Commit: b33a1a139771b677ddc0858d66111667361d478c Author: Stanislav Malyshev <s...@php.net> Sun, 18 Aug 2013 14:42:06 -0700 Parents: bf0c6f2858226d787bb8c7abe9d24a391df53d7a Branches: PHP-5.5 master
Link: http://git.php.net/?p=php-src.git;a=commitdiff;h=b33a1a139771b677ddc0858d66111667361d478c Log: add CVE-2011-4718 Changed paths: M NEWS Diff: diff --git a/NEWS b/NEWS index cc469dd..948dcdc 100644 --- a/NEWS +++ b/NEWS @@ -54,7 +54,7 @@ PHP NEWS - Sessions: . Implemented strict sessions RFC (https://wiki.php.net/rfc/strict_sessions) which protects against session fixation attacks and session collisions. - (Yasuo Ohgaki) + (CVE-2011-4718). (Yasuo Ohgaki) . Fixed possible buffer overflow under Windows. Note: Not a security fix. (Yasuo) . Changed session.auto_start to PHP_INI_PERDIR. (Yasuo) -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php