Potential remote code execution in zend-mail via Sendmail adapter

PKSA-qgvm-q7ch-sv7g

Affected version: >=2.0.0,<2.1.0|>=2.1.0,<2.2.0|>=2.2.0,<2.3.0|>=2.3.0,<2.4.0|>=2.4.0,<2.4.11|>=2.5.0,<2.6.0|>=2.6.0,<2.7.0|>=2.7.0,<2.7.2

Reported by:
FriendsOfPHP/security-advisories

Potential CRLF injection attacks in mail and HTTP headers

PKSA-3skz-jnsp-6kt1 CVE-2015-3154

Affected version: >=2.0.0,<2.0.99|>=2.1.0,<2.1.99|>=2.3.0,<2.3.8|>=2.4.0,<2.4.1

Reported by:
FriendsOfPHP/security-advisories