CVE-2022-23614 | Mend Vulnerability Database

Vulnerability DatabaseCVE-2022-23614

CVE-2022-23614

February 04, 2022

Twig is an open source template language for PHP. When in a sandbox mode, the "arrow" parameter of the "sort" filter must be a closure to avoid attackers being able to run arbitrary PHP functions. In affected versions this constraint was not properly enforced and could lead to code injection of arbitrary PHP code. Patched versions now disallow calling non Closure in the "sort" filter as is the case for some other filters. Users are advised to upgrade.

Related Resources (18)

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SIGZCFSYLPP7UVJ4E4NLHSOQSKYNXSAD

https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/23xxx/CVE-2022-23614.json

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I2PVV5DUTRUECTIHMTWRI5Z7DVNYQ2YO

https://www.debian.org/security/2022/dsa-5107

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PECHIY2XLWUH2WLCNPDGNFMPHPRPCEDZ/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OTN4273U4RHVIXED64T7DSMJ3VYTPRE7/

https://github.com/twigphp/Twig/commit/22b9dc3c03ee66d7e21d9ed2ca76052b134cb9e9

https://nvd.nist.gov/vuln/detail/CVE-2022-23614

https://security-tracker.debian.org/tracker/CVE-2022-23614

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OTN4273U4RHVIXED64T7DSMJ3VYTPRE7

https://github.com/FriendsOfPHP/security-advisories/blob/master/twig/twig/CVE-2022-23614.yaml