PHP 5.2.9 Released!

PHP 在官網時間 26-Feb-2009 發佈 PHP 5.2.9 Released,這次的 Release 主要是在改善安全性跟修正超過 50 bug list,最主要的安全性修正如下: Security Enhancements and Fixes in PHP 5.2.9:

* Fixed security issue in imagerotate(), background colour isn’t validated correctly with a non truecolour image. Reported by Hamid Ebadi, APA Laboratory (Fixes CVE-2008-5498). (Scott) * Fixed a crash on extract in zip when files or directories entry names contain a relative path. (Pierre) * Fixed explode() behavior with empty string to respect negative limit. (Shire) * Fixed a segfault when malformed string is passed to json_decode(). (Scott) 大家可以參考這裡:5.2.9 ReleaseChange log


See also