Date: Thu, 1 Feb 2007 15:21:46 +0200 From: gareth <bsd@lordcow.org> To: ports@freebsd.org Subject: Re: phpBB patch? Message-ID: <20070201132146.GA17062@lordcow.org> In-Reply-To: <679088c80701241951t164cee51rd61062f5de9e87dc@mail.gmail.com> References: <20070125032857.GA5686@lordcow.org> <679088c80701241951t164cee51rd61062f5de9e87dc@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed 2007-01-24 (19:51), Gordon Stratton wrote: > On 1/24/07, gareth <bsd@lordcow.org> wrote: > >hi, portupgrade just upgraded phpbb-2.0.22 to phpbb-2.0.22_1. > >it used phpBB-2.0.22.tar.bz2 from www.phpbb.com (same as before), > >and as far as i can tell the .php files are the same (and naturally > >the database is untouched). does anyone know what this upgrade > >was meant to achieve? > > >From the log[1]: > --- > Remove previously added security patch against session table > exhaustion, as it causes more problems in the latest phpbb > version. Users are advised to drop and re-create their > session tables (phpbb_sessions, phpbb_sessions_keys) without > using "HEAP" tables. ah, thanx for the link. so this's the only thing that changed? : http://www.freebsd.org/cgi/cvsweb.cgi/ports/www/phpbb/files/Attic/security-patch-includes-sessions.php?annotate=1.2
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070201132146.GA17062>