欢迎您访问程序员文章站本站旨在为大家提供分享程序员计算机编程知识!
您现在的位置是: 首页  >  后端开发

PHP 五 Version 5.4.4 发布+11楼 mysql、windows远程连接严重漏洞

程序员文章站 2024-04-02 20:44:16
...
PHP 5 Version 5.4.4 发布+11楼 mysql、windows远程连接严重漏洞
http://www.php.net/ChangeLog-5.php
06-June-2012

DES算法Crypt实现中的一个漏洞
phar扩展中的一个堆溢出问题


CLI SAPI
Implemented FR #61977 (Need CLI web-server support for files with .htm & svg extensions)
Improved performance while sending error page, this also fixed bug Fixed bug #61785 (Memory leak when access a non-exists file without router)
Fixed bug #61546 (functions related to current script failed when chdir() in cli sapi)
Core
Fixed missing bound check in iptcparse()
Fixed CVE-2012-2143
Fixed bug #62097 (fix for for bug #54547)
Fixed bug #62005 (unexpected behavior when incrementally assigning to a member of a null object)
Fixed bug #61978 (Object recursion not detected for classes that implement JsonSerializable)
Fixed bug #61991 (long overflow in realpath_cache_get())
Fixed bug #61922 (ZTS build doesn't accept zend.script_encoding config)
Fixed bug #61827 (incorrect \e processing on Windows)
Fixed bug #61782 (__clone/__destruct do not match other methods when checking access controls)
Fixed bug #61761 ('Overriding' a private static method with a different signature causes crash)
Fixed bug #61730 (Segfault from array_walk modifying an array passed by reference)
Fixed bug #61728 (PHP crash when calling ob_start in request_shutdown phase)
Fixed bug #61660 (bin2hex(hex2bin($data)) != $data)
Fixed bug #61650 (ini parser crashes when using ${xxxx} ini variables (without apache2))
Fixed bug #61605 (header_remove() does not remove all headers)
Fixed bug #54547 (wrong equality of string numbers)
Fixed bug #54197 ([PATH=] sections incompatibility with user_ini.filename set to null)
Changed php://fd to be available only for CLI
CURL
Fixed bug #61948 (CURLOPT_COOKIEFILE '' raises open_basedir restriction)
COM
Fixed bug #62146 com_dotnet cannot be built shared
Fileinfo
Fixed bug #61812 (Uninitialised value used in libmagic)
FPM
Fixed bug #61812 (Uninitialised value used in libmagic)
Fixed bug #61565 where php_stream_open_wrapper_ex tries to open a directory descriptor under windows
Fixed bug #61566 failure caused by the posix lseek and read versions under windows in cdf_read()
Iconv
Fixed a bug that iconv extension fails to link to the correct library when another extension makes use of a library that links to the iconv library. See https://bugs.gentoo.org/show_bug.cgi?id=364139 for detail
Intl
Fixed bug #62082 (Memory corruption in internal function get_icu_disp_value_src_php()
JSON
Fixed bug #61537 (json_encode() incorrectly truncates/discards information)
LibXML
Fixed bug #61617 (Libxml tests failed(ht is already destroyed))
PDO
Fixed bug #61755 (A parsing bug in the prepared statements can lead to access violations)
Phar
Fixed bug #61065 (Secunia SA44335) (CVE-2012-2386)
Streams
Fixed bug #61961 (file_get_contents leaks when access empty file with maxlen set)
zlib
Fixed bug #61820 (using ob_gzhandler will complain about headers already sent when no compression)
Fixed bug #61443 (can't change zlib.output_compression on the fly)
Fixed bug #60761 (zlib.output_compression fails on refresh)

------解决方案--------------------
这些漏洞没有修复?
------解决方案--------------------
推存wamp2.2
探讨

这些是已经修复的.
引用:

这些漏洞没有修复?

------解决方案--------------------
.... 完全看不懂。。
------解决方案--------------------
探讨

.... 完全看不懂。。

------解决方案--------------------
PHP 五 Version 5.4.4 发布+11楼 mysql、windows远程连接严重漏洞

声明:本文内容由网友自发贡献,版权归原作者所有,本站不承担相应法律责任。如您发现有涉嫌抄袭侵权的内容,请联系admin@php.cn核实处理。

相关文章

相关视频