PHP Classes

Fixed in PHP 7

Recommend this page to a friend!

      PHP OAuth Library  >  PHP OAuth Library package blog  >  Is Your PHP Applicati...  >  All threads  >  Fixed in PHP 7  >  (Un) Subscribe thread alerts  
Subject:Fixed in PHP 7
Summary:A patch has been released that fixes it
Messages:2
Author:Stefan Jibrail Froelich
Date:2016-07-21 13:20:40
 

  1. Fixed in PHP 7   Reply   Report abuse  
Picture of Stefan Jibrail Froelich Stefan Jibrail Froelich - 2016-07-21 13:20:40
The PHP development team announces the immediate availability of PHP 7.0.9.
This is a security release. Several security bugs were fixed in this
release, including the HTTP_PROXY issue.

All PHP 7.0 users are encouraged to upgrade to this version.

For source downloads of PHP 7.0.9 please visit our downloads page:
php.net/downloads.php

  2. Re: Fixed in PHP 7   Reply   Report abuse  
Picture of Manuel Lemos Manuel Lemos - 2016-07-21 17:53:19 - In reply to message 1 from Stefan Jibrail Froelich
Great. That was what I expected, even though it is not a vulnerability in PHP itself, it is better to protect applications that use libraries which check the HTTP_PROXY variable. The potential of abuse of those libraries is huge.

It seems PHP 5.5 and PHP 5.6 will also be fixed soon.