unread
The attached patch fixes CVE-2007-1285 (nesting variables in input
crash) for 4.x branch - release notes say it's fixed but in fact it
never was.
Objections?
Stanislav Malyshev, Zend Products Engineer
stas@zend.com http://www.zend.com/