On Wed, Jul 24, 2002 at 09:03:07PM +0200, Ismael Touama wrote:
>
> How can you ensure of that ?
> I should have the same behave than João.
> RH73 was out before the found of this vulnerabilty isn't it ?
The advisory says only versions 4.2.0 and 4.2.1 of php are vulnerable.
[manu@orient manu]$ rp
On 2002.07.24 12:06 João Borsoi Soares wrote:
> My RH7.3 has PHP version 4.1.2-7. In the php.net it
> tells that PHP versions 4.2.0 and 4.2.1 have the
> vunarability. Are you shure we have to do the patch?
No. The CERT advisory states that versions prior to 4.2.0 are not
vulnerable. I think this
The 4.1.2-7 (which came with 7.3) shouldn't have the vulnerability. If it
did RH would have whipped out a new php package for the 7.x distro.
-eric wood
- Original Message -
From: "João Borsoi Soares" <[EMAIL PROTECTED]>
> My RH7.3 has PHP version 4.1.2-7. In the php.net it
> tells that
Hi Emmanuel,
> > My RH7.3 has PHP version 4.1.2-7. In the php.net it
> > tells that PHP versions 4.2.0 and 4.2.1 have the
> > vunarability. Are you shure we have to do the patch?
> You don't.
> No Red Hat distrib is vulnerable to the latest PHP bug.
> Emmanuel
How can you ensure of that ?
I sho
On Wed, Jul 24, 2002 at 01:06:34PM -0300, João Borsoi Soares wrote:
>
> My RH7.3 has PHP version 4.1.2-7. In the php.net it
> tells that PHP versions 4.2.0 and 4.2.1 have the
> vunarability. Are you shure we have to do the patch?
You don't.
No Red Hat distrib is vulnerable to the latest PHP bug.
My RH7.3 has PHP version 4.1.2-7. In the php.net it
tells that PHP versions 4.2.0 and 4.2.1 have the
vunarability. Are you shure we have to do the patch?
Joao.
--- Anthony Abby <[EMAIL PROTECTED]> escreveu: >
Yes it does and yes there is a patch available.
> http://www.php.net
>
> Anthony
Yes it does and yes there is a patch available. http://www.php.net
Anthony
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf Of Frederic Herman
> Sent: Wednesday, July 24, 2002 9:35 AM
> To: [EMAIL PROTECTED]
> Subject: PHP Vulnerability
>
>
> Do
