RSS

#HardenedPHP

by / Friday, 26 August 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php44-4.4.9-52

  • ALTPHP-212: implemented additional code to mail.c to track sending file path (X-PHP-Filename);
  • security bug #72837: integer overflow in bzdecompress caused heap corruption...

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 11 August 2016
End of life for PHP 5.5 - What does this mean for you and your customers?

Most popular versions of PHP used by your customers are unsupported by PHP.net and as of June 21st, add PHP 5.5 to the mix of PHP versions that are no longer supported by the community. This means that as security vulnerabilities are discovered, they will not be fixed by PHP.net in versions PHP...

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 04 August 2016
HardenedPHP updated

New updated HardenedPHP packages are available from our production repository.

Changelog:

alt-php44-4.4.9-51

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 29 July 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php44-4.4.9-51

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 24 June 2016
PHP 5.3? CVE 2015-6835 ... what a mess
Even though PHP 5.3 & 5.4 are still considered supported on CentOS -- sometimes it takes forever for CentOS/RHEL to fix a bug in there. CVE 2015-6835 is a perfect example. This particular bug came out of nowhere (well, people knew it was a bug, but they didn’t realize it was a huge security...

Continue reading

Topic: in CloudLinux OS Blog


by / Friday, 24 June 2016
HardenedPHP updated

The latest updated HardenedPHP packages are available from our production repository.

Changelog:

alt-php51-5.1.6-56

alt-php52-5.2.17-83

alt-php53-5.3.29-33

  • CVE-2015-6835: use after free vulnerability in session deserializer;
  • Security bug 65481: shutdown segfault due to serialize.

To install...

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 23 June 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php51-5.1.6-56

alt-php52-5.2.17-83

alt-php53-5.3.29-33

  • CVE-2015-6835: use after free vulnerability in session deserializer;
  • Security bug 65481: shutdown segfault due to serialize.

To install run...

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 07 June 2016
HardenedPHP updated

New updated HardenedPHP packages are available from our production repository.

Changelog:

alt-php54-5.4.45-17

Continue reading

Topic: in CloudLinux OS Blog


by / Tuesday, 31 May 2016
Beta: HardenedPHP updated

New updated HardenedPHP packages are available from our updates-testing repository.

Changelog:

alt-php54-5.4.45-17

Continue reading

Topic: in CloudLinux OS Blog


by / Thursday, 19 May 2016
What’s inside HardenedPHP and why it matters for server security

It’s been more than a year since we started our HardenedPHP project. The idea came out of discussions with multiple hosters who expressed their worry about running outdated versions of PHP. While their servers were secured with CageFS, they were still worried that hackers could have a field...

Continue reading

Topic: in CloudLinux OS Blog


1 2 3 4 5 6