PHP 4.3.8/4.3.7/memory_limit/CAN-2004-0594

2004-07-15 Thread Tom Goulet (UID0)
Hello, This page from the PHP project says that due to security holes all PHP 4.3.7 installations should be upgraded to 4.3.8: | http://www.php.net/release_4_3_8.php This page talks about one of the security holes: | http://security.e-matters.de/advisories/112004.html Woody uses 4.1.2 and may be

Re: PHP 4.3.8/4.3.7/memory_limit/CAN-2004-0594

2004-07-15 Thread Hideki Yamane
Hi, Thu, 15 Jul 2004 11:14:53 -0600, Tom Goulet (UID0) PHP 4.3.8/4.3.7/memory_limit/CAN-2004-0594 Woody uses 4.1.2 and may be vulnerable. Sarge and Sid use 4.3.4 and probably are vulnerable. Has anyone checked? First of all, you should check BTS. see http://bugs.debian.org/php4

Re: PHP 4.3.8/4.3.7/memory_limit/CAN-2004-0594

2004-07-15 Thread Tom Goulet (UID0)
On Fri, Jul 16, 2004 at 12:12:39PM +0900, Hideki Yamane wrote: Woody uses 4.1.2 and may be vulnerable. Sarge and Sid use 4.3.4 and probably are vulnerable. Has anyone checked? First of all, you should check BTS. Aha, I'll do that next time, thanks. (I searched a couple appropriate mailing