News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP Security Blog:
The Suhosin Patch, File Uploads, and Stealth Mode
December 05, 2006 @ 10:02:00

On the PHP Security Blog, there's two new posts concerning their Suhosin patch for PHP - one talking about a remote code execution vulnerability found in the uploadprogressmeter extension (which as already been corrected) and the other dealing with the "stealth mode" of the patch to find compatibility problems.

As mentioned, the issue with the uploadprogress extension has been fixed and as been introduced into the PECL repository. The other post just mentions what the patch is doing to try to keep compatibility problems from happening due to back extensions and/or modules being loaded in an application.

More details about the Suhosin patch can be found here.

0 comments voice your opinion now!
stealth mode suhosin patch fileupload pecl extension module stealth mode suhosin patch fileupload pecl extension module


blog comments powered by Disqus

Similar Posts

Juozas Kaziukenas' Blog: How to use external libraries in PHP?

Jacob Santos' Blog: Would PHP benefit from JIT compilation?

Insane Security Blog: PHP 5.2+ Data Filtering Extension = BAD?

Sanisoft Blog: Email component in CakePHP is now Header Injection safe

Christian Weiske's Blog: Installing PHP extensions for phpfarm


Community Events





Don't see your event here?
Let us know!


language laravel community library artisanfiles framework symfony series version opinion podcast tool voicesoftheelephpant list security composer conference introduction interview release

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework