News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Symfony Blog:
symfony 1.0.5 released (security fix)
June 28, 2007 @ 10:31:00

The Symfony project has released the latest version of their framework - Symfony 1.0.5 - largely a security fix release to help head off some issues that came up with the phpmailer utility.

I've just released symfony 1.0.5. If you use the symfony built-in phpmailer (and you do if you use the ->sendMail() method in your actions), you must upgrade to this release or apply the following patch: http://trac.symfony-project.com/trac/changeset/4380?format=diff&new=4380. PHPMailer has a remote command execution vulnerability if you have configured it to use sendmail. You can find more information about this issue here: http://larholm.com/2007/06/11/phpmailer-0day-remote-execution/

The easiest way to correct the issue is to just apply the patch to your current installation, but since there are other fixes included in the new version, you might opt for the update anyway.

0 comments voice your opinion now!
symfony framework release security phpmailer vulnerability symfony framework release security phpmailer vulnerability


blog comments powered by Disqus

Similar Posts

PHP -GTK Community Site: A New Trio of Posts (phpISO, a PHP-GTK book, and Dev Inspector)

Leo Buttiker's Blog: Trevi is online!

Felix Geisendorfer's Blog: Release early, Release often, A SVN/FTP Development Task

PHP.net: PHP versions 5.2.15 and 5.3.4 Released!

Lukas Smith's Blog: Symfony2 stuff


Community Events

Don't see your event here?
Let us know!


example voicesoftheelephpant framework symfony2 series api introduction php7 interview podcast opinion version extension performance release composer application laravel community library

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework