#3203 closed task (fixed)
PHP-5.3.5
Reported by: | Randy McMurchy | Owned by: | |
---|---|---|---|
Priority: | high | Milestone: | |
Component: | BOOK | Version: | SVN |
Severity: | major | Keywords: | |
Cc: |
Description (last modified by )
Version increment to 5.3.4
Quoted from the above URL:
Security Enhancements and Fixes in PHP 5.3.4: * Fixed crash in zip extract method (possible CWE-170). * Paths with NULL in them (foo\0bar.txt) are now considered as invalid (CVE-2006-7243). * Fixed a possible double free in imap extension (Identified by Mateusz Kocielski). (CVE-2010-4150). * Fixed NULL pointer dereference in ZipArchive::getArchiveComment. (CVE-2010-3709). * Fixed possible flaw in open_basedir (CVE-2010-3436). * Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950). * Fixed symbolic resolution support when the target is a DFS share. * Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data) (CVE-2010-3710).
Change History (6)
comment:1 by , 14 years ago
Owner: | changed from | to
---|---|
Status: | new → assigned |
comment:2 by , 14 years ago
Milestone: | future → 6.7 |
---|
comment:3 by , 14 years ago
Description: | modified (diff) |
---|---|
Owner: | changed from | to
Status: | assigned → new |
Summary: | PHP-5.3.3 → PHP-5.3.4 |
Updated BLFS to PHP-5.3.3. Since my installation, 5.3.4 has been released. Both versions require additional dependencies (not listed in the 5.3.3 update as it will be short-lived).
http://www.geocities.jp/kosako3/oniguruma/ http://www.acme.com/software/thttpd/ http://pi3web.sourceforge.net/pi3web/ several non-free web-servers (probably not worth mentioning) the "lemon" parser in the "tools" subdir of the SQLite tarball
comment:4 by , 14 years ago
Summary: | PHP-5.3.4 → PHP-5.3.5 |
---|
Version increment to 5.3.5
5.3.5 is out fixing some floating-point issues.
Note:
See TracTickets
for help on using tickets.
Updated milestone to 6.7