← Back to team overview

ius-coredev team mailing list archive

  1. ius-coredev team
  2. Mailing list archive
  3. Message #00046

[Bug 485965] Re: RFE: PHP 5.3.1 Upstream Source Update

  Thread PreviousDate PreviousThread Next 
Please note, this bug is not marked as a security issue based on the
fact that php53.ius is already patched for the security related bugs
listed.

-- 
RFE: PHP 5.3.1 Upstream Source Update
https://bugs.launchpad.net/bugs/485965
You received this bug notification because you are a member of IUS Core
Development, which is subscribed to IUS Community Project.

Status in IUS Community Project: New

Bug description:
http://www.php.net/releases/5_3_1.php

PHP 5.3.1 Release Announcement

The PHP development team is proud to announce the immediate release of PHP 5.3.1. This is a maintenance release in the 5.3 series, which includes a large number of bug fixes.

Security Enhancements and Fixes in PHP 5.3.1:

    * Added "max_file_uploads" INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion.
    * Added missing sanity checks around exif processing.
    * Fixed a safe_mode bypass in tempnam().
    * Fixed a open_basedir bypass in posix_mkfifo().
    * Fixed bug #50063 (safe_mode_include_dir fails).
    * Fixed bug #44683 (popen crashes when an invalid mode is passed).

Key Bug Fixes in PHP 5.3.1 include:

    * Fixed crash in com_print_typeinfo when an invalid typelib is given.
    * Fixed crash in SQLiteDatabase::ArrayQuery() and SQLiteDatabase::SingleQuery() when calling using Reflection.
    * Fixed crash when instantiating PDORow and PDOStatement through Reflection.
    * Fixed bug #49910 (no support for ././@LongLink for long filenames in phar tar support).
    * Fixed bug #49908 (throwing exception in __autoload crashes when interface is not defined).
    * Around 100 other bug fixes

For users upgrading from PHP 5.2 there is a migration guide available here [1], detailing the changes between those releases and PHP 5.3.

For a full list of changes in PHP 5.3.1, see the ChangeLog [2].

 - [1] http://php.net/migration53
 - [2] http://www.php.net/ChangeLog-5.php#5.3.1

References

  Thread PreviousDate PreviousThread Next