailer 6.1.6). | ||||
Tags | No tags attached. | ||||
MantisBT: master-2.25 9cbe1cbb 2021-04-29 21:35 dependabot-preview[bot] Committer: dregad Details Diff |
Bump phpmailer/phpmailer from 6.3.0 to 6.4.1 Bumps [phpmailer/phpmailer](https://github.com/PHPMailer/PHPMailer) from 6.3.0 to 6.4.1. - [Release notes](https://github.com/PHPMailer/PHPMailer/releases) - [Changelog](https://github.com/PHPMailer/PHPMailer/blob/master/changelog.md) - [Commits](https://github.com/PHPMailer/PHPMailer/compare/v6.3.0...v6.4.1) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Fixes 0028530, PR https://github.com/mantisbt/mantisbt/pull/1751 |
Affected Issues 0028530 |
|
mod - composer.lock | Diff File |