Drupal
/
drupal
mirror of https://git.drupalcode.org/project/drupal.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Drupal 5.20

5.x 5.20
Neil Drumm 2009-09-16 19:33:40 +00:00
parent 404fcf299f
commit 30ad0102ae
3 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
CHANGELOG.txt
View File

@ -1,9 +1,11 @@
// $Id$
Drupal 5.20-dev xxxx-xx-xx
Drupal 5.20, 2009-09-16
-----------------------
- The 'access' element for hook_menu() now interprets Drupal 6 style values,
like array('access content').
- Avoid security problems resulting from writing Drupal 6-style menu
declarations.
- Fixed security issues (session fixation), see SA-CORE-2009-008.
- Fixed a variety of small bugs.
Drupal 5.19, 2009-07-01
-----------------------

2
modules/system/system.module
View File

@ -6,7 +6,7 @@
* Configuration system that lets administrators modify the workings of the site.
*/
define('VERSION', '5.20-dev');
define('VERSION', '5.20');
/**
* Implementation of hook_help().

2
modules/user/user.module
View File

@ -1149,6 +1149,8 @@ function user_pass_reset($uid, $timestamp, $hashed_pass, $action = NULL) {
$user = $account;
// And proceed with normal login, going to user page.
$edit = array();
// Regenerate the session ID to prevent against session fixation attacks.
sess_regenerate();
user_module_invoke('login', $edit, $user);
drupal_set_message(t('You have just used your one-time login link. It is no longer necessary to use this link to login. Please change your password.'));
drupal_goto('user/'. $user->uid .'/edit');