Merge pull request #757 from trowski/amphp/http-server/cve-2025-8671

stof · web-flow · commit af8943e7deab · 2026-02-09T10:22:52.000+01:00
amphp/http-server: Add CVE-2025-8671
diff --git a/amphp/http-server/CVE-2025-8671.yaml b/amphp/http-server/CVE-2025-8671.yaml
@@ -0,0 +1,11 @@
+title: Denial of Service via "MadeYouReset" vulnerability
+link: https://github.com/amphp/http-server/security/advisories/GHSA-8grv-jq2g-cfhw
+cve: CVE-2025-8671
+branches:
+    3.x:
+        time: 2026-02-08 22:45:00
+        versions: [ '>=3.0.0-beta1', '<3.4.4' ]
+    2.x:
+        time: 2026-02-08 22:45:00
+        versions: [ '>=2.0.0-rc1', '<2.1.10' ]
+reference: composer://amphp/http-server
