Thursday, January 12, 2012

PHP 5.3.9 Released

PHP 5.3.9 is now released by PHP Team and it includes security fixes and other numerous changes to improve the overal quality of PHP. There are two security enhancements in PHP 5.3.9:
  • Added max_input_vars directive to prevent attacks based on hash collisions. (CVE-2011-4885)
  • Fixed bug #60150 (Integer overflow during the parsing of invalid exif header). (CVE-2011-4566)
For those who wanted to stay up to date with security update, please update to this version as soon as possible. For those who wanted to try the major update will have to wait until PHP 5.4 comes out later on.

No comments:

Post a Comment