diff options
| author | Raphael Geissert <geissert@php.net> | 2010-03-13 18:40:29 +0000 |
|---|---|---|
| committer | Raphael Geissert <geissert@php.net> | 2010-03-13 18:40:29 +0000 |
| commit | d8da372fd0aa22d503b4204f4485b2d5c8ce75bd (patch) | |
| tree | 29b35fb408cabb44eb325d7a735b3e49d0c3c129 /NEWS | |
| parent | 1c6ea06c73a2fc997c350fc9ff5cac28f7f5f22e (diff) | |
| download | php-git-d8da372fd0aa22d503b4204f4485b2d5c8ce75bd.tar.gz | |
Fix CVE-2010-0397: null pointer dereference when processing invalid XML-RPC
requests (bug #51288)
Diffstat (limited to 'NEWS')
| -rw-r--r-- | NEWS | 3 |
1 files changed, 3 insertions, 0 deletions
@@ -6,6 +6,9 @@ PHP NEWS - Added stream filter support to mcrypt extension (ported from mcrypt_filter). (Stas) +- Fixed a NULL pointer dereference when processing invalid XML-RPC + requests (Fixes CVE-2010-0397, bug #51288). (Raphael Geissert) + - Fixed bug #51269 (zlib.output_compression Overwrites Vary Header). (Adam) - Fixed bug #51257 (CURL_VERSION_LARGEFILE incorrectly used after libcurl version 7.10.1). (aron dot ujvari at microsec dot hu) |