#3203 closed task (fixed)
PHP-5.3.5
| Reported by: | Randy McMurchy | Owned by: | |
|---|---|---|---|
| Priority: | high | Milestone: | |
| Component: | BOOK | Version: | SVN |
| Severity: | major | Keywords: | |
| Cc: |
Description (last modified by )
Version increment to 5.3.4
Quoted from the above URL:
Security Enhancements and Fixes in PHP 5.3.4:
* Fixed crash in zip extract method (possible CWE-170).
* Paths with NULL in them (foo\0bar.txt) are now considered as invalid (CVE-2006-7243).
* Fixed a possible double free in imap extension (Identified by Mateusz Kocielski). (CVE-2010-4150).
* Fixed NULL pointer dereference in ZipArchive::getArchiveComment. (CVE-2010-3709).
* Fixed possible flaw in open_basedir (CVE-2010-3436).
* Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950).
* Fixed symbolic resolution support when the target is a DFS share.
* Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data) (CVE-2010-3710).
Change History (6)
comment:1 by , 13 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 13 years ago
| Milestone: | future → 6.7 |
|---|
comment:3 by , 13 years ago
| Description: | modified (diff) |
|---|---|
| Owner: | changed from to |
| Status: | assigned → new |
| Summary: | PHP-5.3.3 → PHP-5.3.4 |
Updated BLFS to PHP-5.3.3. Since my installation, 5.3.4 has been released. Both versions require additional dependencies (not listed in the 5.3.3 update as it will be short-lived).
http://www.geocities.jp/kosako3/oniguruma/ http://www.acme.com/software/thttpd/ http://pi3web.sourceforge.net/pi3web/ several non-free web-servers (probably not worth mentioning) the "lemon" parser in the "tools" subdir of the SQLite tarball
comment:4 by , 13 years ago
| Summary: | PHP-5.3.4 → PHP-5.3.5 |
|---|
Version increment to 5.3.5
5.3.5 is out fixing some floating-point issues.
Note:
See TracTickets
for help on using tickets.
Updated milestone to 6.7