PHP 5.3.9 - 修补重大Hash冲突漏洞

最新ubuntu/linux/开源新闻或者其它IT相关资讯
回复
levee
帖子: 3030
注册时间: 2009-10-03 23:31

PHP 5.3.9 - 修补重大Hash冲突漏洞

#1

帖子 levee » 2012-01-11 14:23

PHP 5.3.9正式版发布了。
此次更新修复了诸多BUG,如Hash冲突漏洞,对于5.3.8的用户,要速度更新。

Security Enhancements and Fixes in PHP 5.3.9:

Added max_input_vars directive to prevent attacks based on hash collisions. (CVE-2011-4885) (HASH冲突问题)
Fixed bug #60150 (Integer overflow during the parsing of invalid exif header). (CVE-2011-4566)

Key enhancements in PHP 5.3.9 include:

Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd argument to is_a and is_subclass_of).
Fixed bug #55609 (mysqlnd cannot be built shared)
Many changes to the FPM SAPI module



下载PHP 5.3.9 [Final for Windows (15.00 MB)
下载PHP 5.3.9 Final for Linux (10.44 MB)

Hash冲突漏洞:http://www.flashgou.com/show/59




来源:cnbeta
页首
头像
qy117121
论坛版主
帖子: 50587
注册时间: 2007-12-14 13:40
系统: Winbuntu
来自: 志虚国乌由市
联系:
联系 qy117121

Re: PHP 5.3.9 - 修补重大Hash冲突漏洞

#2

帖子 qy117121 » 2012-01-11 16:56

:em01 不根
渠月 · QY   
本人只会灌水,不负责回答问题
无聊可以点一下→ http://u.nu/ubuntu

邮箱 [email protected]
页首
lengbingxue7
帖子: 4
注册时间: 2012-01-15 19:24

Re: PHP 5.3.9 - 修补重大Hash冲突漏洞

#3

帖子 lengbingxue7 » 2012-01-15 19:28

关注下
页首
回复

回到 “新闻和通知”