Announcement

**Floris** · Fri 17 Dec '04, 2:27am

As there are issues reported with 4.3.10 of PHP and vBulletin, I advise to wait off upgrading PHP.

**Zachery** · Fri 17 Dec '04, 4:01am

There are no issues specificly with php 4.3.10 and vBullein, rather Zend Optimizer Php 4.3.10 and vBulletin, make sure to upgrade ZO to the latest version or leave it out for the time being

**grbear** · Fri 17 Dec '04, 9:22am

According to this, we should be upgrading IMMEDIATELY. Specifically because they claim vBulletin is affected by this new exploit.

**Zachery** · Fri 17 Dec '04, 9:28am

its a php flaw, not vB, other software that makes use of the serilize function will be affected

**grbear** · Fri 17 Dec '04, 9:39am

Just for clarification, even though they expressly stated:

Examples of vulnerable scripts:

- vBulletin

Your saying the vB script is not affected by the exploitable flaw in PHP 4.3.9 and lower? If that's the case, someone should advise them so they can correct it.

**cirisme** · Fri 17 Dec '04, 9:45am

Originally posted by grbear

Just for clarification, even though they expressly stated:

Your saying the vB script is not affected by the exploitable flaw in PHP 4.3.9 and lower? If that's the case, someone should advise them so they can correct it.

It _is_ vulnerable, but it is PHP's fault, not vBulletin's.(supposedly)

Silly distinction especially when IPB and phpBB are vulnerable... but that's life.

An upgrade to PHP 4.3.10 is necessary. I just did it, and it's working well so far.

**Zachery** · Fri 17 Dec '04, 9:45am

Yes vB is affected but the bug is in php, not vBulletin.

**grbear** · Fri 17 Dec '04, 9:48am

Thank you Zachery.

I wasn't blaming vB, I was quite aware that it was a PHP problem, not vB.

I was refering to the post Floris made advising to hold off upgrading to the latest (4.3.10) PHP.

**Zachery** · Fri 17 Dec '04, 10:03am

The issue with it is the php accelerators that are not up to doate.

**Bulent Tekcan** · Fri 17 Dec '04, 12:08pm

is mmcache working with 4.3.10 anyone test it ?

Thanks

**tomdkat** · Fri 17 Dec '04, 12:55pm

Originally posted by Zachery

There are no issues specificly with php 4.3.10 and vBullein, rather Zend Optimizer Php 4.3.10 and vBulletin, make sure to upgrade ZO to the latest version or leave it out for the time being

Will the version of Zend that comes with the source distro of PHP be new enough?

Peace...

**ehsan** · Fri 17 Dec '04, 12:57pm

I just upgraded to 4.3.10 and also I was using Truck MMCache,
now vBulletin works perfects, and Truck MMCache needs a reinstall,
I had no kind of optimizers either.

**Bulent Tekcan** · Fri 17 Dec '04, 1:24pm

Yes 5 minutes ago upgrade too,working without any problem.

Cheers

**ehsan** · Sat 18 Dec '04, 4:22am

Originally posted by Bulent Tekcan

Yes 5 minutes ago upgrade too,working without any problem.

Cheers

did you install MMCache successfully?

Announcement

PHP 4.3.10 & 5.0.3 released!

PHP 4.3.10 & 5.0.3 released!

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment