Sat, 30 Jun 2007

2:20 AM - PHP5

The PHP5 port was updated to 5.2.3. The new version includes several security patches.

Fixed an integer overflow inside chunk_split() (by Gerhard Wagner, CVE-2007-2872)
Fixed possible infinite loop in imagecreatefrompng. (by Xavier Roche, CVE-2007-2756)
Fixed ext/filter Email Validation Vulnerability (MOPB-45 by Stefan Esser, CVE-2007-1900)
Fixed bug #41492 (open_basedir/safe_mode bypass inside realpath()) (by bugs dot php dot net at chsc dot dk)
Improved fix for CVE-2007-1887 to work with non-bundled sqlite2 lib.
Added mysql_set_charset() to allow runtime altering of connection encoding.

0 comments