On Thu, Jan 6, 2011 at 11:49, Nadav Har'El wrote:
> On Thu, Jan 06, 2011, Uri Even-Chen wrote about "Re: OT: PHP 32 bit numbers
> security issue":
>> By the way, although I know hardware can be used to calculate floating
>> point operations, I would prefer
On Thu, Jan 06, 2011, Uri Even-Chen wrote about "Re: OT: PHP 32 bit numbers
security issue":
> By the way, although I know hardware can be used to calculate floating
> point operations, I would prefer to use software - because of the
> ability to be flexible and let the user o
On Thu, Jan 6, 2011 at 00:31, Nadav Har'El wrote:
> It is pointless to make such generalizations, that speed of numeric
> calculation is no longer important. Many applications, including video
> encoding/decoding, games, and much more, basically do calculations in a
> tight loop, and they simply d
> Uri Even-Chen writes:
>> But I think programming languages should be more friendly, and
>> always convert numbers to the best representation, or report
>> overflow cases.
What's "best"? Would you agree that "best" == "the most appropriate"?
Unless you do symbolic or otherwise "pure" maths (c
On Wed, Jan 05, 2011, Uri Even-Chen wrote about "Re: OT: PHP 32 bit numbers
security issue":
>But I think programming languages should be more friendly, and always convert
> numbers to the best representation, or report overflow cases. In the past,
> speed and memory were
On Wed, Jan 5, 2011 at 21:35, Oleg Goldshmidt wrote:
> Uri Even-Chen writes:
>
>>> A really great paper concerning floating point representation can
>>> be found at http://docs.sun.com/source/806-3568/ncg_goldberg.html -
>>>
>>> What Every Computer Scientist Should Know About Floating-Point
>>> A
Uri Even-Chen writes:
>> A really great paper concerning floating point representation can
>> be found at http://docs.sun.com/source/806-3568/ncg_goldberg.html -
>>
>> What Every Computer Scientist Should Know About Floating-Point
>> Arithmetic
>
> It's a little too long for me to read. Also, is
2011/1/5 Michael Tewner :
>
>
> 2011/1/5 shimi
>>
>> On Wed, Jan 5, 2011 at 1:52 PM, shimi wrote:
>>>
>>> It has something to do with the precision attempting algorithm of
>>> floating point numbers, and the way it is done on fpu87 in 32bit processors.
>>> It tries to get close to the number belo
2011/1/5 shimi
>
> On Wed, Jan 5, 2011 at 1:52 PM, shimi wrote:
>
>>
>> It has something to do with the precision attempting algorithm of floating
>> point numbers, and the way it is done on fpu87 in 32bit processors. It tries
>> to get close to the number below a certain point which is impossib
On Wed, Jan 05, 2011, Nadav Har'El wrote about "Re: OT: PHP 32 bit numbers
security issue":
> what does it have to do with 32 vs 64 bits?
I think I can answer this one myself: It appears that for x86-64 gcc, the
default is to use SSE instructions, while the i386 target defaults
On Wed, Jan 5, 2011 at 4:10 PM, Nadav Har'El wrote:
> > p.s.
> > The link you gave bellow is to php.net not Zend.
>
>
> Sorry, I don't follow the intricacies of Php development. I remembered that
> 10 years ago Zend (=Zeev and Andi) were writing PHP, and just assumed it's
> the same today...
>
>
W
On Wed, Jan 05, 2011, Lior Kaplan wrote about "Re: OT: PHP 32 bit numbers
security issue":
> It's a hardware bug, which can be avoided by the right compilation flags.
> Since it comes from the legacy x87 feature, it doesn't happen on x86_64
> which is a newer archi
On Wed, Jan 5, 2011 at 1:52 PM, shimi wrote:
>
> It has something to do with the precision attempting algorithm of floating
> point numbers, and the way it is done on fpu87 in 32bit processors. It tries
> to get close to the number below a certain point which is impossible, and
> the algorithm do
On Wed, Jan 5, 2011 at 1:41 PM, Nadav Har'El wrote:
> On Wed, Jan 05, 2011, Hetz Ben Hamo wrote about "OT: PHP 32 bit numbers
> security issue":
> > Hi,
> > I just found something related to PHP and handling 32 bit numbers, I
> wrote
> > about it here
On Wed, Jan 5, 2011 at 13:07, Tzafrir Cohen wrote:
> On Wed, Jan 05, 2011 at 12:40:14PM +0200, Uri Even-Chen wrote:
>> I hate floating point. if you search Google for 2^1023,
>
>
>
>> you get this result:
>>
>> 2^1023 = 8.98846567 × 10^307
>>
>> However if you search for 2^1024, you don't get a nu
r'El wrote:
> On Wed, Jan 05, 2011, Hetz Ben Hamo wrote about "OT: PHP 32 bit numbers
> security issue":
> > Hi,
> > I just found something related to PHP and handling 32 bit numbers, I
> wrote
> > about it here: http://goo.gl/xqQZd
>
> I found a fix on Ze
dav Har'El
> On Wed, Jan 05, 2011, Hetz Ben Hamo wrote about "OT: PHP 32 bit numbers
> security issue":
> > I just found something related to PHP and handling 32 bit numbers, I
> wrote
> > about it here: http://goo.gl/xqQZd
>
> I know this doesn't excuse
On Wed, Jan 05, 2011, Hetz Ben Hamo wrote about "OT: PHP 32 bit numbers
security issue":
> Hi,
> I just found something related to PHP and handling 32 bit numbers, I wrote
> about it here: http://goo.gl/xqQZd
I found a fix on Zend's repository,
http://svn.php.net/viewv
On Wed, Jan 05, 2011, Hetz Ben Hamo wrote about "OT: PHP 32 bit numbers
security issue":
> I just found something related to PHP and handling 32 bit numbers, I wrote
> about it here: http://goo.gl/xqQZd
I know this doesn't excuse a Denial-of-Service bug, but I'm
See http://bugs.php.net/bug.php?id=53632
patch is here: http://svn.php.net/viewvc/?view=revision&revision=307095
I guess the distros will release updated packages soon.
Kaplan
2011/1/5 Hetz Ben Hamo
> Hi,
> I just found something related to PHP and handling 32 bit numbers, I wrote
> about it
On Wed, Jan 05, 2011 at 12:40:14PM +0200, Uri Even-Chen wrote:
> I hate floating point. if you search Google for 2^1023,
> you get this result:
>
> 2^1023 = 8.98846567 × 10^307
>
> However if you search for 2^1024, you don't get a number at all.
Do you prefer to do that in fixed-point?
It's
Hi Tzafrir,
Regarding the link, I tweeted the post link and simply pasted the short
version here from the buffer.
As for the bug, it seems that it fixed in SVN, now the various distributions
needs to backport it to the various PHP versions and packages.
Hetz
2011/1/5 Tzafrir Cohen
> On Wed, J
On Wed, Jan 05, 2011 at 12:05:25PM +0200, Hetz Ben Hamo wrote:
> Hi,
> I just found something related to PHP and handling 32 bit numbers, I wrote
> about it here: http://goo.gl/xqQZd
I missed one characted and ended up with:
http://www.tzb-info.cz/106687-vyborne-tepelneizolacni-vlastnostmi-cihel-
I hate floating point. if you search Google for 2^1023, you get this result:
2^1023 = 8.98846567 × 10^307
However if you search for 2^1024, you don't get a number at all.
Even if you search for 1.999*2^1023 you get a number, but
if you search for 1.*2^1023 you don't g
Hi,
I just found something related to PHP and handling 32 bit numbers, I wrote
about it here: http://goo.gl/xqQZd
Thanks,
Hetz
___
Linux-il mailing list
Linux-il@cs.huji.ac.il
http://mailman.cs.huji.ac.il/mailman/listinfo/linux-il
On Monday 17 May 2004 19:17, Baruch Even wrote:
> If the package is available in the stable release of Debian, you should
> contact the security team, report to them the full details and include
> the appropriate fix.
>
> If the bug is only in the unreleased unstable/testing version the
> security
If the package is available in the stable release of Debian, you should
contact the security team, report to them the full details and include
the appropriate fix.
If the bug is only in the unreleased unstable/testing version the
security team will not handle it. You should report to the maintaine
Noam Rathaus wrote:
Hi,
I wanted to consult the community regarding this issue I have:
I have found a security vulnerability in one of Debian's unstable currently
un-maintained package, which appears to not exist in the latest version of
the product (if you compile it from the source code provide
On Monday 17 May 2004 18:42, Sagi Bashari wrote:
> http://www.debian.org/security/faq#contact
>
> Noam Rathaus wrote, On 17/05/2004 18:20:
> >Hi,
> >
> >I wanted to consult the community regarding this issue I have:
> >
> >I have found a security vulnerability in one of Debian's unstable
> > curren
http://www.debian.org/security/faq#contact
Noam Rathaus wrote, On 17/05/2004 18:20:
Hi,
I wanted to consult the community regarding this issue I have:
I have found a security vulnerability in one of Debian's unstable currently
un-maintained package, which appears to not exist in the latest version
Hi,
I wanted to consult the community regarding this issue I have:
I have found a security vulnerability in one of Debian's unstable currently
un-maintained package, which appears to not exist in the latest version of
the product (if you compile it from the source code provided by the author).
Forgot to say, pressing Ctr-C while sleeping, passes the control to the next
line (namely: logout)
Thanks Orr Dunkelman <[EMAIL PROTECTED]> for reminder
=
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in
hi,
At my lab, we have an RH7.2 box. Recently I had to add some users. The
problem is that the people that I added, are not around, that's why I've
decided to do the following:
I've made this script script
#!/bin/bash
# file: /bin/message
echo Hi! I am sorry to tell you that your account has be
33 matches
Mail list logo
