Latest PHP vuln

According to GLSA 200608-28, the latest PHP vuln can be
fixed by upgrading
to >=~php-4.4.3-r1 or >=php-5.1.4-r6. I am running
php-4.4.4.-pl4 but
glsa-check wants to upgrade to php-5 (despite me having
php-5 masked out
in /etc/portage/package.mask). Does this mean that
php-4.4.4.pl4 does not
address this vulnerability and if so, why doesn't GLSA
200609-28 state
that?

Basically, I want to fix this without upgrading to php-5 on
my servers.


-- 
A
-- 
gentoo-servergentoo.org mailing list

Le Mardi 12 Septembre 2006 18:12, A. Khattri a écrit :
> Does this mean that php-4.4.4.pl4 does not
> address this vulnerability and if so, why doesn't GLSA
200609-28 state
> that?

Hi,

Resolved with bug #147157
http://
bugs.gentoo.org/show_bug.cgi?id=147157

Best regards,
-- 
David CHANIAL - Euro Web SARL - http://www.euro-web.fr
  Location de serveurs dédiés infogérés
  Infogérance et consulting
  Hébergement mutualisé sur mesure
  Serveurs de jeux

-- 
gentoo-servergentoo.org mailing list

Le Mardi 12 Septembre 2006 18:12, A. Khattri a écrit :
> Does this mean that php-4.4.4.pl4 does not
> address this vulnerability and if so, why doesn't GLSA
200609-28 state
> that?

Hi,

Resolved with bug #147157
http://
bugs.gentoo.org/show_bug.cgi?id=147157

Best regards,
-- 
David CHANIAL - Euro Web SARL - http://www.euro-web.fr
  Location de serveurs dédiés infogérés
  Infogérance et consulting
  Hébergement mutualisé sur mesure
  Serveurs de jeux

-- 
gentoo-servergentoo.org mailing list