閱讀文章 - 看板 FB_security

發信人felipensp@gmail.com (Felipe Pena),

看板FB_security

標題Re: [0x721427d8@gmail.com: [php<=5.4.3] Parsing Bug in PHP PDO

發信站NCTU CS FreeBSD Server (Tue Jun 12 22:54:56 2012)

轉信站ptt!csnews.cs.nctu!news.cs.nctu!.cs.nctucs.nctu!.org!ownorg!owner-free

Hi, 2012/6/12 Jason Hellenthal <jhellenthal@dataix.net>: [...] > > Timeline: > --------- > * 2012 Feb =C2=A0 - Discovered in 5.3.8, verified for 5.3.0/5.3.10 and 5.= 4.0 > * 2012 March - Responsible Disclosure via SSD/BeyondSecurity > * 2012 April - Patch available 2012-04-19 > * 2012 May/June - No trace of bugfix in svn for 5.3/5.4/trunk although > mentioned in bugref #61755 > * 2012 June =C2=A0- No trace of bugfix in svn for 5.3/5.4/trunk, code ... > * 2012 June =C2=A0- public disclosure > No trace of bugfix in June? It has been fixed in Apr. http://git.php.net/?p=3Dphp-src.git;a=3Dcommitdiff;h=3D1b78aef426a8f413ddd7= 0854eb3fd5fbc95ef675 --=20 Regards, Felipe Pena _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"