: Log in!

メインメニュー
Google


ウェブ 検索
サイト内検索
トップ  >  Linux09歩  >  2008-12-06 jre,phpのupdate

20081206 jre1.6.0_11,php-5.2.7へのupdate


jre1.6.0_11

  Java Runtime Environmentのインストール



php-5.2.7

  httpd/phpのインストール
  php.ini

Security Enhancements and Fixes in PHP 5.2.7:

* Upgraded PCRE to version 7.8 (Fixes CVE-2008-2371)
* Fixed missing initialization of BG(page_uid) and BG(page_gid), reported by Maksymilian Arciemowicz.
* Fixed incorrect php_value order for Apache configuration, reported by Maksymilian Arciemowicz.
* Fixed a crash inside gd with invalid fonts (Fixes CVE-2008-3658).
* Fixed a possible overflow inside memnstr (Fixes CVE-2008-3659).
* Fixed security issues detailed in CVE-2008-2665 and CVE-2008-2666.
* Fixed bug #45151 (Crash with URI/file..php (filename contains 2 dots)).(Fixes CVE-2008-3660)
* Fixed bug #42862 (IMAP toolkit crash: rfc822.c legacy routine buffer overflow). (Fixes CVE-2008-2829)
* Fixed extraction of zip files and directories with crafted entries, reported by Stefan Esser.

php.iniの変更点(5.2.6-5.2.7)

--- php.ini-dist.526 2008-02-11 09:01:29.000000000 +0900
+++ php.ini-dist.527 2008-11-29 04:07:09.000000000 +0900
@@ -336,7 +336,7 @@
log_errors_max_len = 1024

; Do not log repeated messages. Repeated errors must occur in same file on same
-; line until ignore_repeated_source is set true.
+; line unless ignore_repeated_source is set true.
ignore_repeated_errors = Off

; Ignore source of message when ignoring repeated messages. When this setting
@@ -354,6 +354,11 @@
; Store the last error/warning message in $php_errormsg (boolean).
track_errors = Off

+; Turn off normal error reporting and emit XML-RPC error XML
+;xmlrpc_errors = 0
+; An XML-RPC faultCode
+;xmlrpc_error_number = 0
+
; Disable the inclusion of HTML tags in error messages.
; Note: Never use this feature for production boxes.
;html_errors = Off
@@ -674,10 +679,6 @@
[sqlite]
;sqlite.assoc_case = 0

-[xmlrpc]
-;xmlrpc_error_number = 0
-;xmlrpc_errors = 0
-
[Pcre]
;PCRE library backtracking limit.
;pcre.backtrack_limit=100000


投票数:53 平均点:5.47
前
2008-12-04 opensshのconfigを修正
カテゴリートップ
Linux09歩
次
2008-12-09 glibc,phpのupdate