FAQ  |  Search  |  Register  |  Profile  |  Log in to check your private messages  |  Log in
A security flaw in php 5.2.9 with cURL (new release 5.2.9-1)

 
Post new topic   Reply to topic    Aprelium Forum Index -> PHP
View previous topic :: View next topic  
Author Message
anybody
-


Joined: 17 Mar 2008
Posts: 90
PostPosted: Thu Mar 12, 2009 6:45 am    Post subject: A security flaw in php 5.2.9 with cURL (new release 5.2.9-1) Reply with quote
PHP.net has discovered security flaw for their WINDOWS release of 5.2.9. They have release another version of php 5.2.9-1 with a fix.

If you've already updated PHP to 5.2.9 I seriously suggest that you get to updating again. Especially if you are using cURL (enabled by extension) and have open_basedir or safe_mode enabled. If you don't have ether of those enabled and/or you don't use cURL then your in the clear.

For those of you who use an eCommerce package that requires cURL for credit card payments then I seriously suggest you do some research and/or upgrade your php installation.

http://www.php.net/archive/2009.php
http://curl.haxx.se/docs/adv_20090303.html

Enjoy
Back to top View user's profile Send private message
aprelium
-


Joined: 22 Mar 2002
Posts: 6800
PostPosted: Fri Mar 13, 2009 4:49 pm    Post subject: Re: A security flaw in php 5.2.9 with cURL (new release 5.2. Reply with quote
http://www.aprelium.com/forum/viewtopic.php?p=76720#76720
_________________
Support Team
Aprelium - http://www.aprelium.com
Back to top View user's profile Send private message Send e-mail
Display posts from previous:   
Post new topic   Reply to topic    Aprelium Forum Index -> PHP All times are GMT + 1 Hour
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB phpBB Group