PHP 4.4.8 released!

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • Yves R.
    vBulletin QA
    • Nov 2003
    • 3856
    • 5.6.X

    PHP 4.4.8 released!

    Hello!

    The PHP development team would like to announce the immediate
    availability of PHP 4.4.8. It continues to improve the security and the
    stability of the 4.4 branch and all users are strongly encouraged to
    upgrade to it as soon as possible. This release wraps up all the
    outstanding patches for the PHP 4.4 series, and is therefore the last
    normal PHP 4.4 release. If necessary, releases to address security
    issues could be made until 2008-08-08.

    A separate release announcement is also available. For changes in PHP
    4.4.8 since PHP 4.4.7, please consult the PHP 4 ChangeLog.

    Security Enhancements and Fixes in PHP 4.4.8:
    • Improved fix for MOPB-02-2007.
    • Fixed an integer overflow inside chunk_split(). Identified by Gerhard Wagner.
    • Fixed integer overlow in str[c]spn().
    • Fixed regression in glob when open_basedir is on introduced by #41655 fix.
    • Fixed money_format() not to accept multiple %i or %n tokens.
    • Added "max_input_nesting_level" php.ini option to limit nesting level of input variables. Fix for MOPB-03-2007.
    • Fixed INFILE LOCAL option handling with MySQL - now not allowed when open_basedir or safe_mode is active.
    • Fixed session.save_path and error_log values to be checked against open_basedir and safe_mode (CVE-2007-3378).
    Release Announcement: http://www.php.net/release_4_4_8.php
    Downloads: http://www.php.net/downloads.php#v4
    Changelog: http://www.php.net/ChangeLog-4.php#4.4.8

    regards,
    Derick

    vBulletin QA - vBulletin Support French - Lead Project Tools developer

    Next release? Soon(tm)
  • Bob Isaac
    Senior Member
    • Dec 2005
    • 771
    • 3.8.x

    #2
    I thought PHP4 finished on 31 December.

    Bob

    Comment

    • Wayne Luke
      vBulletin Technical Support Lead
      • Aug 2000
      • 73981

      #3
      No new features but they will continue making security releases until August.
      Translations provided by Google.

      Wayne Luke
      The Rabid Badger - a vBulletin Cloud demonstration site.
      vBulletin 5 API

      Comment

      • dvduval
        Member
        • Nov 2004
        • 32
        • 3.6.x

        #4
        I assume these changes will not have an impact on vBulletin installations?
        PHP Link Directory

        Comment

        widgetinstance 262 (Related Topics) skipped due to lack of content & hide_module_if_empty option.
        Working...