De ontwikkelaars van PHP hebben na ruim vier maanden geleden in de vorm van 5.1.3 de opvolger uitgebracht van PHP 5.1.2. Deze nieuwe versie is hier te downloaden in verschillende uitvoeringen. PHP is een zogenoemde hypertext preprocessor en wordt voornamelijk gebruikt om dynamische content in de opmaaktaal HTML serverside te genereren. De software wordt veelal gebruikt in combinatie met het databaseprogramma MySQL, waarmee de dynamische content van websites en forums worden geserveerd. Het changelog van versie 5.1.3 ziet er als volgt uit:
The PHP development team is proud to announce the release of PHP 5.1.3. This release combines small number of feature enhancements with a significant amount of bug fixes and resolves a number of security issues. All PHP users are encouraged to upgrade to this release as soon as possible.The security issues resolved include the following:
The feature enhancements include the following notables:
- Disallow certain characters in session names.
- Fixed a buffer overflow inside the wordwrap() function.
- Prevent jumps to parent directory via the 2nd parameter of the tempnam() function.
- Enforce safe_mode for the source parameter of the copy() function.
- Fixed cross-site scripting inside the phpinfo() function.
- Fixed offset/length parameter validation inside the substr_compare() function.
- Fixed a heap corruption inside the session extension.
- Fixed a bug that would allow variable to survive unset().
The release also includes over 120 bug fixes with a focus on:
- The use of the var keyword to declare properties no longer raises a deprecation E_STRICT.
- FastCGI interface was completely reimplemented.
- Multitude of improvements to the SPL, SimpleXML, GD, CURL and Reflection extensions.
- Support for many additional date formats added to the strtotime() function.
- A number of performance improvements added to the engine and the core extensions.
- Added imap_savebody() that allows message body to be written to a file.
- Added lchown() and lchgrp() to change user/group ownership of symlinks.
- Upgraded bundled PCRE library to version 6.6
- Make auto_globals_jit work without too many INI changes.
- Fixed tiger hash algorithm generating wrong results on big endian platforms.
- Fixed a number of errors in the SOAP extension.
- Fixed recursion handling in the serialize() functionality.
- Make is_*() function account of open_basedir restrictions.
- Fixed a number of crashes in the DOM and PDO extensions.
- Addressed a number of regressions in the strtotime() function.
- Make memory_limit work in Win32 systems.
- Fixed a deadlock in the sqlite extension caused by the sqlite_fetch_column_types() function.
- Fixed memory leaks in the realpath() cache.
:strip_exif()/i/1371972860.png?f=thumbmedium)
:strip_icc():strip_exif()/u/30236/150x150.jpg?f=community){kind=small}
:strip_icc():strip_exif()/u/33957/GoT.jpg?f=community){kind=small}
/u/24798/60x60.png?f=community){kind=small}
/u/42583/bug2_60x60.png?f=community){kind=small}
