News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP.net:
PHP 5.3.5 and 5.2.17 Released!
January 07, 2011 @ 07:10:29

On the main PHP site there's a new announcement about a critical update in a new version to both the PHP 5.2.x and 5.3.x series of releases to correct a problem that could cause a hang or crash from user input - 5.3.5 and 5.2.17.

The PHP development team would like to announce the immediate availability of PHP 5.3.5 and 5.2.17. This release resolves a critical issue, reported as PHP bug #53632 and CVE-2010-4645, where conversions from string to double might cause the PHP interpreter to hang on systems using x87 FPU registers. The problem is known to only affect x86 32-bit PHP processes, regardless of whether the system hosting PHP is 32-bit or 64-bit. You can test whether your system is affected by running this script from the command line.

All users are strongly encouraged to update their releases. While the problem only happens in certain circumstances, it can still be a huge problem since the data comes directly from the user. For more information about the issue see this post.

0 comments voice your opinion now!
release bugfix crash freeze patch critical issue 32bit x86


blog comments powered by Disqus

Similar Posts

Johannes Schluter's Blog: Features in PHP trunk: Array dereferencing

PHPClasses.org: Another Serious Security Bug on PHP 5.3.9

Community News: PHP Remote Exploit - Floating Point Issue Causes Freeze/Crash

Ilia Alshanetsky's Blog: mail() logging for PHP

Community News: Senza Limiti Acquires Ajax-based PHP Grid, Plans to Open Source It


Community Events





Don't see your event here?
Let us know!


symfony interview artisanfiles language series community version introduction podcast opinion voicesoftheelephpant security release conference laravel library composer list framework tool

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework