On Sun, 11 Feb 2007, ascii wrote: > During "software development" with Di Paola we found that latest php5 > stable version available for gentoo (5.1.6) is affected by a double > free in the htmlentities() function, commonly exposed to user input. >
it's https://bugs.gentoo.org/show_bug.cgi?id=153911 The php team is working on putting php-5.2.1 into portage. Please note that the htmlentities() and htmlspecialchars() issues can only be triggered if you chose UTF-8 charset, which is not the default. Cheers, -- Raphaël Marichez aka Falco
pgpXpnrUb2Y2g.pgp
Description: PGP signature
