1<?php 2$_SERVER['BASE_PAGE'] = 'releases/4_4_4.php'; 3include_once __DIR__ . '/../include/prepend.inc'; 4site_header("PHP 4.4.4 Release Announcement"); 5?> 6 7<h1>PHP 4.4.4 Release Announcement</h1> 8<p> 9This release address a series of locally exploitable security problems 10discovered since PHP 4.4.3. All PHP users are encouraged to upgrade to this 11release as soon as possible. 12</p> 13 14<p> 15This release provides the following security fixes: 16<ul> 17 <li>Added missing safe_mode/open_basedir checks inside the error_log(), file_exists(), imap_open() and imap_reopen() functions.</li> 18 <li>Fixed overflows inside str_repeat() and wordwrap() functions on 64bit systems.</li> 19 <li>Fixed possible open_basedir/safe_mode bypass in cURL extension.</li> 20 <li>Fixed overflow in GD extension on invalid GIF images.</li> 21 <li>Fixed a buffer overflow inside sscanf() function.</li> 22 <li>Fixed memory_limit restriction on 64 bit system.</li> 23</ul> 24</p> 25 26<p> 27In addition to the security fixes, both releases include a small number of non-security related bug fixes. 28</p> 29 30<p> 31 For a full list of changes in PHP 4.4.4, see the 32 <a href="/ChangeLog-4.php#4.4.4">ChangeLog</a>. 33</p> 34 35<?php site_footer(); ?> 36
