[php-maint] Availability of PHP version 5.3.4 or newer
bill at destwin.com
Fri Feb 11 21:11:43 UTC 2011
List of security vulneribilities reported by Security Metrics
(http://www.securitymetrics.com) PCIDSS scan for PHP 5.3.3-7 with status
from http://security-tracker.debian.org/tracker/source-package/php5 as
of February 11, 2011.
O Open item
X Not listed on security-tracker
887 Main Street, Suite D
Monroe, Connecticut 06468-2800
Toll Free: 877-DESTWIN (877-337-8946)
sales at destwin.com
Destwin and "Fuel Dealer Solution" are trademarks of DESTWIN, LLC.
From: Raphael Geissert <geissert at debian.org>
To: Ondřej Surý <ondrej at debian.org>
Cc: Bill West <bill at destwin.com>, Mike Lucia <mlucia at destwin.com>,
pkg-php-maint at lists.alioth.debian.org
<pkg-php-maint at lists.alioth.debian.org>, wthomas at intinc.com
<wthomas at intinc.com>
Subject: Re: [php-maint] Availability of PHP version 5.3.4 or newer
Date: Tue, 8 Feb 2011 11:33:02 -0500
On 8 February 2011 14:28, Ondřej Surý <ondrej at debian.org> wrote:
> the 5.3.3-7 is patched to include all security fixes from 5.3.4 and
> 5.3.5. There's no need to worry.
Some more CVE ids have been assigned recently, but none of them are
Enough minor issues have been accumulated, though, so I will work on a
DSA for later this month.
You can check the status of php5 at all times at (or via the debsecan package):
(it doesn't yet contain version information from wheezy, so it's
expected that it says it is "not known to be vulnerable")
More information about the pkg-php-maint