UBUNTU-CVE-2023-46733
- Source
- https://ubuntu.com/security/CVE-2023-46733
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2023/UBUNTU-CVE-2023-46733.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/UBUNTU-CVE-2023-46733
- Related
- Published
- 2023-11-10T18:15:00Z
- Modified
- 2025-02-04T04:34:03Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in versions 5.4.21 and 6.2.7 and prior to versions 5.4.31 and 6.3.8,
SessionStrategyListenerdoes not migrate the session after every successful login. It does so only in case the logged in user changes by means of checking the user identifier. In some use cases, the user identifier doesn't change between the verification phase and the successful login, while the token itself changes from one type (partially-authenticated) to another (fully-authenticated). When this happens, the session id should be regenerated to prevent possible session fixations, which is not the case at the moment. As of versions 5.4.31 and 6.3.8, Symfony now checks the type of the token in addition to the user identifier before deciding whether the session id should be regenerated. - References
-
- https://ubuntu.com/security/CVE-2023-46733
- https://github.com/symfony/symfony/security/advisories/GHSA-m2wj-r6g3-fxfx
- https://github.com/symfony/symfony/commit/dc356499d5ceb86f7cf2b4c7f032eca97061ed74
- https://github.com/symfony/symfony/commit/7467bd7e3f888b333102bc664b5e02ef1e7f88b9
- https://www.cve.org/CVERecord?id=CVE-2023-46733
Affected packages
Ubuntu:24.10 / symfony
Package
- Name
- symfony
- Purl
- pkg:deb/ubuntu/symfony@6.4.5+dfsg-3ubuntu3?arch=source&distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed6.4.5+dfsg-3ubuntu3
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "medium",
"binaries": [
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-all-my-sms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-amazon-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-amazon-sns-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-amazon-sqs-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-amqp-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-asset"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-asset-mapper"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-bandwidth-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-beanstalkd-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-brevo-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-brevo-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-browser-kit"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-cache"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-chatwork-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-click-send-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-clickatell-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-clock"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-config"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-console"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-contact-everyone-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-crowdin-translation-provider"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-css-selector"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-debug-bundle"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-dependency-injection"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-discord-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-doctrine-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-doctrine-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-dom-crawler"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-dotenv"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-engagespot-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-error-handler"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-esendex-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-event-dispatcher"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-expo-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-expression-language"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-fake-chat-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-fake-sms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-filesystem"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-finder"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-firebase-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-form"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-forty-six-elks-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-framework-bundle"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-free-mobile-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-gateway-api-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-gitter-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-go-ip-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-google-chat-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-google-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-html-sanitizer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-http-client"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-http-foundation"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-http-kernel"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-infobip-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-infobip-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-intl"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-iqsms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-isendpro-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-kaz-info-teh-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-ldap"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-light-sms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-line-notify-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-linked-in-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-lock"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-loco-translation-provider"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-lokalise-translation-provider"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mail-pace-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailchimp-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailer-send-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailgun-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailjet-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mailjet-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mastodon-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mattermost-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mercure-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-message-bird-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-message-media-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-microsoft-teams-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mime"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-mobyt-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-monolog-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-novu-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-ntfy-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-octopush-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-oh-my-smtp-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-one-signal-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-options-resolver"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-orange-sms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-ovh-cloud-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-pager-duty-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-password-hasher"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-phpunit-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-phrase-translation-provider"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-plivo-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-postmark-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-process"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-property-access"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-property-info"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-proxy-manager-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-psr-http-message-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-pushover-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-rate-limiter"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-redis-messenger"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-redlink-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-remote-event"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-ring-central-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-rocket-chat-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-routing"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-runtime"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-scaleway-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-scheduler"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-security-bundle"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-security-core"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-security-csrf"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-security-http"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-semaphore"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sendberry-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sendgrid-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sendinblue-mailer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sendinblue-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-serializer"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-simple-textin-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sinch-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-slack-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sms-biuras-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sms-factor-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-sms77-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-smsapi-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-smsc-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-smsmode-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-spot-hit-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-stopwatch"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-string"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-telegram-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-telnyx-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-templating"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-termii-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-translation"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-turbo-sms-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-twig-bridge"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-twig-bundle"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-twilio-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-twitter-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-uid"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-validator"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-var-dumper"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-var-exporter"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-vonage-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-web-link"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-web-profiler-bundle"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-webhook"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-workflow"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-yaml"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-yunpian-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-zendesk-notifier"
},
{
"binary_version": "6.4.5+dfsg-3ubuntu3",
"binary_name": "php-symfony-zulip-notifier"
}
]
}