• Made PostgreSQL escaping functions in PostgreSQL and PDO extension keep track of character set encoding whenever possible.
• Added allow_url_include, set to Off by default to disallow use of URLs for include and require.
• Disable realpath cache when open_basedir and safe_mode are being used.
• Improved safe_mode enforcement for error_log() function.
• Fixed a possible buffer overflow in the underlying code responsible for htmlspecialchars() and htmlentities() functions.
• Added missing safe_mode and open_basedir checks for the cURL extension.
• Fixed overflow is str_repeat() & wordwrap() functions on 64bit machines.
• Fixed handling of long paths inside the tempnam() function.
• Fixed safe_mode/open_basedir checks for session.save_path, allowing them to account for extra parameters.
• Fixed ini setting overload in the ini_restore() function.

Didier Stevens has released a new version of his OllyDbg plugin called OllyStepNSearch.

About OllyDbg:
OllyDbg is a 32-bit assembler level analysing debugger for Microsoft® Windows®. Emphasis on binary code analysis makes it particularly useful in cases where source is unavailable.

More information can be found here.

About OllyStepNSearch:
This plugin allows you to search for a given text when automatically
stepping through the debugged program.

When the plugin is enabled, it will step automatically through the debugged
program once a step command (like Step Into) is issued.

More information can be found here.

Here is a movie of this example on YouTube, a High Res (XviD) version can be found here.