Hi,Referring to http://mirror.centos.org/centos/7/sclo/x86_64/rh/rh-php56/ I see the last update was latest 2016, and checking the latest php 5.6 available on php.net I can see an update from last week.
So, is this what you are talking about? ..... I didn't notice.... On 07/03/18 19:17, Brian Haines wrote:
I was wondering, what is an appropriate period to wait for security updates to php versions in the software collection?The following article got my attention:https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2018-023/I am using multiple versions of scl php on a server of mine and I can't really use scl if only vulnerable versions of php are available.Is the best solution to use the remi repo to get secure software collections versions of php?_______________________________________________ SCLorg mailing list SCLorg@redhat.com https://www.redhat.com/mailman/listinfo/sclorg
-- Josep Manel Andrés Moscardó Systems Engineer, IT Operations EMBL Heidelberg T +49 6221 387-8394
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ SCLorg mailing list SCLorg@redhat.com https://www.redhat.com/mailman/listinfo/sclorg