About the Author

Chris Shiflett

Chris Shiflett is an author and speaker who leads the web application security practice at OmniTI.

PHP 5.1.4 Fixes Critical Bug

I haven't seen an official announcement, and it's not mentioned on the downloads page yet, but you can grab PHP 5.1.4 from your favorite mirror.

Presumably, this release comes so soon after 5.1.3 due to the critical bug mentioned on PHPDeveloper.org. I just downloaded and installed it, and the bug seems to be fixed. Thanks, Dmitry!

About This Post

PHP 5.1.4 Fixes Critical Bug was posted on Thu, 04 May 2006 at 05:35:34 GMT.

3 Comments

1. j0k3r's Gravatarj0k3r said:

Damned :)

The file you requested (php-5.1.4.tar.gz) is not found on this server (http://fr2.php.net/).

Thu, 04 May 2006 at 12:57:04 GMT Link

2. cOdH's GravatarcOdH said:

Download from Lithuania :)

http://php.net/get/php-5.1.4.tar.gz....php.net/mirror

Thu, 04 May 2006 at 14:39:02 GMT Link

3. Steve Kurzeja's GravatarSteve Kurzeja said:

It does make you wonder what QA/unit tests are being run against new builds for such a bug to filter out.

Presumbly, the PHP 5.1.3 release was not tested against a slightly more advanced web form POST with array form names.

.

Thu, 04 May 2006 at 20:22:00 GMT Link

Post A Comment

Personal Details and Comment

Style Guide

Line breaks are converted to paragraphs. Also use:

  • <a href="" title="">text</a>1
  • <em>text</em>
  • <blockquote><p>text</p></blockquote>
  • <code>2  <?php  if ($foo) {      $foo = TRUE;  }  ?></code>
  1. Note: <code> can be used inline (e.g. in paragraphs) or in a block as shown. Include whitespace and newlines in blocks.

Please enter Chris (my first name) below. This is a primitive spam prevention technique, and I apologize for the inconvenience.

Preview and Submit

Upcoming Talks

PHP Appalachia

11 - 14 Oct 2008

At Big Bear Lodge, Gatlinburg, Tennessee.

php|works / PyWorks

12 - 14 Nov 2008

At Sheraton Gateway Hotel Atlanta Airport, Atlanta, Georgia.

New Comments

Chris Shiflett wrote:

Miguel, read the post again. PHP 4.4.9 is the final release of PHP 4.

Posted in End of Life for PHP 4
Miguel Palazzo wrote:

I think you're wrong. PHP 4.4 is DEAD, that's so right, because they just released 4.4.9, and you...

Posted in End of Life for PHP 4
alikim wrote:

Hi, Thanks for the article! Tell me please if it's enough to use just session_start(); se...

Posted in
Wayne wrote:

Hi ZX, When taking in data, you should always check to see if magic_quotes is enabled. If it i...

Posted in addslashes() Versus mysql_real_escape_string()
Chris Shiflett wrote:

Thanks, Brandon. I'm glad you liked the talk. Maybe some parts of it would be interesting to some...

Posted in ZendCon

Browse Comments