Security Advisories - lcobucci/jwt - Packagist

lcobucci/jwt Security Advisories for 4.0.0-alpha3 (1)

[MEDIUM] CVE-2021-41106: File reference keys leads to incorrect hashes on HMAC algorithms

PKSA-876w-myjj-h9h4 CVE-2021-41106 GHSA-7322-jrq4-x5hf

Affected version: >=3.4.0,<3.4.6|>=4.0.0,<4.0.4|>=4.1.0,<4.1.5

Reported by:
GitHub, FriendsOfPHP/security-advisories