PHP vulnerabilities?
Pekka Savola
pekkas at netcore.fi
Sat Dec 18 05:31:25 UTC 2004
On Fri, 17 Dec 2004, Marc Deslauriers wrote:
> On Fri, 2004-12-17 at 20:41 -0500, Jim Popovitch wrote:
>> Given the considerable amount of changes in PHP since v4.1.2 (current FL
>> release), what is the possibility about just releasing a v4.3.10 rpm?
>
> I would say it's highly unlikely we'll update to 4.3.10.
Agree. Update to 4.3.10 would incur *way* too radical change, and we
don't want to go there.
> We'll probably
> wait to see what is done to RHEL 2.1 and other distros. 4.1.2 may not
> even be vulnerable to most of the issues...
That is the easiest way. Has anyone actually looked, btw, how well
the security patch against 4.3.9 (e.g., from OpenPKG) applies to 4.1.2
(RHL73) or php 4.2 (RHL9) ?
--
Pekka Savola "You each name yourselves king, yet the
Netcore Oy kingdom bleeds."
Systems. Networks. Security. -- George R.R. Martin: A Clash of Kings
More information about the fedora-legacy-list
mailing list