Merge pull request #597 from beberlei/DBAL-CVE-2021-43608

naderman · web-flow · commit 2c1108e2d391 · 2021-11-15T21:06:57.000+01:00
doctrine/dbal CVE-2021-43608
diff --git a/doctrine/dbal/CVE-2021-43608.yaml b/doctrine/dbal/CVE-2021-43608.yaml
@@ -0,0 +1,12 @@
+title:      SQL Injection in Limit Clause Generation API
+link:       https://github.com/doctrine/dbal/security/advisories/GHSA-r7cj-8hjg-x622
+cve:        CVE-2021-43608
+branches:
+    3.0.x:
+        time:     2021-11-11 13:30:00
+        versions: ['>=3.0.0', '<3.0.99']
+    3.1.x:
+        time:     2021-11-11 13:30:00
+        versions: ['>=3.1.0', '<3.1.4']
+reference: composer://doctrine/dbal
+
