•  
      request #47658 symfony/mailer: 7.2.3 -> 7.4.12
    Infos
    #47658
    Thomas Gerbet (tgerbet)
    2026-05-28 15:07
    2026-05-28 11:21
    49399
    Details
    symfony/mailer: 7.2.3 -> 7.4.12

    Will resolve:

    • CVE-2026-45068: no impact for Tuleap, the situation cannot be triggered
    • CVE-2026-45070 (transitive dep symfony/mime): no impact for Tuleap
    • CVE-2026-45067 (transitive dep symfony/mime): could potentially by triggered within Tuleap
    • CVE-2026-46644 (transitive dep symfony/polyfill-intl-idn): no impact for Tuleap, we do reach the impacted polyfill code

    https://github.com/symfony/mailer/blob/v7.4.12/CHANGELOG.md

    Dependencies
    Empty
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2026-05-28
    Attachments
    Empty
    References
    Referenced by request #47658

    Follow-ups