Package: twig / 2.6.2-2

Metadata

Package Version Patches format
twig 2.6.2-2 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
0001 Fix security issue in the sandbox.patch | (download)

lib/Twig/Node/CheckToString.php | 39 39 + 0 - 0 !
lib/Twig/Node/SandboxedPrint.php | 2 2 + 0 - 0 !
lib/Twig/NodeVisitor/Sandbox.php | 45 43 + 2 - 0 !
src/Node/CheckToStringNode.php | 11 11 + 0 - 0 !
test/Twig/Tests/Extension/SandboxTest.php | 95 65 + 30 - 0 !
test/Twig/Tests/Node/SandboxedPrintTest.php | 33 0 + 33 - 0 !
6 files changed, 160 insertions(+), 65 deletions(-)

 
 fix security issue in the sandbox

Fix sandbox security issue (under some circumstances, calling the
__toString() method on an object was possible even if not allowed by the
security policy).