* [gentoo-server] Latest PHP vuln
@ 2006-09-12 16:12 A. Khattri
2006-09-12 16:19 ` David CHANIAL
0 siblings, 1 reply; 2+ messages in thread
From: A. Khattri @ 2006-09-12 16:12 UTC (permalink / raw
To: gentoo-server
According to GLSA 200608-28, the latest PHP vuln can be fixed by upgrading
to >=~php-4.4.3-r1 or >=php-5.1.4-r6. I am running php-4.4.4.-pl4 but
glsa-check wants to upgrade to php-5 (despite me having php-5 masked out
in /etc/portage/package.mask). Does this mean that php-4.4.4.pl4 does not
address this vulnerability and if so, why doesn't GLSA 200609-28 state
that?
Basically, I want to fix this without upgrading to php-5 on my servers.
--
A
--
gentoo-server@gentoo.org mailing list
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: [gentoo-server] Latest PHP vuln
2006-09-12 16:12 [gentoo-server] Latest PHP vuln A. Khattri
@ 2006-09-12 16:19 ` David CHANIAL
0 siblings, 0 replies; 2+ messages in thread
From: David CHANIAL @ 2006-09-12 16:19 UTC (permalink / raw
To: gentoo-server
Le Mardi 12 Septembre 2006 18:12, A. Khattri a écrit :
> Does this mean that php-4.4.4.pl4 does not
> address this vulnerability and if so, why doesn't GLSA 200609-28 state
> that?
Hi,
Resolved with bug #147157
http://bugs.gentoo.org/show_bug.cgi?id=147157
Best regards,
--
David CHANIAL - Euro Web SARL - http://www.euro-web.fr
Location de serveurs dédiés infogérés
Infogérance et consulting
Hébergement mutualisé sur mesure
Serveurs de jeux
--
gentoo-server@gentoo.org mailing list
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2006-09-12 16:21 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-09-12 16:12 [gentoo-server] Latest PHP vuln A. Khattri
2006-09-12 16:19 ` David CHANIAL
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox