News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Zend Developer Zone:
Zend Framework 1.7.5 Released (Security Fix)
February 18, 2009 @ 08:48:14

As mentioned in this new post to the Zend Developer Zone, the latest version of the Zend Framework has been released - 1.7.5 - and includes an important security fix:

Besides the normal small enhancements and bug fixes that come with an incremental release such as this, there is also a rather important (and somewhat controversial) security fix that was added. This security fix breaks backwards compatibility with the previous version, because it simply must in order to exist. There is however a way to turn the security fix off to keep your current applications working in the case that this change breaks you.

Matthew Weier O'Phinny gives more detail on the issue over on his blog. The problem stems from an issue in the Zend_View's render() method and possible user input problems.

You can download this latest release from the Zend Framework website.

0 comments voice your opinion now!
zendframework release security update fix zendview setscriptpath


blog comments powered by Disqus

Similar Posts

Symfony Blog: symfony 1.1 branch

Tobias Schlitt's Blog: Out now - eZ Components book - win a free copy!

Rob Allen's Blog: Goodbye Zend.php

Anson Cheung's Blog: Top 10 PHP Best Security Practices for Sys Admins

Community News: Zend Framework Monthly Bug Hunts


Community Events





Don't see your event here?
Let us know!


language bugfix series introduction api release library deployment voicesoftheelephpant podcast install framework laravel package list tips interview symfony community opinion

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework