FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

codeigniter -- multiple vulnerabilities

Affected packages
codeigniter < 2.2.0

Details

VuXML ID f838dcb4-656f-11e5-9909-002590263bf5
Discovery 2014-06-05
Entry 2015-09-28

The CodeIgniter changelog reports:

Security: The xor_encode() method in the Encrypt Class has been removed. The Encrypt Class now requires the Mcrypt extension to be installed.

Security: The Session Library now uses HMAC authentication instead of a simple MD5 checksum.

References

FreeBSD PR ports/203401
URL https://codeigniter.com/userguide2/changelog.html