7.4.33-4 from 7.4.33-2 - breaking issue with crypt function

remicollet / php-src-security

Security backports for EOL versions of PHP.

Other

39 stars 9 forks source link

Closed jasondowzell closed 7 months ago

jasondowzell commented 1 year ago

Updated to PHP 7.4.33-4 this morning and crypt function "breaks"

Current code is:

$hashed_pass = crypt($password, $Blowfish_Pre . $unique_salt . $Blowfish_End);
if ($hashed_pass==$stored_password) {

This return true in PHP 7.4.33-2 but in PHP 7.4.33-4 it returns false

YumeMichi commented 1 year ago

Your $unique_salt contains $?

remicollet commented 7 months ago

Inactive, so closing