At 18:45 22/08/2005, Rasmus Lerdorf wrote:
Sebastian Bergmann wrote:
> Zeev Suraski schrieb:
>
>>If there are no stoppers I'd like to release it towards the end of the
>>week.
>
>
> Maybe the bundled PCRE should be updated:
> http://www.securitytracker.com/alerts/2005/Aug/1014744.html
Yes, and the whole reason for this release is to stop distributing a
vulnerable version of XML_RPC.
It's one of the reasons, there are tons of other bug fixes as well.
It should definitely be fixed though. Anybody volunteering to handle the
XML_RPC update?
Zeev
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
