Bump symfony/symfony from 2.6.6 to 2.6.13

[dependabot]

Bumps symfony/symfony from 2.6.6 to 2.6.13.

Changelog

Sourced from symfony/symfony's changelog.

• 2.6.13 (2016-01-14)

• security #17359 do not ship with a custom rng implementation (xabbuh, fabpot)

• 2.6.12 (2015-11-23)

• security #16631 CVE-2015-8124: Session Fixation in the "Remember Me" Login Feature (xabbuh)

• security #16630 CVE-2015-8125: Potential Remote Timing Attack Vulnerability in Security Remember-Me Service (xabbuh)

• 2.6.11 (2015-07-26)

• bug #15361 [Yaml] throw a ParseException on invalid data type (xabbuh)

• bug #15330 [Console] Fix console output with closed stdout (jakzal)

• bug #15326 [Security] fix check for empty usernames (xabbuh)

• bug #15291 [HttpFoundation] Fix Response::closeOutputBuffers() for HHVM 3.3 (nicolas-grekas)

• bug #15249 [HttpFoundation] [PSR-7] Allow to use resources as content body and to return resources from string content (dunglas)

• bug #15282 [HttpFoundation] Behaviour change in PHP7 for substr (Nicofuma)

• bug #15250 [PropertyAccess] BC Break since 2.6.5 (Nicolas Macherey)

• 2.6.10 (2015-07-13)

• bug #15248 Added 'default' color (jaytaph)

• bug #15243 Reload the session after regenerating its id (jakzal)

• bug #15202 [Security] allow to use method in XML configs (xabbuh)

• bug #15218 [Twig][Bridge] replaced extends with use in bootstrap_3_horizontal_layout.html.twig (MatTheCat)

• bug #15223 [Finder] Command::addAtIndex() fails with Command instance argument (thunderer)

• bug #15220 [DependencyInjection] Freeze also FrozenParameterBag::remove (lyrixx)

• bug #15110 Add a way to reset the singleton (dawehner)

• bug #15115 [Validator] always evaluate binary format when changed (xabbuh)

• bug #15163 Update DateTimeToArrayTransformer.php (zhil)

• bug #15150 [Translation] Azerbaijani language pluralization rule is wrong (shehi)

• bug #15159 Towards 100% HHVM compat (nicolas-grekas)

• bug #15146 Towards 100% HHVM compat (nicolas-grekas)

• bug #15069 [Form] Fixed: Data mappers always receive forms indexed by their names (webmozart)

• bug #15137 [Security] Initialize SwitchUserEvent::targetUser on attemptExitUser (Rvanlaak, xabbuh)

• bug #15126 [Validator] Fix BC for Validator's validate method (michalmarcinkowski)

• bug #15083 [DependencyInjection] Fail when dumping a Definition with no class nor factory (nicolas-grekas)

• bug #15127 [Validator] fix validation for Maestro UK card numbers (xabbuh)

• bug #15128 DbalLogger: Small nonutf8 array fix (vpetrovych, weaverryan)

• bug #15048 [Translation][Form][choice] empty_value shouldn't be translated when it has an empty value (Restless-ET)

• bug #15117 [Form] fixed sending non array data on submit to ResizeListener (BruceWouaigne)

• bug #15102 [Translation][debug cmd] fixed failing tests. (aitboudad)

• bug #13750 [DependencyInjection] Fixed decoration of service for service with parent (hason)

• bug #15086 Fixed the regexp for the validator of Maestro-based credit/debit cards (javiereguiluz)

• bug #15058 [Console] Fix STDERR output text on IBM iSeries OS400 (johnkary)

• bug #14853 [Validator] more strict e-mail validation regex (xabbuh)

• bug #15065 [Form] Fixed: remove quoted strings from Intl date formats (e.g. es_ES full pattern) (webmozart)

• bug #15039 [Translation][update cmd] taken account into bundle overrides path. (aitboudad)

• bug #15038 [Translation][debug cmd] taken account into bundle overrides path. (aitboudad)

• bug #14964 [bugfix][MonologBridge] WebProcessor: passing $extraFields to BaseWebProcessor (MacDada)

... (truncated)

Commits

• 240e964 Merge pull request #17365 from fabpot/release-2.6.13
• a651f54 updated VERSION for 2.6.13
• a0c98d4 updated CHANGELOG for 2.6.13
• e05da26 removed obsolete tests, fixed composer.json
• 9aa9b66 do not ship with a custom rng implementation
• 9d1072d Merge pull request #16636 from fabpot/release-2.6.12
• 995fe39 bumped Symfony version to 2.6.12
• a103fc8 updated CHANGELOG for 2.6.12
• 941b45e migrate session after remember me authentication
• 4feb527 prevent timing attacks in digest auth listener
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.