Two vulnerabilities have been discovered in Composer, a dependency manager for PHP, which could result in arbitrary command execution by operating on malicious git/hg repositories.
https://security-tracker.debian.org/tracker/DSA-5715-1
Continue reading...
https://security-tracker.debian.org/tracker/DSA-5715-1
Continue reading...
