[nucleus] PHP 5.3.27-22 released
Posted: Wed Aug 28, 2013 11:04 am
Release Notes
Resolves Session fixation vulnerability (CVE-2011-4718) in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.
Note this vulnerability is also tracked as CVE-2013-4718
Changelog
* Fix for CVE-2011-4718
* Case #27731, add php(language)
Resolves Session fixation vulnerability (CVE-2011-4718) in the Sessions subsystem in PHP before 5.5.2 allows remote attackers to hijack web sessions by specifying a session ID.
Note this vulnerability is also tracked as CVE-2013-4718
Changelog
* Fix for CVE-2011-4718
* Case #27731, add php(language)