On 7-May-07, at 2:35 PM, Dirk Haun wrote:
David Coallier wrote:
Anyone has an answer/tests to that bug* so we can stop this
discussion ? :)
The bug has apparently been fixed in CVS. Haven't had a chance to test
it, but will do as soon as possible.
Please let me know how it works out. One interesting feature of the
old code is that HTTP_RAW_POST_DATA could be present even when the
INI option controlling its creation was off, this was a bug and will
not be re-instated.
Now the question is: When can we expect an update? I see people
talking
about what should go into PHP 5.2.3. How about "this bugfix,
possibly a
few others, and then release it ASAP"? As in by the end of this
week (or
thereabouts)?
I suspect in a week or two. Definitely sooner then later.
This bug affects a lot of sites that use XML-RPC communication of some
form or another. Quite a lot of those nifty Web 2.0 sites, I would
assume. And since people will be updating quickly due to the security
issues fixed with 5.2.2, they may be in for a surprise.
I sure hope those nifty Web 2.0 sites don't use SOAP and XML-RPC but
rather JSON or REST.
Ilia Alshanetsky
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php