public-mirrors
/
composer
mirror of https://github.com/composer/composer
1
0
Fork 0
Code

Update changelog

pull/11670/head
Jordi Boggiano 2023-09-29 10:54:39 +02:00
parent 955a48e631
commit 081ec4a418
No known key found for this signature in database
GPG Key ID: 7BBD42C429EC80BC
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
CHANGELOG.md
View File

@ -1,5 +1,6 @@
### [2.6.4] 2023-09-xx
### [2.6.4] 2023-09-29
* Security: Fixed possible remote code execution vulnerability if composer.phar is publicly accessible, executable as PHP, and register_argc_argv is enabled in php.ini (GHSA-jm6m-4632-36hf / CVE-2023-43655)
* Fixed json output of abandoned packages in audit command (#11647)
* Performance improvement in pool optimization step (#11638)
* Performance improvement in `show -a <packagename>` (#11659)