News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPClasses.org:
Another Serious Security Bug on PHP 5.3.9
February 06, 2012 @ 14:16:22

On the PHPClasses.org blog there's a new post detailing an issue that came up in the PHP 5.3.9 release that caused a large security issue (PHP 5.3.10 has, however, already been released to correct the issue).

PHP 5.3.9 release was mostly meant to fix a security bug, but it introduced a new more serious bug. PHP 5.3.10 was just released to fix this issue. [...] This time it is a bug that allows arbitrary remote code execution. This means that it allows to run arbitrary code on the server, injected by an eventual attacker, so it can be used to cause many types of damage inside a server.

The upgrade to PHP 5.3.10 is highly recommended to prevent this issue from effecting your applications. The post also mentions the dropping of Suhosin support (a security plugin for PHP) on the Debian linux distribution's default installation and how the PHP community has reacted to the decision.

0 comments voice your opinion now!
security bug release update suhosin


blog comments powered by Disqus

Similar Posts

Hiveminds.com: PHP 5.3 and PHP 6 risk becoming vaporware

Ilia Alshanetsky's Blog: FUDforum 2.7.6RC1 Released

Christian Spanning\'s Blog: PHP development on Mac OS X

Symfony Blog: The Definitive Guide to Symfony and symfony 1.0 RC1 released

PHP.net: PHP 5.5.5 Released


Community Events

Don't see your event here?
Let us know!


laravel extension voicesoftheelephpant introduction api conference framework php7 podcast series performance opinion release symfony2 example community version library application interview

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework