4 Nov
2009
4 Nov
'09
6:05 a.m.
User: webchick Branch: HEAD Date: Wed, 04 Nov 2009 05:05:52 +0000 Modified files: /includes session.inc /modules/simpletest/tests common.test https.php session.test session_test.module Log message: #575280 follow-up by mfb and chx: Fixed impersonation attack when an https session exists. Links: http://cvs.drupal.org/diff.php?path=drupal/includes/session.inc&old=1.72&new... http://cvs.drupal.org/diff.php?path=drupal/modules/simpletest/tests/common.t... http://cvs.drupal.org/diff.php?path=drupal/modules/simpletest/tests/https.ph... http://cvs.drupal.org/diff.php?path=drupal/modules/simpletest/tests/session.... http://cvs.drupal.org/diff.php?path=drupal/modules/simpletest/tests/session_...