[CRITICAL] Snappy PHAR deserialization vulnerability

PKSA-cd3f-fj3y-g547 CVE-2023-41330 GHSA-92rv-4j2h-8mjj

Affected package: knplabs/knp-snappy

Affected version: <1.4.3

Reported by:
GitHub, FriendsOfPHP/security-advisories