PHP 4.4.1 packages fix some security holes

PHP 4.4.1 packages fix some security holes
Posted on: 10/31/2005 09:14 PM

PHP 4.4.1 has been released

PHP 4.4.1 has been published by the PHP Group. This maintenance release fixes some severe security holes :

PHP File-Upload $GLOBALS Overwrite Vulnerability
PHP register_globals Activation Vulnerability in parse_str()
PHP Cross Site Scripting (XSS) Vulnerability in phpinfo()

PHP 4.4.1 packages fix some security holes
Download

Versions for Debian GNU/Linux 3.0 and 3.1 are available at DotDeb.org. Here the apt sources:

Debian 3.1

deb http://packages.dotdeb.org stable all
deb-src http://packages.dotdeb.org stable all

Debian 3.0

deb http://packages.dotdeb.org oldstable all
deb-src http://packages.dotdeb.org oldstable all

Printed from Linux Compatible (http://www.linuxcompatible.org/news/story/php_441_packages_fix_some_security_holes.html)