* saravanan ganapathy: > I am also worrying about these vulnerabilities.btw I > am using debian php package(4.1.2) on woody. > How do I sure that I am out of danger? Use a backport of PHP 4.3.10. Apparently, there is no other way at this stage to be sure. (Upstream no longer supports PHP 4.1.x.)