Software Update: Symfony 5.3.3 / 5.2.11 / 4.4.26

Spread the love

Symfony is a php web application framework and is available under the mit license. In addition to a framework and reusable components offers Symfony a philosophy, methodology and community, supported by SensioLabs. There are also various topics about this on our Forum. The developers have released versions 5.3.3, 5.2.11 and 4.4.26. The accompanying announcement and lists of changes look like this:

Symphony 5.3.3 released

Symfony 5.3.3 has just been released. Here is a list of the most important changes:

  • bug #41910 [Security] Handle concurency in Csrf DoctrineTokenProvider (@jderusse)
  • bug #41881 Fix SessionTokenStorage reuse with Request (@jderusse)
  • bug #41893 [Filesystem] Workaround cannot dumpFile into “protected” folders on Windows (@arnegroskurth)
  • bug #41896 [Messenger] fix FlattenExceptionNormalizer (@nicolas-grekas)
  • bug #41242 [SecurityBundle] Change information label from red to yellow (@94noni)
  • bug #41665 [HttpKernel] Keep max lifetime also when part of the responses don’t set it (@mpdude)
  • bug #41760 [ErrorHandler] fix handling buffered SilencedErrorContext (@nicolas-grekas)
  • bug #41807 [HttpClient] fix Psr18Client when allo _ur _fopen=0 (@nicolas-grekas)
  • bug #41735 [Runtime] Fix project dir variable when vendor not in project root (@Ash014)
  • bug #40857 [DependencyInjection] Add support of PHP enumerations (@alexandre-daubois)
  • bug #41767 [Config] fix tracking default values ​​that reference the parent class (@nicolas-grekas)
  • bug #41768 [DependencyInjection] Fix binding “iterable $foo” when using the PHP-DSL (@nicolas-grekas)
  • bug #41777 [DependencyInjection] accept service locator definitions with no class (@nicolas-grekas)
  • bug #41801 [Uid] Fix fromString() with low base58 values ​​(@fancyweb)
  • bug #41793 [Cache] handle prefixed redis connections when clearing pools (@nicolas-grekas)
  • bug #41804 [Cache] fix eventual consistency when using RedisTagAwareAdapter with a cluster (@nicolas-grekas)
  • bug #41773 [Cache] Disable locking on Windows by default (@nicolas-grekas)
  • bug #41655 [Mailer] fix encoding of addresses using SmtpTransport (@dmaicher)
  • bug #41663 [HttpKernel] [HttpCache] Keep s-maxage=0 from ESI sub-responses (@mpdude)
  • bug #41739 Avoid broken action URL in text notification mail (@mbrodala)
  • bug #41737 [Security] Fix special char used to create cache key (@jderusse)
  • bug #41701 [VarDumper] Fix tests for PHP 8.1 (@alexandre-daubois)
  • bug #41795 [FrameworkBundle] Replace va _export with VarExporter to use array short syntax in secrets list files (@alexandre-daubois)
  • bug #41779 [DependencyInjection] throw proper exception when decorating a synthetic service (@nicolas-grekas)
  • bug #41787 [Security] Implement fluent interface on RememberMeBadge::disable() (@derrabus)
  • bug #41776 [ErrorHandler] [DebugClassLoader] Don’t check Phake mocks classes (@adoy)
  • bug #41780 [PhpUnitBridge] fix handling the COMPOSE _BINARY env var when using simple-phpunit (@Taluu)
  • bug #41755 [PasswordHasher] UserPasswordHasher only calls getSalt when method exists (@dbrumann)
  • bug #41670 [HttpFoundation] allow savePath of NativeFileSessionHandler to be null (@simon.chrzanowski)
  • bug #41751 [Messenger] prevent reflection usages when classes do not exist (@xabbuh)
  • bug #41747 [Security] Fixed ‘security.command.debu _firewall’ not found (@Nyholm)
  • bug #41741 [Security] Fix invalid RememberMe value after update (@jderusse)
  • bug #41744 [Security] Fix invalid cookie when migrating to new Security (@jderusse)
  • bug #41740 [Security] make the getter usable if no user identifier is set (@xabbuh)

Want to upgrade to this new release? Because Symfony protects backwards-compatibility very closely, this should be quite easy. Use SymfonyInsight upgrade reports to detect the code you will need to change in your project and read our upgrade documentation to learn more.

Symphony 5.2.11 released

Symfony 5.2.11 has just been released. Here is a list of the most important changes:

  • bug #41893 [Filesystem] Workaround cannot dumpFile into “protected” folders on Windows (@arnegroskurth)
  • bug #41896 [Messenger] fix FlattenExceptionNormalizer (@nicolas-grekas)
  • bug #41242 [SecurityBundle] Change information label from red to yellow (@94noni)
  • bug #41665 [HttpKernel] Keep max lifetime also when part of the responses don’t set it (@mpdude)
  • bug #41760 [ErrorHandler] fix handling buffered SilencedErrorContext (@nicolas-grekas)
  • bug #41807 [HttpClient] fix Psr18Client when allo _ur _fopen=0 (@nicolas-grekas)
  • bug #40857 [DependencyInjection] Add support of PHP enumerations (@alexandre-daubois)
  • bug #41767 [Config] fix tracking default values ​​that reference the parent class (@nicolas-grekas)
  • bug #41768 [DependencyInjection] Fix binding “iterable $foo” when using the PHP-DSL (@nicolas-grekas)
  • bug #41801 [Uid] Fix fromString() with low base58 values ​​(@fancyweb)
  • bug #41793 [Cache] handle prefixed redis connections when clearing pools (@nicolas-grekas)
  • bug #41804 [Cache] fix eventual consistency when using RedisTagAwareAdapter with a cluster (@nicolas-grekas)
  • bug #41773 [Cache] Disable locking on Windows by default (@nicolas-grekas)
  • bug #41655 [Mailer] fix encoding of addresses using SmtpTransport (@dmaicher)
  • bug #41663 [HttpKernel] [HttpCache] Keep s-maxage=0 from ESI sub-responses (@mpdude)
  • bug #41739 Avoid broken action URL in text notification mail (@mbrodala)
  • bug #41701 [VarDumper] Fix tests for PHP 8.1 (@alexandre-daubois)
  • bug #41795 [FrameworkBundle] Replace va _export with VarExporter to use array short syntax in secrets list files (@alexandre-daubois)
  • bug #41779 [DependencyInjection] throw proper exception when decorating a synthetic service (@nicolas-grekas)
  • bug #41776 [ErrorHandler] [DebugClassLoader] Don’t check Phake mocks classes (@adoy)
  • bug #41780 [PhpUnitBridge] fix handling the COMPOSE _BINARY env var when using simple-phpunit (@Taluu)
  • bug #41670 [HttpFoundation] allow savePath of NativeFileSessionHandler to be null (@simon.chrzanowski)
  • bug #41751 [Messenger] prevent reflection usages when classes do not exist (@xabbuh)
  • bug #41616 [Messenger] Remove TLS related options when not using TLS (@odolbeau)
  • bug #41719 [FrameworkBundle] fix Could not find service “test.servic _container” (@smilesrg)
  • bug #41674 [HttpClient] fix compat with cURL
  • bug #41656 [HttpClient] throw exception when AsyncDecoratorTrait gets an already consumed response (@nicolas-grekas)
  • bug #41644 [Config] fix tracking attributes in ReflectionClassResource (@nicolas-grekas)
  • bug #41621 [Process] Fix incorrect parameter type (@bch36)
  • bug #41624 [HttpClient] Revert bindto workaround for unaffected PHP versions (@derrabus)
  • bug #41549 [Security] Fix opcache preload with alias classes (@jderusse)
  • bug #41491 [Serializer] do not allow to denormalize string with spaces only to valid a DateTime object (@sidz)
  • bug #41218 [DependencyInjection] Update loader’s directory when calling ContainerConfigurator::withPath (@MatTheCat)
  • bug #41505 [FrameworkBundle] fix KernelBrowser::loginUser with a stateless firewall (@dunglas)
  • bug #41509 [SecurityBundle] Link UserProviderListener to correct firewall dispatcher (@Matth–)
  • bug #41386 [Console] Escape synopsis output (@jschaedl)
  • bug #41495 [HttpFoundation] Add ReturnTypeWillChange to SessionHandlers (@nikic)

Symphony 4.4.26 released

Symfony 4.4.26 has just been released. Here is a list of the most important changes:

  • bug #41893 [Filesystem] Workaround cannot dumpFile into “protected” folders on Windows (@arnegroskurth)
  • bug #41665 [HttpKernel] Keep max lifetime also when part of the responses don’t set it (@mpdude)
  • bug #41760 [ErrorHandler] fix handling buffered SilencedErrorContext (@nicolas-grekas)
  • bug #41807 [HttpClient] fix Psr18Client when allo _ur _fopen=0 (@nicolas-grekas)
  • bug #40857 [DependencyInjection] Add support of PHP enumerations (@alexandre-daubois)
  • bug #41767 [Config] fix tracking default values ​​that reference the parent class (@nicolas-grekas)
  • bug #41768 [DependencyInjection] Fix binding “iterable $foo” when using the PHP-DSL (@nicolas-grekas)
  • bug #41793 [Cache] handle prefixed redis connections when clearing pools (@nicolas-grekas)
  • bug #41804 [Cache] fix eventual consistency when using RedisTagAwareAdapter with a cluster (@nicolas-grekas)
  • bug #41773 [Cache] Disable locking on Windows by default (@nicolas-grekas)
  • bug #41655 [Mailer] fix encoding of addresses using SmtpTransport (@dmaicher)
  • bug #41663 [HttpKernel] [HttpCache] Keep s-maxage=0 from ESI sub-responses (@mpdude)
  • bug #41701 [VarDumper] Fix tests for PHP 8.1 (@alexandre-daubois)
  • bug #41795 [FrameworkBundle] Replace va _export with VarExporter to use array short syntax in secrets list files (@alexandre-daubois)
  • bug #41779 [DependencyInjection] throw proper exception when decorating a synthetic service (@nicolas-grekas)
  • bug #41776 [ErrorHandler] [DebugClassLoader] Don’t check Phake mocks classes (@adoy)
  • bug #41780 [PhpUnitBridge] fix handling the COMPOSE _BINARY env var when using simple-phpunit (@Taluu)
  • bug #41670 [HttpFoundation] allow savePath of NativeFileSessionHandler to be null (@simon.chrzanowski)
  • bug #41644 [Config] fix tracking attributes in ReflectionClassResource (@nicolas-grekas)
  • bug #41621 [Process] Fix incorrect parameter type (@bch36)
  • bug #41624 [HttpClient] Revert bindto workaround for unaffected PHP versions (@derrabus)
  • bug #41549 [Security] Fix opcache preload with alias classes (@jderusse)
  • bug #41491 [Serializer] do not allow to denormalize string with spaces only to valid a DateTime object (@sidz)
  • bug #41386 [Console] Escape synopsis output (@jschaedl)
  • bug #41495 [HttpFoundation] Add ReturnTypeWillChange to SessionHandlers (@nikic)

Version number 5.3.3 / 5.2.11 / 4.4.26
Release status Final
Operating systems script language
Website symphony
Download https://symfony.com/download
License type Conditions (GNU/BSD/etc.)
ApplicationCommunityLearnMailMessengerMITPHPPHP 8PHPUnitRedSecurityTLSURLVendorWindows