NYCPHP Meetup

NYPHP.org

[nycphp-talk] SecurityFocus Newsletter #297

Chris Shiflett shiflett at php.net
Thu May 5 00:21:40 EDT 2005


Hans Zaunere wrote:
> > PHP Group PHP Multiple Unspecified Vulnerabilities [in 4.3.11 and 5.0.3]
> > http://www.securityfocus.com/bid/13143
> 
> Can someone explain this one to me? There is no exploit, no description,
> no nothing... and this is far from the first time that security focus
> publishes these types of exploits, PHP or not.

This report is likely referencing the release announcement that Ilia sent:

"The PHP Development Team would like to announce the immediate release 
of PHP 4.3.11 and 5.0.4. These are maintenance releases that in addition 
  to fixing over 70 non-critical bugs, address several security issues. 
The addressed security issues include fixes to the exif and fbsql 
extensions, as well as fixes to unserialize(), swf_definepoly() and 
getimagesize()."

Chris

-- 
Chris Shiflett
Brain Bulb, The PHP Consultancy
http://brainbulb.com/



More information about the talk mailing list