Re: php vulnerability

To: debian-security@lists.debian.org
Subject: Re: php vulnerability
From: "Christian Storch" <storch@infra.net>
Date: Tue, 21 Dec 2004 11:12:37 +0100 (CET)
Message-id: <[🔎] 1393.212.89.97.147.1103623957.squirrel@212.89.97.147>
In-reply-to: <[🔎] 873by02eug.fsf@deneb.enyo.de>
References: <[🔎] 20041221064828.83457.qmail@web51706.mail.yahoo.com> <[🔎] 873by02eug.fsf@deneb.enyo.de>

On Di, 21.12.2004, 10:13, Florian Weimer sagte:
> * saravanan ganapathy:
>
>>   I am also worrying about these vulnerabilities.btw I
>> am using debian php package(4.1.2) on woody.
>>   How do I sure that I am out of danger?
>
> Use a backport of PHP 4.3.10.  Apparently, there is no other way at
> this stage to be sure.  (Upstream no longer supports PHP 4.1.x.)
>

What about a kind of fork into php4-1 for woody?
I think now these exception would be indicated to be able
to use security.debian.org furthermore for webservers etc.

-> Who knows when sarge will become stable and
in particular everyone will be able to switch to it?

Or are there any considerations within security team about patching
4.1 in woody?

Christian

Reply to:

Follow-Ups:
- Re: php vulnerability
  - From: Florian Weimer <fw@deneb.enyo.de>

References:
- Re: php vulnerability
  - From: saravanan ganapathy <sarav_gsa@yahoo.com>
- Re: php vulnerability
  - From: Florian Weimer <fw@deneb.enyo.de>

Prev by Date: Re: php vulnerability
Next by Date: Re: php vulnerability
Previous by thread: Re: php vulnerability
Next by thread: Re: php vulnerability
Index(es):
- Date
- Thread