lucid has seen the end of its life and is no longer receiving any
updates. Marking the lucid task for this ticket as Won't Fix.
** Changed in: php5 (Ubuntu Lucid)
Status: Triaged = Won't Fix
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is
Hi Mikko, thanks for filing this report.
I can confirm that the wrong behavior happens on Lucid's php5-cli
package.
I can also confirm that this was resolved upstream in version 5.3.3:
https://bugs.php.net/bug.php?id=52361
These two commits *could* be backported to Lucid's PHP:
** Attachment added: minimal test case
https://bugs.launchpad.net/bugs/1042711/+attachment/3280442/+files/throw-test.php
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in Ubuntu.
https://bugs.launchpad.net/bugs/1042711
It just occurred to me that the test case written a bit differently
could be program logic guarding authenticated session.
As a result, I'm marking this bug as security but keeping it still
public because I'm not aware of real world PHP program suffering from a
security issue because of this