1 |
According to GLSA 200608-28, the latest PHP vuln can be fixed by upgrading |
2 |
to >=~php-4.4.3-r1 or >=php-5.1.4-r6. I am running php-4.4.4.-pl4 but |
3 |
glsa-check wants to upgrade to php-5 (despite me having php-5 masked out |
4 |
in /etc/portage/package.mask). Does this mean that php-4.4.4.pl4 does not |
5 |
address this vulnerability and if so, why doesn't GLSA 200609-28 state |
6 |
that? |
7 |
|
8 |
Basically, I want to fix this without upgrading to php-5 on my servers. |
9 |
|
10 |
|
11 |
-- |
12 |
A |
13 |
-- |
14 |
gentoo-server@g.o mailing list |