Advertisement

Latest News

[ Windows | Linux | Apple ]

· Daily Reviews Summary 05/25/12
· CompatDB Updates 05/25/12
· Rumor: Microsoft Office coming to iPad, Android in November
· Microsoft clarifies Ballmer's claims of massive Windows 8 adoption
· DSA 2480-1: request-tracker3.8 security update
· CentOS 6 NTP Server
· Daily Reviews Summary 05/24/12
· Bayan Audio - Bayan 7 iPod Speaker Dock Review
· Installing Nginx With PHP5 (And PHP-FPM) And MySQL Support (LEMP) On Ubuntu 12.04 LTS
· Ubuntu 12.04 + Nvidia - Heavy CPU usage

Upcoming News

· Blues Brothers 2000 (1998) Blu-ray Movie Review
· Thermaltake ToughPower Grand 850W Power Supply Review @ Rbmods
· Cooler Master Silent Pro Gold 1200-watt Power Supply Review
· Wine release 1.5.5
· OC3D: BitFenix Prodigy Review
· [Tech ARP] The New x264 HD Benchmark 5.0 Is Here!
· re: Diablo III Reviewed: Blizzard's Brilliant, Blundering Wreck
· Corsair Vengeance C70 Case Review @ Hardware Secrets
· Diablo III Reviewed: Blizzard's Brilliant, Blundering Wreck
· Samsung Green DDR3 8GB 1600mhz 30nm Memory review

Linux Compatibility

· Canon Canoscan N650U
· TB-5300 Slimline Design Tablet
· HANDYCAM DCR-HC17E
· Linksys Wireless-G WPC54G PC-Card
· XPS L502X
· Slim Portable DVD Writer GP10
· AverTV Volar Green HD
· Dell Latitude E6420
· Canon CanoScan FB 636U
· Logitech QuickCam Pro 4000

New Forum Topics

· present.However after the Kou
by: Thomasxpp
on: 2012-05-26 02:12
0 replies, 0 views

· business, hand over to Ji
by: Thomasxpp
on: 2012-05-26 02:09
0 replies, 0 views

· a war in the outside and quells
by: Thomasxpp
on: 2012-05-26 02:06
0 replies, 0 views

· This among them the
by: Thomasxpp
on: 2012-05-26 02:02
0 replies, 0 views

· USB Not detected on any PC
by: AntNik45
on: 2012-05-09 18:37
0 replies, 0 views

News Channels

· Drivers
· Guides
· Reviews
· Security
· Software
· Press Release
· Updates
· Interviews
· Linux
· General
· Debian
· Red Hat
· Slackware
· Gentoo
· Mandriva
· White Box
· SUSE
· GNOME
· KDE
· CentOS
· Ubuntu
· MEPIS
· Android

What's New

Login to see an overview of all news stories since your last visit.

Welcome to our website

To take full advantage of all features you need to login or register. Registration is completely free and takes only a few seconds.

Serious Crypto Bug Found in PHP 5.3.7

Posted by Philipp Esselbach on: 08/22/2011 03:28 PM [ Print | 0 comment(s) ]

Threadpost reports that the maintainers of the PHP scripting language are warning users about a serious crypto problem in the latest release and advising them not to upgrade to PHP 5.3.7 until the bug is resolved.

PHP 5.3.7 was just released last week and that version contained fixes for a slew of security vulnerabilities. But now a serious flaw has been found in that new release that is related to the way that one of the cryptographic functions handles inputs. In some cases, when the crypt() function is called using MD5 salts, the function will return only the salt value instead of the salted hash value.

The problem does not occur when using Blowfish or DES, only with MD5. The initial bug report on the problem in the PHP system appeared Aug. 17, the day before the public stable release of PHP 5.3.7.

Serious Crypto Bug Found in PHP 5.3.7

Related Threads

02/28/2004 04:38 AM: Having serious RPM problems with Fedora. (2) by Dapper Dan
10/06/2003 10:23 PM: Serious problem while booting from my Mandrake 9.1 /9.2rc CD (10) by _japsje
03/26/2003 05:41 PM: Help how to install Remote Serious Sam 1 Dedicated Server (1) by REL!c2K
05/21/2003 12:35 PM: RE: Icculus releases Serious Sam:Second Encounter Beta 1 (4) by REL!c2K
03/02/2003 03:00 PM: Serious Help with router (2) by Jasbo
02/05/2003 01:47 AM: Serious Sam:FE Beta 2 available via Loki_Update (0) by REL!c2K
01/17/2003 03:02 PM: Serious Sam Beta for Linux !! (4) by REL!c2K

All products mentioned are registered trademarks or trademarks of their respective owners.
© 2002-2011 Esselbach Internet Solutions - All Rights Reserved. Terms and privacy policy
Powered by Contentteller® Business Edition