月別アーカイブ: 2016年4月

PHP 7.0.6 Released

The PHP development team announces the immediate availability of PHP 7.0.6. This is a security release. Several security bugs were fixed in this release, including

  • CVE-2016-3078
  • CVE-2016-3074

All PHP 7.0 users are encouraged to upgrade to this version.

For source downloads of PHP 7.0.6 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

PHP 5.6.21 is available

The PHP development team announces the immediate availability of PHP 5.6.21. This is a security release. Several security bugs were fixed in this release.

All PHP 5.6 users are encouraged to upgrade to this version.

For source downloads of PHP 5.6.21 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

PHP 5.5.35 Release

The PHP development team announces the immediate availability of PHP 5.5.35. This is a security release. Several security bugs were fixed in this release.

All PHP 5.5 users are encouraged to upgrade to this version.

For source downloads of PHP 5.5.35 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

Weekly Report: Microsoft Windows および Samba の認証機能に脆弱性

Microsoft Windows および Samba の認証機能には、脆弱性があります。結果として、遠隔の第三者が、中間者攻撃によって、認証されたユーザになりすましたり、SAM データベースにアクセスしたり、サービス運用妨害 (DoS) 攻撃を行ったりするなどの可能性があります。続きを読む

phpDay 2016

The Italian PHP user group GrUSP is pleased to announce the 13th edition of the Italian phpDay conference, taking place on May 13th and 14th, 2016 in Verona. phpDay is the first historic Italian conference dedicated solely to PHP development, technologies and management. It is aimed to IT managers, developers and innovators. Each year it renews the opportunity to link to new business partners.

JVN: QuickTime for Windows に複数のヒープバッファオーバフローの脆弱性

Zero Day Initiative (ZDI) は、QuickTime for Windows に複数のヒープバッファオーバフローの脆弱性が存在することを公表しました。Trend Micro の情報によると、QuickTime for Windows のサポートは終了し、本件に対する修正は行われないとのことです。続きを読む

JVN: Microsoft Windows および Samba の認証機能に脆弱性 (“Badlock”)

Security Account Manager Remote (SAMR) および Local Security Authority (Domain Policy) (LSAD) プロトコルによる通信では、Remote Procedure Call (RPC) のチャネルが正しく確立されません。そのため第三者が、認証されたユーザになりすましたり、SAM データベースにアクセスしたり、サービス運用妨害 (DoS) 状態を引き起こしたりすることが可能です。この脆弱性は "Badlock" とも呼ばれています。続きを読む

JVN: BlueDriver LSB2 に認証なしで Bluetooth アクセスが可能な問題

Lemur Vehicle Monitors の BlueDriver LSB2 は、OBD2 ポートに接続して車両の性能に関する情報を提供するデバイスです。BlueDriver LSB2 は Bluetooth によるアクセスに PIN を必要としないため、Bluetooth の無線範囲内にいる誰もが車両の CAN (Controller Area Network) バスに任意のコマンドを送信することが可能です。続きを読む

JVN: BlueDriver LSB2 に Bluetooth アクセスを認証しない問題

Lemur Vehicle Monitors の BlueDriver LSB2 は、OBD2 ポートに接続して車両の性能に関する情報を提供するデバイスです。BlueDriver LSB2 は Bluetooth によるアクセスに PIN を必要としないため、Bluetooth の無線範囲内にいる誰もが車両の CAN (Controller Area Network) バスに任意のコマンドを送信することが可能です。続きを読む

Weekly Report: Node.js のパッケージマネージャ npm に問題

Node.js のパッケージマネージャ npm には、不正なパッケージの動作を制限しない問題があります。結果として、パッケージ作者が、不正なパッケージをアップロードすることで、自己複製型のワームプログラムの感染を拡大させる可能性があります。続きを読む

CakeFest 2016 – The CakePHP Conference

Every summer we hold our annual conference dedicated to CakePHP. For the past 11 years, the framework has been a benchmark for PHP development, providing developers with a full stack MVC solution to build powerful applications which scale. This, coupled with an amazing community backing and thousands of plugins, makes CakePHP the number one choice for those who love code.

That's why we ask you join us at CakeFest 2016 which will be running from May 26th till May 29th, and experience open source at it's very best! As always, CakeFest will consist of a two day workshop (At beginner and advanced levels) and a two day conference. This year we are in the beautiful city of Amsterdam, Netherlands.

The workshop sessions at CakeFest are an ideal way to learn CakePHP whether you are just starting out, or you are a seasoned developer. They are also a great way to get up to speed with the latest versions and innovations within the framework. All this, directly from the core developers themselves! The workshops will be on May 26th and May 27th.

Comprising two jam-packed days of presentations, discussions and talks on CakePHP related technologies. The conference portion of CakeFest is an event not to miss, for both new and old users of the framework. The conference will be on May 28th and May 29th and we have some fantastic speakers lined up.

Tickets are selling fast, so you better grab yours while you still can!

PHP 5.6.20 is available

The PHP development team announces the immediate availability of PHP 5.6.20. This is a security release. Several security bugs were fixed in this release. All PHP 5.6 users are encouraged to upgrade to this version.

For source downloads of PHP 5.6.20 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

PHPSerbia Conference 2016

Conference that delivers high-value technical content about PHP and related web technologies, architecture, best practices and testing. Two days of amazing talks by some of the most prominent experts and professionals in the PHP world in a comfortable and professional setting.

At PHPSerbia Conference, you’ll have the unique opportunity to learn about the latest development trends and innovations, as well as to network with fellow attendees and the speakers.

conf2016.phpsrbija.rs