Skip to content

v1.0.0-rc4

Fix variable names in String::compare.

v0.11.1

Fixing/Improving `String::compare()` algorithm; Security; backported.
The comparison algorithm used before wasn't really resistent against
timing attacks. While a whole iteration was always performed, the
loop's body would perform differently. Once `$result` was `false`,
the right side of the condition was evaluated anymore, thus leading
to an (albeit minimal) shorter execution time.

The affected code is:
```
$result = $result && ($left[$i] === $right[$i]);
```

Refs #1259.

v1.0.0-rc3

Fixing/Improving `String::compare()` algorithm; Security.
The comparison algorithm used before wasn't really resistent against
timing attacks. While a whole iteration was always performed, the
loop's body would perform differently. Once `$result` was `false`,
the right side of the condition was evaluated anymore, thus leading
to an (albeit minimal) shorter execution time.

The affected code is:
```
$result = $result && ($left[$i] === $right[$i]);
```

Refs #1259.

v1.0.0-rc2

Fix composer version contraint.

v1.0.0-rc1

Merge branch 'master' into dev

1.0-beta

Implementing naive relationship fetching & docs.

v1.0.0-beta

Implementing naive relationship fetching & docs.

v0.11.0

Refactoring asset handling in `Media`, implementing support for addin…
…g asset hosts through `Libraries`.

0.11

Refactoring asset handling in `Media`, implementing support for addin…
…g asset hosts through `Libraries`.

lithium-0.11

Refactoring asset handling in `Media`, implementing support for addin…
…g asset hosts through `Libraries`.
Something went wrong with that request. Please try again.