Re: [Savannah-hackers] PHP3 vulnerability

savannah-hackers

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Savannah-hackers] PHP3 vulnerability

From:	mathieu
Subject:	Re: [Savannah-hackers] PHP3 vulnerability
Date:	Fri, 1 Mar 2002 14:01:01 +0100

>    This is us. I'm running a dist-upgrade on savannah + apply
the
> fix + re-install from sources. Thanks a lot for the warning.
Hi,
If I understood the security advisory correctly, we were not in danger
because
we do not use web forms for file uploads. But it is good that you have
upgraded to the new version anyway.

There were much talking about this on linuxfr.org and it was said thatthe hole was a problem anytime that a PHP scripts upload information,not specificaly « web forms for file uploads ».




--
mathieu

  ] les brevets, protection de l'innovation ?
  ] http://petition.eurolinux.org

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Savannah-hackers] PHP3 vulnerability, Jaime E . Villate, 2002/03/01
- Re: [Savannah-hackers] PHP3 vulnerability, Loic Dachary, 2002/03/01
- Re: [Savannah-hackers] PHP3 vulnerability, mathieu <=

Prev by Date: [Savannah-hackers] Cron <address@hidden> sf_stat
Next by Date: [Savannah-hackers] Re: viewcvs
Previous by thread: Re: [Savannah-hackers] PHP3 vulnerability
Next by thread: [Savannah-hackers] savannah.gnu.org: submission of Moss Project
Index(es):
- Date
- Thread