Status: Unconfirmed
Owner: ----
Labels: Type-Bug Pri-2 OS-All Area-Misc
New issue 28906 by Patrick.W.McMahon: session php unset bug
http://code.google.com/p/chromium/issues/detail?id=28906
Chrome Version : <Copy from: 'about:version'>
URLs (if applicable) :
Other browsers tested:
Add OK or FAIL after other browsers where you have tested this issue:
Safari 4: not tested
Firefox 3.x: works
IE 7: not tested
IE 8: not tested
IE8+chrome frame: bug happens
What steps will reproduce the problem?
SESSION_MY_USER is a defined string.
1. session_start();
2.$_SESSION[SESSION_MY_USER] = new UserObject();
3.set a bunch of data in $_SESSION[SESSION_MY_USER]
4.unset($_SESSION[SESSION_MY_USER]);
5.session_destroy();
6.session_start();
What is the expected result?
after creating a new $_SESSION[SESSION_MY_USER] of type UserObject()
i should have a clean new UserObject() and should not be bringing the old
session data back.
What happens instead?
when you log out and log in as some one else on the same pc it will
randomly jump from different sessions that where unset and should not be
there. this bug shows up on IE8 with chrome frames. but not in firefox 3.x
this compromises the security of my site if its going to randomly pull in
sessions that should not bet set anymore.
-----------------------------------------------------
please let me know if there is some kind of solution or bug fix that can
get this solved.
--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
--
Automated mail from issue updates at http://crbug.com/
Subscription options: http://groups.google.com/group/chromium-bugs
