New versions of php4 and php5 are available to fix numerous issues. c/p from /. : PHP 5.2.2 and 4.4.7 have been released with a plethora of security updates. Many of the security notifications come from the Month of PHP Bugs effort, and range from double freed memory to bugs in functions that allow attackers to enable register_globals, to memory corruption with unserialize(), to input validation flaws that allow e-mail header injections, with an unhealthy sprinkling of other bugs and flaws fixed. All administrators that run any version of PHP are encouraged to update immediately. php.net: The PHP development team would like to announce the immediate availability of PHP 5.2.2 and availability of PHP 4.4.7. These releases are major stability and security enhancements of the 5.x and 4.4.x branches, and all users are strongly encouraged to upgrade to it as soon as possible. Release announcements: http://www.php.net/releases/4_4_7.php http://www.php.net/releases/5_2_2.php Changelogs: http://www.php.net/ChangeLog-4.php#4.4.7 http://www.php.net/ChangeLog-5.php#5.2.2 Reproducible: Always Steps to Reproduce: N/A Actual Results: N/A Expected Results: N/A
*** This bug has been marked as a duplicate of bug 169372 ***