[PLUTO-security] [Fwd: New php release with security fixes]
Tom aka 'Dido'
tom at pluto.linux.it
Fri May 30 10:18:46 CEST 2003
-----Forwarded Message-----
>
>
> ---------- Forwarded message ----------
> Date: Thu, 29 May 2003 15:05:24 +0300 (EEST)
> From: Jani Taskinen <sniper a php.net>
> Reply-To: Jani Taskinen <sniper a iki.fi>
> To: php-announce a lists.php.net
> Cc: php-general a lists.php.net
> Subject: [ANNOUNCE] PHP 4.3.2 released
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
>
> After a lengthy QA process, PHP 4.3.2 is finally out! This maintenance
> release solves a lot of bugs found in earlier PHP versions and is a
> *strongly* recommended upgrade for all PHP users.
>
> PHP 4.3.2 contains, among others, following important fixes, additions and
> improvements:
>
> * Fixes several potentially hazardous integer and buffer overflows.
> * Fixes for several 64-bit problems.
> * New Apache 2.0 SAPI module (sapi/apache2handler, enabled with --with-apxs2).
> * New session_regenerate_id() function.
> (Important feature against malicious session planting).
> * Improvements to dba extension.
> * Improvements to thttpd SAPI module.
> * Dropped support for GDLIB version 1.x.x (php_gd.dll) on Windows.
> * An unix man page for CLI version of PHP.
> * New "disable_classes" php.ini option to allow administrators to disable
> certain classes for security reasons.
> * ..and huge amount other bug fixes
>
> For a full list of changes in PHP 4.3.2, see the NEWS file.
> (http://www.php.net/ChangeLog-4.php).
>
> md5sums:
>
> 8aec1bb2dbcca1c92835c71e2e30d9c5 *php-4.3.2.tar.bz2
> 8433a1d0ce679780990d4813ae094590 *php-4.3.2.tar.gz
> e1afea6341d97e8160bd7d93712721ec *php-4.3.2-Win32.zip
> cb55d0d9df6a2bf4ba666c27886d12cb *php-4.3.2-installer.exe
>
>
> kippis,
>
> Jani Taskinen
> sniper a php.net
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.0.6 (GNU/Linux)
> Comment: For info see http://www.gnupg.org
>
> iD8DBQE+1feO/HlsOzK2WlERAuExAKDYgdy/qCRur4YPdoPGrxfFqWxxmgCfdnal
> DtTNv9vmVAUDRh2LjM0lUH0=
> =GHti
> -----END PGP SIGNATURE-----
More information about the pluto-security
mailing list