Security Update:Critical Vulnerability in PHP Could Lead to Data Exposure
Date and Time
Website Developers and Programmers Using PHP
The PHP Group announced the release of PHP 5.4.34 to address 4 vulnerabilities and various ‘bugs’. One of the vulnerabilities is classified as critical and could expose servers to data theft or worst.
Advanced Users: For a complete description of the vulnerabilities, affected software and updates refer to PHP 5 ChangeLog at http://php.net/ChangeLog-5.php.
- PHP 5.4.33 and below
WHAT'S THE PROBLEM?
PHP (recursive acronym for PHP: Hypertext Preprocessor) is a widely-used open scripting language designed for web development but also used as a general-purpose programming language.
HOW DO I PROTECT MY COMPUTER?
- If you do not run a website, no action on your part is required.
- If you manage your own website and/or use PHP, refer to PHP 5 ChangeLog at http://php.net/ChangeLog-5.php for updates.
- IT Security - http://it.ucsf.edu/security