[HIGH] PHPUnit: Argument injection via newline in PHP INI values forwarded to child processes

PKSA-qccq-2pht-gg3w GHSA-mh6w-vxff-9wqp

Affected package: phpunit/phpunit

Affected version: >=13.1.5,<13.1.6|>=12.5.21,<12.5.22

Reported by:
GitHub