Archive for June 16th, 2006
PHP Developer - June 16th, 2006
Scott Mattocks has contributed information about the latest PHP-GTK News, issue #17:
Sorry for the delay. The news this week is short but rich. We only have a list of patches and documenation updates but the list for both is pretty long.
Included in the lists this time are updates to the GtkAboutDialog::set_email_hook(), GtkContainer::set_focus_chain(), and GtkTreeSortable::set_default_sort_func() functions as well as the documentation on GtkIconView, GtkStatusbar, GtkToolTips, and GtkRadioToolButton.
For details on each of those above (and many others), check out the full story where each is linked to its updates.
Continue Reading ·
PHP Developer - June 16th, 2006
Lukas Smith has a quick post today about some of the tension that’s come up between to PEAR error handling packages and something he’s created to try to help calm things down.
Well there is a lot of back and forth about if PEAR should mandate PEAR_Error or PEAR_Exceptions or neither for new packages. This also relates to the question of PHP5 E_STRICT compliance which PEAR_Error obviously is not.
His quick fix for the problem? Two proxy classes that would make switching between either of the two error handling classes as simple as changing out which proxy you’re using.
Continue Reading ·
PHP Developer - June 16th, 2006
PHP Magazine has posted their latest weekly roundup for all things happening in the PHP community. This roundup covers June 12th through June 16th.
Some of the topics touched on this week include:
- the “Five Best Next Generation PHP Frameworks” article
- “The Evolution of PHP on the Internet” - Nexen.net’s latest stats
- comparing mod_php and FastCGI
- the announcement of “Baking Day” from the CakePHP group
- and several of the new PEAR/PECL/Zend Framework updates from the week
Of course, this list only touches briefly on all of the happenings this week, so check out the full list on their site.
Continue Reading ·
PHP Developer - June 16th, 2006
Lukas Smith has posted about the release of MDB2 2.1.0, the latest version of his blend of the PEAR MDB2 package and the PEAR DB package.
I decided to go with a bump of the minor version for the next release of MDB2 because there are a number significant changes and additions. One of the big changes is dropping array_key_exists() whereever possible.
Aside from that the two main features are custom datatypes and query rewriting via the debugging infrastructure. The custom datatypes were already explained in a previous blog post, so I will not go into detail on them again here. However the debugging infrastructure is probably one of the things people were not aware of before. Now its obviously even more powerful.
He includes code to demonstrate the powerful debugger that’s been implemented. He also mentions two other people that have come on board to help with some of the development on the project - Justin working on the Oracle driver and Nathan on the SQL Server/PostgreSQL driver.
Continue Reading ·
PHP Developer - June 16th, 2006
In a new SUSE security announcement today, issues have been found with PHP4 and PHP5 bundled with serveral versions of their Linux operating system.
The four issues found are as follows:
- Invalid characters in session names were not blocked.
- CVE-2006-2657: A bug in zend_hash_del() allowed attackers to prevent unsetting of some variables.
- CVE-2006-1991, CVE-2006-1990: Bugs in the substr_compare() and wordwrap function could crash the php interpreter.
- CVE-2006-2906: A CPU consumption denial of service attack in php-gd was fixed.
These issues affect the foloowing versions of SUSE: 10.1, 10.0, 9.3, 9.2, 9.1, Enterprise Server 8, SLES 9, and UnitedLinux 1.0. They can all be used to execute any arbitrary code the user chooses to inject. The severity level is higher on this one, but not at a critical level. It’s still recommended, however, that you upgrade as soon as possible. Links to the various upgrade packages can be found here
Continue Reading ·