Our security team ran a check on our php site and found PHP version 5.3.8. This caused the test to fail because of vulnerabilities in version 5.3.8. They suggest I upgrade PHP to version 5.3.9.
I loaded the latest version of Zend Server and applied the latest hotfix, but I'm still on PHP 5.3.8.
So is their a Zend Server for IBM i that supports PHP 5.3.9 or does the vulnerabilities in PHP 5.3.8 not affect the IBM i version of Zend Server?
PHP 5.3.9
4 posts
• Page 1 of 1
PHP 5.3.9
by vedaadvantage on Tue Apr 03, 2012 9:04 pm
- vedaadvantage
- Posts: 13
- Joined: Mon Nov 21, 2011 11:57 pm
Re: PHP 5.3.9
by erich_hieden on Wed Apr 04, 2012 7:00 am
There's no build for IBM i with PHP 5.3.9
The exploit targeted in the latest Hotfix didn't apply to IBM i as well. But I can't say anything on the other exploits targeted in PHP 5.3.9
The exploit targeted in the latest Hotfix didn't apply to IBM i as well. But I can't say anything on the other exploits targeted in PHP 5.3.9
- erich_hieden
- Posts: 349
- Joined: Tue Jul 07, 2009 9:01 am
Re: PHP 5.3.9
by aseiden on Wed Apr 04, 2012 10:04 pm
Martin/Erich is correct. The vulnerability in 5.3.8 did not affect IBM i. What's more, the fix in 5.3.9 introduced a new flaw that has now been corrected in 5.3.10. http://www.phpclasses.org/blog/post/175 ... P-539.html
Luckily, we on IBM i were never affected by the flaw, or the flawed fix.
Luckily, we on IBM i were never affected by the flaw, or the flawed fix.
- aseiden
- Posts: 711
- Joined: Thu Apr 09, 2009 5:45 pm
Re: PHP 5.3.9
by vedaadvantage on Mon Apr 09, 2012 8:29 pm
Thanks for the replies. I will relay this to our security team and tell them to chill out.
- vedaadvantage
- Posts: 13
- Joined: Mon Nov 21, 2011 11:57 pm
4 posts
• Page 1 of 1
Return to Zend Server for IBM i
Who is online
Users browsing this forum: No registered users and 0 guests