diff options
| author | Pierre Joye <pajoye@php.net> | 2010-09-28 13:30:30 +0000 |
|---|---|---|
| committer | Pierre Joye <pajoye@php.net> | 2010-09-28 13:30:30 +0000 |
| commit | 6bae8fbd9cb6f7a0ee20f9e92ca40d909b72b251 (patch) | |
| tree | 69b099d30d1af7f3ffbf535a82af6408c578ece3 | |
| parent | edb4351004e29cdc4fc3212daca146ddc9a4b0c7 (diff) | |
| download | php-git-6bae8fbd9cb6f7a0ee20f9e92ca40d909b72b251.tar.gz | |
- Fixed possible flaw in open_basedir (CVE-2010-3436)
| -rw-r--r-- | NEWS | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -13,8 +13,9 @@ - Implemented symbolic links support for open_basedir checks. (Pierre) - Implemented FR #51804, SplFileInfo::getLinkTarget on Windows. (Pierre) -- Fixed symbolic resolution support when the target is a DFS share. (Pierre) +- Fixed possible flaw in open_basedir (CVE-2010-3436). (Pierre) - Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950). (Pierre) +- Fixed symbolic resolution support when the target is a DFS share. (Pierre) - Changed deprecated ini options on startup from E_WARNING to E_DEPRECATED. (Kalle) - Changed the $context parameter on copy() to actually have an effect. (Kalle) |