Slackware PHP Security Advisory: Memory Limit Issues and Fixes
slackware
July 21, 2004
New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, and -current to fix security issues (memory_limit handling and a problem in the strip_tags function)
Summary
Here are the details from the Slackware 10.0 ChangeLog: Tue Jul 20 19:35:16 PDT 2004 patches/packages/php-4.3.8-i486-1.tgz: Upgraded to php-4.3.8. This release fixes two security problems in PHP (memory_limit handling and a problem in the strip_tags function). Sites using PHP should upgrade. For more details, see: https://www.cve.org/CVERecord?id=CVE-CAN-2004-0594 https://www.cve.org/CVERecord?id=CVE-CAN-2004-0595 (* Security fix *)
Topics Covered
Where Find New Packages
Updated package for Slackware 8.1:
Updated package for Slackware 9.0:
Updated package for Slackware 9.1:
Updated package for Slackware 10.0:
Updated package for Slackware -current:
MD5 Signatures
Slackware 8.1 package:
c6734463934818904828833b9e5dce59 php-4.3.8-i386-1.tgz
Slackware 9.0 package:
73055c5395f4c60b7cf4bbdcfab17e72 php-4.3.8-i386-1.tgz
Slackware 9.1 package:
e2d3374f55e85a14a15ac267193ac55e php-4.3.8-i486-1.tgz
Slackware 10.0 package:
7dfa5a85e080d833ea21fcd81b166977 php-4.3.8-i486-1.tgz
Slackware -current package:
7dfa5a85e080d833ea21fcd81b166977 php-4.3.8-i486-1.tgz
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Installation Instructions
Installation instructions: First, stop apache: # apachectl stop Next, upgrade to the new PHP package: # upgradepkg php-4.3.8-i486-1.tgz Finally, restart apache: # apachectl start
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!