PHP Affected by Critical Security Flaw

**StarBuG** · 01-07-11, 05:55

An extremely serious security flaw has been discovered in PHP,
requiring that all affected servers be updated as a matter of urgency.

The flaw allows a remote webserver running an affected version of PHP
to be crashed using nothing more than a URL request.

If you are running a 64 bit version of PHP you are unaffected,
but if you are running in 32 bit mode, or you are not sure,
now would be a good time to drop everything and make sure
that your server is not vulnerable, by installing the latest version
of PHP either from ((login for URL)), or from your own webserver vendor.
((login for URL)) has a hotfix available already.

Due to the massive impact of the flaw and the trivial way in which
it can be exploited, news of this bug will spread rapidly so speed is
of the essence in getting your server patched.

**Taurus** · 01-07-11, 06:45

Thank you very much for this info. Already opened a Support Ticket with my Host.

**adsensjm** · 01-07-11, 06:54

Yeah, thanks for that. I also opened a ticket to have my VPS updated.

**JamesColin** · 01-07-11, 07:22

Well I hope dreamhost will fix this very quickly, I trust them, they are good.

**Dogs and things** · 01-09-11, 01:20

Thanks for the info.

Although my server was not affected by this bug I have updated my PHP.

**JamesColin** · 01-09-11, 01:40

I have not read anything about that on dreamhost..

Thread: PHP Affected by Critical Security Flaw

LinkBack

Thread Tools

Search Thread

PHP Affected by Critical Security Flaw

Search Cloud:

php critical security versions