PHP Release Bonanza

iBlog - Ilia Alshanetsky


Quicksearch
Calendar
Back November '24
Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
Syndicate This Blog

Thursday, August 17. 2006

Posted by Ilia Alshanetsky in PHP

Comments (7)
Trackbacks (3)

PHP Release Bonanza

I think we've set a new PHP release record today, 3 releases in one day, PHP 5.1.5, 4.4.4 and 5.2.0RC2. The first two are aimed at addressing a series of security faults that were discovered in stable branches. The good thing is that the issues found are mostly local exploits, so upgrading should definitely be a priority to shared hosting providers or multi-user PHP systems. That said, I would still recommend that all users of PHP consider upgrading their installs to the relevant releases. For information about the exploits themselves go to php.net

The tar balls and win32 binaries for the releases can be found here for PHP 5.1.5 and PHP 4.4.4.

As far as PHP 5.2.0RC2, this is an intermediate release,which brings us one step closer to the final release, hopefully sometime in September. As always, I'd like to ask everyone to give this release a try and see if your code runs on it or not and provide the PHP Development team with feedback. We are particularly interested in any new bugs, regression or drops in performance. Since the 5.2.0 release contains a number of performance improvements, we'd also love to hear if your code does in fact run faster on this release.

The 5.2.0RC2 source tar ball can be found here http://downloads.php.net/ilia/php-5.2.0RC2.tar.bz2 (md5 checksum: 097b97ccc92003519e1df682bdb855b4)

P.S. Big thanks to all the people who have reported security vulnerabilities in PHP and have been patient while we work on solving these problems. Sometimes, we're not as fast as we should be ;-)
  • Twitter
  • Bookmark PHP Release Bonanza at del.icio.us
  • Facebook
  • Digg PHP Release Bonanza
  • Bookmark PHP Release Bonanza at reddit.com
  • Stumble It!

Trackbacks
Trackback specific URI for this entry

PHP-Homepage.de - News on : Zweiter Release Candidate fĂ¼r PHP 5.2.0

Der Release Manager für PHP 5.2, Ilia Alshanetsky, hat Release Candidate Nummer 2 für PHP 5.2.0 freigegeben. Seite RC 1 wurden über 50 Bugs gefixt und der Code wurde stabiler gemacht. Alle Änderungen stehen im Changelog. Downloads steht als Source (.

Programing Resource Index - ??????? ???? ?????? - (PukiWiki/TrackBack 0.4) on : calendar/2006-08-18

Ruby 1.8.5 preview 4 Released BasicSocket#recv_nonblock [new] UDPSocket#recvfrom_nonblock [new] http://www.ruby-lang.org/ja/ PHP 5.2.0RC2 Released Blog - IIia Alshanetsky? http://ilia.ws/archives/124-PHP-Release-Bonanza.html

Programing Resource Index - ??????? ???? ?????? - (PukiWiki/TrackBack 0.4) on : PRI

Programing Resource Index(PRI) - ??????? ???? ?????? - ??????????????????? ?IT RSS-News 2006-08-16 PR???????????????Sendmail Messaging Manager? ?????????????????? AMD??Opt...

Comments
Display comments as (Linear | Threaded)

Jiri on :

Well, 5.2.0RC2 wouldn't compile "out of the box" at any of my 4 servers.

Two Debian/GNU -linux boxes complains about bz2 -stuffs.

One Darwin and one CentOS -linux stops compiling due to openssl -problems.

I know that this isn't right place to report about bugs. So I won't bother you more here about these issues :-)

Configure script went just fine at all servers. I used same config.nice which i have used successfully at 5.2.0RC1 and 5.1.4.

Ps. 5.1.5 compiled and installed just fine.

Jiri on :

This one with OpenSSL (Linux CentOS / Darwin):

/usr/local/src/php-5.2.0RC2/ext/openssl/openssl.c: In function `zif_openssl_pkey_get_details':
/usr/local/src/php-5.2.0RC2/ext/openssl/openssl.c:2330: error: `EVP_PKEY_EC' undeclared (first use in this function)
/usr/local/src/php-5.2.0RC2/ext/openssl/openssl.c:2330: error: (Each undeclared identifier is reported only once
/usr/local/src/php-5.2.0RC2/ext/openssl/openssl.c:2330: error: for each function it appears in.)
make: *** [ext/openssl/openssl.lo] Error 1

This one with Debian/GNU Linux:
/usr/local/src/php-5.2.0RC2/ext/bz2/bz2.c:181: error: static declaration of 'php_stream_bz2io_ops' follows non-static declaration
/usr/local/src/php-5.2.0RC2/ext/bz2/php_bz2.h:55: error: previous declaration of 'php_stream_bz2io_ops' was here
make: *** [ext/bz2/bz2.lo] Error 1

Ilia Alshanetsky on :

This was already fixed in CVS, if you update the files in the bz2/ directory, PHP will compile. I presume you have gcc 4.1 on that machine?

The openssl bug has been fixed too, you just need to update the openssl.c file.

Jiri on :

Yep. I got it working. I've had no problems with this at all. I just wanted to mention that RC2 wasn't compiling "out-of-the-box" first :-)

René Leonhardt on :

Dear Ilia,

Congratulations for this release, I expect September 2006 to be a very good month for Programming (PHP 5.2, Python 2.5, end of Google Summer of Code, maybe Java SE 6)!

I have a question about the bundled GD library ("2.0.28 compatible"):
is there a (license) reason why not the latest (2 years old) version 2.0.33 is bundled?
http://www.boutell.com/gd/manual2.0.33.html#whatsnew2.0.33

It fixes memory and Unicode problems, so looking forward to Unicode support in PHP 6, it would be nice to be on the safe side for images as well ;-)


Best regards,
René

Ilia Alshanetsky on :

Actually PHP 5.2 already has GD 2.0.34 equivalent, however the information on the phpinfo() page is a bit out of date ;-)

Add Comment
Standard emoticons like :-) and ;-) are converted to images.
E-Mail addresses will not be displayed and will only be used for E-Mail notifications.

Frontpage - Top level
Guide to PHP Security
Categories
Archives

Blog Administration