PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generated pages quickly. It is a project of the Apache Software Foundation.
- Fixed bug #68044 (Integer overflow in unserialize() (32-bits only))
- Fixed bug #68089 (NULL byte injection - cURL lib)
- Fixed bug #68113 (Heap corruption in exif_thumbnail())
- Fixed bug #68027 (Global buffer overflow in mkgmtime() function)
Reviewing 5.4.3 (May 9, 2012)
5.4.3 already .. better check the change log .. Yep:
"PHP 5.4.3 fixes a buffer overflow vulnerability in the apache_request_headers() (CVE-2012-2329)."
This exploit only applies to those running PHP in CGI form, afaik. Use a DSO module in Apache is not affected.
Reviewing 5.4.0 Alpha 1 (Jul 1, 2011)
With C & C++ syntax being most natural feeling to me, I always use PHP for web coding tasks. I've actually ended up building fairly elaborate order processing, support, and fulfillment systems with it. To say it is easy would be an understatement. Not only is PHP 'natural' for people like me, but it is very forgiving for people just learning - not quite so strict on syntax, though of course it must have certain syntactical rules. Wonderful language. I'm glad it is continually improved as well.
Reviewing 5.3.3 (Dec 14, 2010)
I love PHP, so I cannot be neutral... but now 5.x rocks.
Reviewing 5.2.6 (May 2, 2008)
Lots of nice features natively of by using extensions. Pretty easy web development.
Some bugs exists version after version, due to its complexity, by they tend to be fixed early.
In terms of speed, in the beginnings, it was faster than ASP, and on pair with Coldfusion. Nowadays, it has outperformed Coldfusion, but is not as fast as ASP.NET.
No comments yet