GHSA-xjw3-5r5c-m5ph: typo3 Security fix for Flow Swift Mailer package

June 5, 2024

A remote code execution vulnerability has been found in the Swift Mailer library (swiftmailer/swiftmailer) recently. See this advisory for details. If you are not using the default mail() transport, this particular problem does not affect you. Upgrading is of course still recommended!

References

github.com/FriendsOfPHP/security-advisories/blob/master/typo3/swiftmailer/2017-01-06.yaml
github.com/advisories/GHSA-xjw3-5r5c-m5ph
github.com/neos/swiftmailer
www.neos.io/blog/flow-sa-2017-01.html

Detect and mitigate GHSA-xjw3-5r5c-m5ph with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →