Monday, August 26, 2013

Security fix for PHP, BitNami PHP development stacks updated.

PHP 5.4.19 and PHP 5.5.3 have been released to fix a bug in the patch for CVE-2013-4248 in the OpenSSL module. A few days ago new PHP versions were released fixing about 20 bugs, including a security issue in the OpenSSL module (CVE-2013-4248) and a session fixation problem (CVE-2011-4718). These new versions fix a bug introduced in those preview releases.

We have released updated versions of the BitNami PHP development stacks: LAMP, MAMP, WAMP and LAPP, MAPPWAPP with PHP 5.4 and PHP 5.5.

These issues are not as serious as other recent vulnerabilities, but just to be on the safe side, we will releasing updated version of all our PHP-based applications. We will also be removing older versions of the apps from existing cloud repositories such as Amazon and Azure, to prevent end users from inadvertently launching insecure versions of these apps.