CloudLinux OS Blog - PHP 5.3? CVE 2015-6835 ... what a mess
CloudLinux OS Blog

PHP 5.3? CVE 2015-6835 ... what a mess

PHP 5.3? CVE 2015-6835 ... what a mess
Even though PHP 5.3 & 5.4 are still considered supported on CentOS -- sometimes it takes forever for CentOS/RHEL to fix a bug in there. CVE 2015-6835 is a perfect example. This particular bug came out of nowhere (well, people knew it was a bug, but they didn’t realize it was a huge security hole). Yet, once they did… it took days for the live exploit to appear, and Joomla sites to start being hacked.
 
This is why it is so important to use HardenedPHP shipped with CloudLinux OS. We have been testing the fix quite promptly after the issue became known, and it is already rolled out to our customers.
 
Beta: PHP updated
HardenedPHP updated
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, 06 December 2019

Captcha Image