* Home Help Login Register

Welcome, Guest. Please login or register.
September 07, 2010, 06:29:18 AM

Login with username, password and session length
Welcome to ZboX Webhosting.
4066 Posts in 802 Topics by 177 Members
Latest Member: melmilla213
Search:     Advanced search
+  ZboX Webhosting Est. 2003. Now in our Sixth year!
|-+  Feedback
| |-+  In our clients own words...
| | |-+  PHP 5.2.8 Released / PHP 5.2.7 removed from distribution		 0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: PHP 5.2.8 Released / PHP 5.2.7 removed from distribution  (Read 1388 times)
DJ Mike
Posting Maniac
*****
Offline Offline

Posts: 229



WWW
PHP 5.2.8 Released / PHP 5.2.7 removed from distribution
« on: December 22, 2008, 02:01:52 PM »
There isn't a forum where this kind of post

http://www.php.net/archive/2008.php#id2008-12-08-1

PHP 5.2.8 Released!
[08-Dec-2008]
The PHP development team would like to announce the immediate availability of PHP 5.2.8. This release addresses a regression introduced by 5.2.7 inregard to the magic_quotes functionality, that was broken by an incorrect fix to the filter extension. All users who have upgraded to 5.2.7 are encouraged to upgrade to this release, alternatively you can apply a work-around for the bug by changing "filter.default_flags=0" in php.ini.

PHP 5.2.7 has been removed from distribution
[07-Dec-2008]
Due to a security bug found in the PHP 5.2.7 release, it has been removed from distribution. The bug affects configurations where magic_quotes_gpc is enabled, because it remains off even when set to on. In the meantime, use PHP 5.2.6 until PHP 5.2.8 is later released.

PHP 5.2.7 Released
[04-Dec-2008]
The PHP development team would like to announce the immediate availability of PHP 5.2.7. This release focuses on improving the stability of the PHP 5.2.x branch with over 120 bug fixes, several of which are security related. All users of PHP are encouraged to upgrade to this release.
Security Enhancements and Fixes in PHP 5.2.7:
Upgraded PCRE to version 7.8 (Fixes CVE-2008-2371)
Fixed missing initialization of BG(page_uid) and BG(page_gid), reported by Maksymilian Arciemowicz.
Fixed incorrect php_value order for Apache configuration, reported by Maksymilian Arciemowicz.
Fixed a crash inside gd with invalid fonts (Fixes CVE-2008-3658).
Fixed a possible overflow inside memnstr (Fixes CVE-2008-3659).
Fixed security issues detailed in CVE-2008-2665 and CVE-2008-2666.
Fixed bug #45151 (Crash with URI/file..php (filename contains 2 dots)).(Fixes CVE-2008-3660)
Fixed bug #42862 (IMAP toolkit crash: rfc822.c legacy routine buffer overflow). (Fixes CVE-2008-2829)
Fixed extraction of zip files and directories with crafted entries, reported by Stefan Esser.
Further details about the PHP 5.2.7 release can be found in the release announcement for 5.2.7, the full list of changes is available in the ChangeLog for PHP 5.
Update (December 6th): Added missing zip security fix

Logged

Pages: [1] Go Up Print 
« previous next »
Jump to:  

Powered by MySQL Powered by PHP Valid XHTML 1.0! Valid CSS!
Page created in 0.075 seconds with 21 queries.
ZboX Webhosting Est. 2003. Now in our Sixth year! | Powered by SMF 1.0.11.
© 2005, Simple Machines LLC. All Rights Reserved. 		Design by 7dana.com