PEAR dep 1.5.4

Discussion:

PEAR dep 1.5.4

Igor Feghali

2009-01-24 13:06:52 UTC

Hello,

I noted that many packages requires PEAR older than 1.5.4. Given that
those versions contains a security invulnerability [1], I would like
to suggest that every package should be updated to depend on versions

= PEAR 1.5.4.

Regards,
Igor Feghali.

[1] http://pear.php.net/advisory-20070507.txt

--
PEAR QA Mailing List (http://pear.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Daniel O'Connor

2010-02-08 08:29:55 UTC

Permalink

Post by Igor Feghali
Hello,
I noted that many packages requires PEAR older than 1.5.4. Given that
those versions contains a security invulnerability [1], I would like
to suggest that every package should be updated to depend on versions

= PEAR 1.5.4.

I don't suppose anyone has any access to stats on packages with low
dependencies, or the amount of users still connecting to us < 1.5.4

1 Reply
1 View
Permalink to this page
Disable enhanced parsing

Thread Navigation

Igor Feghali 2009-01-24 13:06:52 UTC

Daniel O'Connor 2010-02-08 08:29:55 UTC

about - legalese