PHP 5.2.13 addresses security holes
The H-Secirity writes:
An update which fixes around 40 bugs is available for the PHP 5.2 development branch. Version 5.2.13 comes highly recommended for all PHP 5.2.x users, as it includes a number of security-related fixes. These include a bug when validating the safe_mode configuration variable in the tempnam() function which arises when the path does not end in /).
An open_basedir/safe_mode bypass vulnerability in the session extension has also been fixed.
More details about the release, including other significant changes, can be found in the release announcement and change log.
PHP 5.2.13 is available to download from the project’s site.
The current PHP development branch is PHP 5.3, for which version 5.3.1 has been available since November 2009. A third release candidate for PHP 5.3.2 was released on the 23rd of February.
Originally published on www.h-online.com. Read the original story here
PHP 5.2.13 Release Announcement
The PHP development team would like to announce the immediate availability of PHP 5.2.13. This release focuses on improving the stability of the PHP 5.2.x branch with over 40 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.
Security Enhancements and Fixes in PHP 5.2.13:
- Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)
- Fixed a possible open_basedir/safe_mode bypass in the session extension identified by Grzegorz Stachowiak. (Ilia)
- Improved LCG entropy. (Rasmus, Samy Kamkar)
Key enhancements in PHP 5.2.13 include:
- Fixed bug #50940 Custom content-length set incorrectly in Apache sapis. (Brian France, Rasmus)
- Fixed bug #50847 (strip_tags() removes all tags greater then 1023 bytes long). (Ilia)
- Fixed bug #50661 (DOMDocument::loadXML does not allow UTF-16). (Rob)
- Fixed bug #50632 (filter_input() does not return default value if the variable does not exist). (Ilia)
- Fixed bug #50540 (Crash while running ldap_next_reference test cases). (Sriram)
- Fixed bug #49851 (http wrapper breaks on 1024 char long headers). (Ilia)
Over 30 other bug fixes.
For users upgrading from PHP 5.0 and PHP 5.1, an upgrade guide is available here, detailing the changes between those releases and PHP 5.2.13.