|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Vincent Danen (vdanen
mandrakesoft.com)Date: Fri Mar 01 2002 - 11:23:39 CST
On Thu Feb 28, 2002 at 09:33:32PM -0500, Levi Ramsey wrote:
> > > Is LM vulnerable to the vulnerability described in
> > > http://security.e-matters.de/advisories/012002.html
> >
> > Yes. All versions of PHP prior to 4.1.2 are vulnerable.
>
> I thought the patch was applied in 4.1.1-3mdk...
For cooker, yes. I'm saying that "out of the box" all versions prior
to 4.1.2 are vulnerable. Our patched 4.1.1 in cooker, or patched
4.0.6/4.0.4pl1 in updates are not vulnerable.
-- MandrakeSoft Security; http://www.mandrakesecure.net/ "lynx -source http://www.freezer-burn.org/bios/vdanen.gpg | gpg --import" 1024D/FE6F2AFD 88D8 0D23 8D4B 3407 5BD7 66F9 2043 D0E5 FE6F 2AFDCurrent Linux kernel 2.4.8-34.1mdk uptime: 37 days 14 hours 6 minutes.
-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org
iD8DBQE8f7kbIEPQ5f5vKv0RApMPAJ9SY+r+bdNiC91hoMignOzYWrqwvwCdFtC0 KsHUOobqUe7c5he19vOg4Cc= =xdFm -----END PGP SIGNATURE-----
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]