Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Php 5.4 strict session collision detection #367

Closed

Conversation

@yohgaki
Copy link
Contributor

commented Jun 25, 2013

This patch implements

https://wiki.php.net/rfc/strict_sessions
CVE-2011-4718

Yasuo Ohgaki added 2 commits Jun 25, 2013
@dsp

This comment has been minimized.

Copy link
Member

commented Sep 16, 2013

this pr was already merged.

@dsp dsp closed this Sep 16, 2013
@kaplanlior

This comment has been minimized.

Copy link
Contributor

commented Sep 16, 2013

@dsp AFAIK it was only merged to 5.5 and master, but for 5.4...

@dsp

This comment has been minimized.

Copy link
Member

commented Sep 16, 2013

Yes, I think we aren't backporting it to 5.4, but it's up to @smalyshev‎ to decide.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
3 participants
You can’t perform that action at this time.