It was discovered that user validation was incorrectly implemented
for filter_var(FILTER_VALIDATE_URL).

https://security-tracker.debian.org/tracker/DSA-5717-1

Read More