> For your information, zip is not enabled by default. If you have a > bug/issue about the specific zip:// URL, please let me know. Ilia and > Tony already fixed some paths fixes and the fixes are available in > zip-1.8.4. They will be in 5.2.1. For your information Pierre: Security Bugs in PHP are usually found by me. So guess twice WHO told [EMAIL PROTECTED] that there are bufferoverflows in zip:// URLs and WHY there have been bugfixes to ext/zip.
BTW: Last time I checked, popular packages like dotdeb PHP activate ext/zip by default... And yes... Also prepare for the ***more than 30 vulnerabilities*** I disclosed to [EMAIL PROTECTED] during the last 3 weeks. Have fun... Stefan -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
