Skip to content

[FP]: Symfony Polyfill is matched as Symfony framework #7542

Closed
#7543
Closed
[FP]: Symfony Polyfill is matched as Symfony framework#7542
#7543
Labels
FP Report
@sigv

Description

@sigv
sigv
opened on Mar 21, 2025

Package URl

pkg:composer/symfony/[email protected]

CPE

cpe:2.3:a:sensiolabs:symfony:1.31.0:::::::*

CVE

CVE-2022-23601

ODC Integration

{"label" => "CLI"}

ODC Version

12.1.0

Description

Since package name matching change (#7295), this is being matched lossy as Symphony. However, Symfony Polyfill is not Symfony framework. It is an independent project, with an independent versioning scheme.

Metadata

Metadata

Assignees

No one assigned

    Labels

    FP Report

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions