[CRITICAL] Snappy PHAR deserialization vulnerability

PKSA-cd3f-fj3y-g547 CVE-2023-41330 GHSA-92rv-4j2h-8mjj

Affected package: knplabs/knp-snappy

Affected version: <=1.4.2

Reported by:
GitHub, FriendsOfPHP/security-advisories