PHPBuilder - PHP 5.2.12 Update Stamps Out Bugs, Patches Holes

RSS Twitter

PHP 5.2.12 Update Stamps Out Bugs, Patches Holes

by: PHPBuilder Staff
December 21, 2009

If you're using PHP 5.2.x, it's time to update.

The twelfth update to PHP 5.2 is now out with the PHP 5.2.12 release, providing fixes for five security flaws in addition to 61 other bugs that have now been patched.

Among the security fixes in PHP 5.2.12 is a new "max_file_uploads" directive. The new directive enables developers to set a maximum limit to file uploads, which could help to prevent a possible Denial of Service (DoS) attack vector.

There are also fixes for a pair of different bypass conditions, including a fix for a safe_mode bypass and an open_basedir bypass. The bypass conditions could potentially have enabled an attacker to get around php configurations to trigger some form of unwanted operation.

Read the entire story on the PHP 5.2.12 update on

Comment and Contribute

Your comment has been submitted and is pending approval.

PHPBuilder Staff



(Maximum characters: 1200). You have characters left.