[PHP-CVS] cvs: php-src(PHP_4_4) / NEWS

Wed, 14 Mar 2007 06:49:39 -0800 

iliaa           Wed Mar 14 14:49:29 2007 UTC

  Modified files:              (Branch: PHP_4_4)
    /php-src    NEWS 
  Log:
  
  Bug fixing news
  
  
http://cvs.php.net/viewvc.cgi/php-src/NEWS?r1=1.1247.2.920.2.205&r2=1.1247.2.920.2.206&diff_format=u
Index: php-src/NEWS
diff -u php-src/NEWS:1.1247.2.920.2.205 php-src/NEWS:1.1247.2.920.2.206
--- php-src/NEWS:1.1247.2.920.2.205     Sat Mar 10 13:07:44 2007
+++ php-src/NEWS        Wed Mar 14 14:49:28 2007
@@ -1,6 +1,8 @@
 PHP 4                                                                      NEWS
 |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 ?? ??? 2007, Version 4.4.7
+- Fixed MOPB-21-2007 An open_basedir/safe_mode bypass inside the
+  compress.bzip2 wraper. (Ilia)
 - Fixed CVE-2007-1001, GD wbmp used with invalid image size (Pierre)
 - Fixed CVE-2007-0455 (Kees Cook, Pierre)
 - Fixed bug #40747 (possible crash in session when save_path is out of 

-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to