Alerts This Week
Warning Icon 1 535
Alerts This Week
Warning Icon 1 535

Slackware 11.0: SSA:2007-152-01 Critical PHP5 Security Update

slackware
Calendar Grey June 1, 2007
Dist Slackware Esm H88
Recent updates for PHP5 packages in Slackware tackle essential security vulnerabilities and provide upgrade suggestions for all users.
New php5 packages are available for Slackware 10.2, 11.0, and -current to fix security issues

Summary

Here are the details from the Slackware 11.0 ChangeLog: extra/php5/php-5.2.3-i486-1_slack11.0.tgz: Upgraded to php-5.2.3. Here's some basic information about the release from php.net: "This release continues to improve the security and the stability of the 5.X branch as well as addressing two regressions introduced by the previous 5.2 releases. These regressions relate to the timeout handling over non-blocking SSL connections and the lack of HTTP_RAW_POST_DATA in certain conditions. All users are encouraged to upgrade to this release." For more complete information, see: https://www.php.net/releases/5_2_3.php https://www.cve.org/CVERecord?id=CVE-2007-1900 https://www.cve.org/CVERecord?id=CVE-2007-2756 https://www.cve.org/CVERecord?id=CVE-2007-2872 (* Security fix *)

Topics%20covered

Topics Covered

security advisory critical security fix slackware package upgrade php5 configuration change

Where Find New Packages

HINT: Getting slow download speeds from ftp.slackware.com? Give slackware.osuosl.org a try. This is another primary FTP site for Slackware that can be considerably faster than downloading from ftp.slackware.com.
Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org/) for donating additional FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on http://www.slackware.com/ for additional mirror sites near you.
Updated package for Slackware 10.2:
Updated package for Slackware 11.0:
Updated package for Slackware -current:

MD5 Signatures

Slackware 10.2 package: 9f399433ff6cf9c6627476e298cc4e39 php-5.2.3-i486-1_slack10.2.tgz
Slackware 11.0 package: 8ee13bfe55814bed9898ef92c0f25b6c php-5.2.3-i486-1_slack11.0.tgz
Slackware -current package: ecdc3dbd5c5766f0ebaa05327d8a2fea php-5.2.3-i486-1.tgz

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory critical security fix slackware package upgrade php5 configuration change

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Installation Instructions

Installation instructions: First, stop apache: # apachectl stop Next, upgrade to the new PHP package: # upgradepkg php-5.2.3-i486-1_slack11.0.tgz Finally, restart apache: # apachectl start (or: apachectl startssl)

Related News

Your message here