Results 1 to 2 of 2
  1. #1
    ABW Ambassador
    Join Date
    January 17th, 2005
    Be sure to upgrade your php if you maintain your own server(s).

    <BLOCKQUOTE class="ip-ubbcode-quote"><font size="-1">quote:</font><HR>
    The PHP Group today announced the details of a serious vulnerability in PHP versions 4.2.0 and 4.2.1. A security update, PHP 4.2.2, fixes the issue. Everyone running affected versions of PHP is encouraged to upgrade immediately. The new 4.2.2 release doesn't include other changes, so upgrading from 4.2.1 is safe and painless.

  2. #2
    Join Date
    January 17th, 2005
    Currently version PHP 4.2.3 is available. Here's a list of fixes in 4.2.3. Please upgrade if you feel that you should [img]/infopop/emoticons/icon_smile.gif[/img]

    06 Sep 2002, Version 4.2.3
    - Enabled strcoll() on win32. (Markus)
    - Fixed possible ASCII control char injection in mail(). (Stefan Esser)
    - Fixed a potential crash bug in import_request_variables() (Zeev)
    - Fixed several problems with directory functions on Windows. (Steph)
    - Fixed xbithack bug in Apache module. (Rasmus)
    - Fixed a bug that prevented touch() from working on various platforms. (Steph)
    - Fixed ob_gzhandler()'s handling of requests that do have the Accept-Encoding
    header, but do not allow compression. (Zeev)
    - Fixed several bugs in the multithreaded version that could cause random parse
    errors, especially on machines with multiple CPUs. (Zeev, Zend Engine)
    - Fixed a build problem in bcmath. (Alan)
    - Fixed several bzip2 issues. (Andrei, kalowsky)
    - Fixed several COM issues. (Harald)
    - Various exif fixes. (Marcus)
    - Fixed domxml_xslt_process() and domxml_get_element_by_id() and several
    other issues in DOMXML. (Christian)
    - Fixed DOMXML crash on removing previously created attributes. (Christian)
    - Fixed crash when converting $GLOBALS to an object. (Zeev, Zend Engine)
    - Fixed ImageCreateFromGD2Part() (Jani)
    - Fixed a build issue in the IMAP extension under IRIX. (kalowsky)
    - Fixed a bug in imap_last_error() (Jani)
    - Various mbstring fixes. (Yasuo, Rui)
    - Fixed a build problem in the mcal extension. (Jani)
    - Made MySQL rollback open transactions when the request ends. (Georg)
    - Fixed a crash in the shutdown order of the ODBC module. (kalowsky)
    - Fixed PCRE build problems. (
    - Fixed a crash in pg_lo_write() (Yasuo)
    - Fixed posix_isatty() and posix_ttyname(). (Markus)
    - Fixed accidental pg_lo_import() API change. (Yasuo)
    - Fixed ereg_replace() crash when the backreference number was greater than the
    number of captured subpatterns. (
    - Fixed array_rand() on thread-safe platforms such as Windows. (Edin)
    - Report the right exit code after a call to exit(). (Edin)

  3. Newsletter Signup

+ Reply to Thread

Similar Threads

  1. I'm In the Hole at Linkshare
    By Billy Kay in forum Rakuten LinkShare - LS
    Replies: 14
    Last Post: September 17th, 2010, 03:31 AM
  2. In The Hole Golf $0.00
    By davidh in forum ShareASale - SAS
    Replies: 0
    Last Post: June 14th, 2006, 01:25 PM
  3. New IE hole
    By Heyder in forum Midnight Cafe'
    Replies: 3
    Last Post: October 25th, 2003, 11:34 AM
  4. MS security hole discovered just now
    By Heyder in forum Midnight Cafe'
    Replies: 25
    Last Post: September 11th, 2003, 03:51 PM
  5. Problem running PHP
    By frank3iii in forum Programming / Datafeeds / Tools
    Replies: 2
    Last Post: July 7th, 2003, 10:11 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts