Version in base suite: 4.4.19+dfsg-2+deb11u1 Version in overlay suite: 4.4.19+dfsg-2+deb11u2 Base version: symfony_4.4.19+dfsg-2+deb11u2 Target version: symfony_4.4.19+dfsg-2+deb11u3 Base file: /srv/ftp-master.debian.org/ftp/pool/main/s/symfony/symfony_4.4.19+dfsg-2+deb11u2.dsc Target file: /srv/ftp-master.debian.org/policy/pool/main/s/symfony/symfony_4.4.19+dfsg-2+deb11u3.dsc changelog | 7 ++++ patches/Security-Http-Remove-CSRF-tokens-from-storage-on-successf.patch | 16 ---------- 2 files changed, 8 insertions(+), 15 deletions(-) diff -Nru symfony-4.4.19+dfsg/debian/changelog symfony-4.4.19+dfsg/debian/changelog --- symfony-4.4.19+dfsg/debian/changelog 2023-02-01 18:38:41.000000000 +0000 +++ symfony-4.4.19+dfsg/debian/changelog 2023-02-27 22:05:34.000000000 +0000 @@ -1,3 +1,10 @@ +symfony (4.4.19+dfsg-2+deb11u3) bullseye; urgency=medium + + * Drop dependency bump. + Thanks to Paul Gevers + + -- David Prévot Mon, 27 Feb 2023 23:05:34 +0100 + symfony (4.4.19+dfsg-2+deb11u2) bullseye; urgency=medium * Backport security fixes from Symfony 4.4.50 diff -Nru symfony-4.4.19+dfsg/debian/patches/Security-Http-Remove-CSRF-tokens-from-storage-on-successf.patch symfony-4.4.19+dfsg/debian/patches/Security-Http-Remove-CSRF-tokens-from-storage-on-successf.patch --- symfony-4.4.19+dfsg/debian/patches/Security-Http-Remove-CSRF-tokens-from-storage-on-successf.patch 2023-02-01 18:38:41.000000000 +0000 +++ symfony-4.4.19+dfsg/debian/patches/Security-Http-Remove-CSRF-tokens-from-storage-on-successf.patch 2023-02-27 22:01:28.000000000 +0000 @@ -8,10 +8,9 @@ .../Bundle/SecurityBundle/Resources/config/security.xml | 1 + .../SecurityBundle/Tests/Functional/CsrfFormLoginTest.php | 6 ++++++ .../Bundle/SecurityBundle/Tests/Functional/LogoutTest.php | 4 +--- - src/Symfony/Bundle/SecurityBundle/composer.json | 2 +- .../Http/Session/SessionAuthenticationStrategy.php | 14 +++++++++++--- .../Tests/Session/SessionAuthenticationStrategyTest.php | 13 +++++++++++++ - 6 files changed, 33 insertions(+), 7 deletions(-) + 5 files changed, 32 insertions(+), 6 deletions(-) diff --git a/src/Symfony/Bundle/SecurityBundle/Resources/config/security.xml b/src/Symfony/Bundle/SecurityBundle/Resources/config/security.xml index 3491383..eabe5e5 100644 @@ -81,19 +80,6 @@ $client->request('GET', '/logout'); -diff --git a/src/Symfony/Bundle/SecurityBundle/composer.json b/src/Symfony/Bundle/SecurityBundle/composer.json -index 872ef66..6627cdb 100644 ---- a/src/Symfony/Bundle/SecurityBundle/composer.json -+++ b/src/Symfony/Bundle/SecurityBundle/composer.json -@@ -24,7 +24,7 @@ - "symfony/security-core": "^4.4", - "symfony/security-csrf": "^4.2|^5.0", - "symfony/security-guard": "^4.2|^5.0", -- "symfony/security-http": "^4.4.5" -+ "symfony/security-http": "^4.4.50" - }, - "require-dev": { - "doctrine/doctrine-bundle": "^1.5|^2.0", diff --git a/src/Symfony/Component/Security/Http/Session/SessionAuthenticationStrategy.php b/src/Symfony/Component/Security/Http/Session/SessionAuthenticationStrategy.php index a4bb888..7369105 100644 --- a/src/Symfony/Component/Security/Http/Session/SessionAuthenticationStrategy.php