- sa-2006-003: Session fixation issue

2 files changed, 10 insertions, 0 deletions

diff --git a/modules/user.module b/modules/user.module
index 859c6aa9c..069786fa7 100644
--- a/modules/user.module
+++ b/modules/user.module
@@ -915,6 +915,11 @@ function user_login_submit($form_id, $form_values) {
     db_query("UPDATE {users} SET login = %d WHERE uid = %d", time(), $user->uid);
 
     user_module_invoke('login', $form_values, $user);
+
+    $old_session_id = session_id();
+    session_regenerate_id();
+    db_query("UPDATE {sessions} SET sid = '%s' WHERE sid = '%s'", session_id(), $old_session_id);
+
   }
 }
 
diff --git a/modules/user/user.module b/modules/user/user.module
index 859c6aa9c..069786fa7 100644
--- a/modules/user/user.module
+++ b/modules/user/user.module
@@ -915,6 +915,11 @@ function user_login_submit($form_id, $form_values) {
     db_query("UPDATE {users} SET login = %d WHERE uid = %d", time(), $user->uid);
 
     user_module_invoke('login', $form_values, $user);
+
+    $old_session_id = session_id();
+    session_regenerate_id();
+    db_query("UPDATE {sessions} SET sid = '%s' WHERE sid = '%s'", session_id(), $old_session_id);
+
   }
 }