PHP 5.3.2 has been released, as the PHP.net site has posted the release announcement for the latest PHP version in the PHP 5.3.x series – 5.3.2.
PHP 5.3.2 is a maintenance release in the 5.3 series, which includes a large number of bug fixes.
Security/bug fixes included in this release take care of things like:
- Safe_mode validation inside tempnam
- A possible open_basedir/safe_mode bypass in sessions
- Added support for SHA-256 and SHA-512 to php’s crypt.
- Fixed a bug in the garbage collector that could cause a crash
- Crashing when using ldap_next_reference
Key Bug Fixes in PHP 5.3.2 include:
- Added protection for $_SESSION from interrupt corruption and improved “session.save_path” check.
- Fixed bug #51059 (crypt crashes when invalid salt are given).
- Fixed bug #50940 Custom content-length set incorrectly in Apache sapis.
- Fixed bug #50847 (strip_tags() removes all tags greater then 1023 bytes long).
- Fixed bug #50723 (Bug in garbage collector causes crash).
- Fixed bug #50661 (DOMDocument::loadXML does not allow UTF-16).
- Fixed bug #50632 (filter_input() does not return default value if the variable does not exist).
- Fixed bug #50540 (Crash while running ldap_next_reference test cases).
- Fixed bug #49851 (http wrapper breaks on 1024 char long headers).
Tags: new programme, PHP, php 5.3.2, php 5.3.x, php.net, safe_mode
