Tags · peterkeung/ezpublish-legacy-netgen

Fix EZP-24140: Potential vulnerability in eZ Publish password recovery

Use openssl_random_pseudo_bytes() if available, otherwise fall back to mt_rand(). Use microtime() for entropy.

(cherry picked from commit 5908d5e)

May 19, 2015
98fb8ba
zip
tar.gz

v2014.11.2

Fix EZP-24140: Potential vulnerability in eZ Publish password recovery

Use openssl_random_pseudo_bytes() if available, otherwise fall back to mt_rand(). Use microtime() for entropy.

(cherry picked from commit 5908d5e)

May 11, 2015
658924e
zip
tar.gz

v2015.01.2

Fix EZP-24135: Output buffer gets cleared after legacy call

Moved hasInstance() method from \eZ\Publish\Core\MVC\Legacy\Kernel to ezpKernel
Use hasInstance() in eZScript
Use hasInstance() in Kernel::instance()
CS fix in Kernel::instance()

(cherry picked from commit 97d6a72)

Apr 16, 2015
eba0c2b
zip
tar.gz

PreviousNext

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

v2017.07.0

v2017.06.0

v2017.04.0

v2017.03.0

v2017.02.0

v2016.11.0

v2016.10.0

v2015.01.3

v2014.11.2

v2015.01.2

Tags: peterkeung/ezpublish-legacy-netgen