Software-update: PHP 5.2.12

PHP noemt zichzelf een hypertext preprocessor en wordt voornamelijk toegepast om dynamische content in de opmaaktaal html serverside te genereren. De software wordt veelal gebruikt in combinatie met het databaseprogramma MySQL, waarmee de dynamische content van websites en forums worden geserveerd. De ontwikkelaars hebben versie 5.2.12 uitgebracht waarmee de stabiliteit wordt verbeterd en verschillende beveiligingspunten worden aangepakt. De beknopte aankondiging van deze uitgave ziet er als volgt uit:

PHP 5.2.12 Release Announcement

The PHP development team would like to announce the immediate availability of PHP 5.2.12. This release focuses on improving the stability of the PHP 5.2.x branch with over 60 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.

Security Enhancements and Fixes in PHP 5.2.12:
  • Fixed a safe_mode bypass in tempnam() identified by Grzegorz Stachowiak. (CVE-2009-3557, Rasmus)
  • Fixed a open_basedir bypass in posix_mkfifo() identified by Grzegorz Stachowiak. (CVE-2009-3558, Rasmus)
  • Added "max_file_uploads" INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion, identified by Bogdan Calin. (CVE-2009-4017, Ilia)
  • Added protection for $_SESSION from interrupt corruption and improved "session.save_path" check, identified by Stefan Esser. (CVE-2009-4143, Stas)
  • Fixed bug #49785 (insufficient input string validation of htmlspecialchars()). (CVE-2009-4142, Moriyoshi, hello at iwamot dot com)
Key enhancements in PHP 5.2.12 include:
  • Fixed unnecessary invocation of setitimer when timeouts have been disabled. (Arvind Srinivasan)
  • Fixed crash in com_print_typeinfo when an invalid typelib is given. (Pierre)
  • Fixed crash in SQLiteDatabase::ArrayQuery() and SQLiteDatabase::SingleQuery() when calling using Reflection. (Felipe)
  • Fixed crash when instantiating PDORow and PDOStatement through Reflection. (Felipe)
  • Fixed memory leak in openssl_pkcs12_export_to_file(). (Felipe)
  • Fixed bug #50207 (segmentation fault when concatenating very large strings on 64bit linux). (Ilia)
  • Fixed bug #50162 (Memory leak when fetching timestamp column from Oracle database). (Felipe)
  • Fixed bug #50006 (Segfault caused by uksort()). (Felipe)
  • Fixed bug #50005 (Throwing through Reflection modified Exception object makes segmentation fault). (Felipe)
  • Fixed bug #49174 (crash when extending PDOStatement and trying to set queryString property). (Felipe)
  • Fixed bug #49098 (mysqli segfault on error). (Rasmus)
  • Over 50 other bug fixes.
For users upgrading from PHP 5.0 and PHP 5.1, an upgrade guide is available here, detailing the changes between those releases and PHP 5.2.12. For a full list of changes in PHP 5.2.12, see the ChangeLog.


PHP 5.2.11 Release Announcement

The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.

Security Enhancements and Fixes in PHP 5.2.11:
  • Fixed certificate validation inside php_openssl_apply_verification_policy. (Ryan Sleevi, Ilia)
  • Fixed sanity check for the color index in imagecolortransparent(). (Pierre)
  • Added missing sanity checks around exif processing. (Ilia)
  • Fixed bug #44683 (popen crashes when an invalid mode is passed). (Pierre)
Key enhancements in PHP 5.2.11 include:
  • Fixed regression in cURL extension that prevented flush of data to output defined as a file handle.
  • A number of fixes for the FILTER_VALIDATE_EMAIL validation rule
  • Fixed bug #49361 (wordwrap() wraps incorrectly on end of line boundaries).
  • Fixed bug #48696 (ldap_read() segfaults with invalid parameters)
  • Fixed bug #48645 (mb_convert_encoding() doesn't understand hexadecimal html-entities).
  • Fixed bug #48619 (imap_search ALL segfaults).
  • Fixed bug #48400 (imap crashes when closing stream opened with OP_PROTOTYPE flag).
  • Fixed bug #47351 (Memory leak in DateTime).
  • Over 60 bug fixes.
Versienummer 5.2.12
Releasestatus Final
Besturingssystemen Windows 7, Windows 2000, Linux, BSD, Windows XP, macOS, Solaris, UNIX, Windows Server 2003, Windows Vista, Windows Server 2008
Website PHP
Download http://www.php.net/downloads.php
Licentietype Voorwaarden (GNU/BSD/etc.)

Door Japke Rosink

Meukposter

Feedback • 20-12-2009 12:24
2 • submitter: EDIT

20-12-2009 • 12:24

2

Submitter: EDIT

Bron: PHP

Update-historie

11-'24 PHP 8.4.1 43
11-'23 PHP 8.3.0 2
07-'23 PHP 8.2.8 / 8.1.21 1
12-'22 PHP 8.2.0 3
11-'21 PHP 8.1.0 38
07-'21 PHP 8.0.9 2
11-'20 PHP 8.0.0 7
12-'16 PHP 7.1.0 47
12-'15 PHP 7.0.0 48
08-'14 PHP 5.6.0 23
Meer historie

Lees meer

PHP

geen prijs bekend

5 van 5 sterren
Systeem- en netwerkutility's Serversoftware Php

Reacties (2)

-Moderatie-faq
2
2
1
1
0
0
Wijzig sortering
beerse
22 december 2009 09:55
Kan in de beschrijving niet worden opgenomen dat het de P in 'lamp' is? Dan heb je naast Mysql meteen Apache en Linux als aanknopingspunten.

[Reactie gewijzigd door beerse op 24 juli 2024 13:11]

pizzafried @beerse26 december 2009 00:51
Of de P in pim...PHP IIS en Mysql...wat maakt het uit? ;) php kun je op meerdere soorten webservers op verschillende OS'en draaien in combinatie met een aantal soorten database programma's ;)

Op dit item kan niet meer gereageerd worden.

Apple iPhone 16e LG OLED evo G5 Google Pixel 10 Samsung Galaxy S25 Star Wars: Outlaws Nintendo Switch 2 Apple AirPods Pro (2e generatie) Sony PlayStation 5 Pro

Tweakers is onderdeel van DPG Media B.V.
Alle rechten voorbehouden - Auteursrecht © 1998 - 2025 Hosting door TrueFullstaq