[CRITICAL] TOCTOU Race Condition enabling remote code execution

PKSA-pwh8-d4fr-nywn CVE-2021-32708 GHSA-9f46-5r25-5wfm

Affected version: <1.1.4|>=2.0.0,<2.1.1

Reported by:
GitHub, FriendsOfPHP/security-advisories