[CentOS] php 5.1.6 vulnerability in CentosPlus repo

John R. Dennison jrd at gerdesas.com
Sat Jul 2 21:09:27 UTC 2011


On Sat, Jul 02, 2011 at 03:57:24PM -0500, John R. Dennison wrote:
>
> That's not been supported in, literally, ages.  You may want to consider
> a "yum update" once in a while.

Actually, you didn't say you were actually running that version.  So, if
you aren't running it already... don't :)

> And yes, that specific version has multiple known and exploitable
> security issues.

Current version in C4, fwiw, is php-4.3.9-3.31.




							John
-- 
"My other computer is your windows box."

-- Ralf Hildebrandt
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.centos.org/pipermail/centos/attachments/20110702/a34ea6df/attachment.sig>


More information about the CentOS mailing list