mirror of
https://github.com/php/php-src.git
synced 2024-09-24 03:17:26 +00:00
ChangeLog update
This commit is contained in:
parent
fde56bd858
commit
bb433c26c1
@ -1,3 +1,11 @@
|
||||
2007-06-16 Stefan Esser <php@nopiracy.de>
|
||||
|
||||
* ext/session/session.c:
|
||||
Fix attribute injection security bug correctly by URL encoding session
|
||||
name and session value. (in future maybe encode path/domain, too)
|
||||
|
||||
Remove backward compatibility breaking blacklist of characters.
|
||||
|
||||
2007-06-15 Stanislav Malyshev <stas@zend.com>
|
||||
|
||||
* ext/session/session.c
|
||||
|
Loading…
Reference in New Issue
Block a user