php: hypertext preprocessor
php: hypertext preprocessor
downloads |
documentation |
faq |
getting help |
mailing lists |
reporting bugs |
php.net sites |
links |
conferences |
my php.net
search for
in the
function list
all php.net sites
this mirror only
online documentation
bug database
site news archive
all changelogs
just pear.php.net
just pecl.php.net
just talks.php.net
general mailing list
developer mailing list
documentation mailing list
what is php?
php
is a widely-used general-purpose scripting language that is
especially suited for web development and can be embedded into html.
if you are new to php and want to get some idea
of how it works, try the introductory tutorial.
after that, check out the online manual,
and the example archive sites and some of the other resources
available in the links section.
ever wondered how popular php is? see the
netcraft survey.
thanks to
easydns
directi
pair networks
ev1servers
server central
hosted solutions
spry vps hosting
ez systems / hit
osu open source lab
yahoo! inc.
binarysec
nexcess.net
related sites
apache
mysql
postgresql
zend technologies
community
linuxfund.org
ostg
syndication
you can grab our news as an rss feed via a daily dump in a file
named news.rss.
this mirror sponsored by:
stable releases
current php 5 stable: 5.2.5
historical php 4 stable: 4.4.7
upcoming events [add]
november
conferences
15. apachecon us 2007
21. forum php - paris
26. osdc 2007 conference - brisbane
26. ossummit asia 2007
30. php conference brasil 2007
user group events
15. tripug
15. oink-pug (cincinnati, ohio)
15. utah php users group meeting
15. legal presentation
17. kansas city
17. miami linux users group
17. twin cities php
17. los angeles lampsig
17. hagerstown, md, discussion group
20. madison php user's group
20. php brisbane meetup group
21. miami php user group
21. broward php usergroup
21. nashville php users group
21. chicago php user group brunch
24. sacramento php group
24. miami linux meetup
25. meeting lamp en caceres
26. long island php users group
27. new york
27. azphp
27. san antonio php meetup
27. malaysia php meetup
27. php usergroup karlsruhe
27. phpug wuerzburg
28. irish php users group meeting
29. arabic php group meeting
29. malaysia php user group meet up
29. sandy php group
december
conferences
1. 1st php developer's conference
1. php conference brasil 2007
user group events
2. php meeting online in china
2. meeting de lampistas en la paz
3. php meetup columbia md
4. sw florida linux users group
4. pdxphp monthly meeting
4. providence php meetup
5. meeting php usergroup owl
5. bostonphp
5. berlin php usergroup meeting
6. sdphp (san diego, ca)
6. hannover
6. meetup day
6. omaha php users group meetup
6. php london
6. the houston php users group
6. boston php meetup
6. atlanta php user group
6. manchester uk - php group
6. edpug - edinburgh php user group
6. sydney php group meetings
6. php ug meetup auckland
6. cape town php users group
6. jacksonville user group
6. seattle php meetup group
6. the copenhagen php meetup group
6. west suburban chicago php meetup
6. charleston, sc developer meeting
6. israeli php user group
7. köln/bonn
7. iran php developer's meetup
7. programadores php de barcelona
8. php user group nanaimo, bc/ca
8. pea meeting from phpchina
11. hamburg
11. dallas php/mysql users group
11. dallas php users group (dpug)
11. austin php meetup
11. okc php meetup
11. seattle php users group
12. wash dc php developers group
12. stuttgart
13. meeting usergroup dortmund
13. php usergroup frankfurt/main
13. melbourne php user group
15. kansas city
15. miami linux users group
15. twin cities php
15. los angeles lampsig
18. madison php user's group
18. php brisbane meetup group
19. miami php user group
19. broward php usergroup
19. nashville php users group
19. chicago php user group brunch
20. tripug
20. oink-pug (cincinnati, ohio)
20. utah php users group meeting
22. sacramento php group
25. new york
25. azphp
25. san antonio php meetup
25. malaysia php meetup
25. php usergroup karlsruhe
25. phpug wuerzburg
26. irish php users group meeting
27. arabic php group meeting
27. malaysia php user group meet up
27. sandy php group
29. miami linux meetup
31. long island php users group
training
1. php & ajax -construindo websites
1. treinamento php em são paulo
2. ahmedabad php group training
3. mysql spain
3. curso php madrid
3. php e-learning/germany
3. curso on-line actionscript / php
3. php & mysql training in kassel
3. php & mysql com dreamweaver mx
3. curso on-line de php
3. php & mysql-construindo websites
4. curso on-line de php-mysql
4. php class at caltek
5. php training - chennai - india
5. symfony training (in french)
6. curso de php avanzado en bilbao
7. php5-certification training
10. php para expertos curso on-line
10. curso php y mysql
10. introductory php training
11. php web sites optimization
12. php/mysql training san francisco
12. learning to program with php
12. php training in san francisco,ca
17. php & mysql training / gießen
17. formation php expert certifie
17. developing websites with php tra
17. developing websites with php
18. cursos de php en bilbao
20. chennai php training
24. php intro course south africa
25. uk php training
27. php brasil - training
27. building social networking appli
31. basic php course
upcoming conferences:
php conference brasil 2007
forum php paris 2007
php 5.2.5 released
[08-nov-2007]
the php development team would like to announce the immediate availability of php 5.2.5. this release focuses on improving the stability of the php 5.2.x branch with over 60 bug fixes, several of which are security related. all users of php are encouraged to upgrade to this release.
further details about the php 5.2.5 release can be found in the release announcement for 5.2.5, the full list of changes is available in the changelog for php 5.
security enhancements and fixes in php 5.2.5:
fixed dl() to only accept filenames. reported by laurent gaffie.
fixed dl() to limit argument size to maxpathlen (cve-2007-4887). reported by laurent gaffie.
fixed htmlentities/htmlspecialchars not to accept partial multibyte sequences. reported by rasmus lerdorf
fixed possible triggering of buffer overflows inside glibc implementations of the fnmatch(), setlocale() and glob() functions. reported by laurent gaffie.
fixed "mail.force_extra_parameters" php.ini directive not to be modifiable in .htaccess due to the security implications. reported by securityreason.
fixed bug #42869 (automatic session id insertion adds sessions id to non-local forms).
fixed bug #41561 (values set with php_admin_* in httpd.conf can be overwritten with ini_set()).
for users upgrading to php 5.2 from php 5.0 and php 5.1, an upgrade guide is available here, detailing the changes between those releases and php 5.2.5.
the new documentation build system is ready for testing
[03-oct-2007]
the php documentation team is pleased to announce the initial release of
the new build system that generates the php manual. written in php, phd
([ph]p based [d]ocbook renderer) builds are now available for
viewing at docs.php.net. everyone is
encouraged to test and use this system so
that bugs will be found and squashed.
once the new build system is stable, expect additional changes to the php
manual that will include an improved navigation system and styling for oop
documentation.
feel free to set this developmental mirror as your default by
using my.php.
php 5.2.4 released
[30-aug-2007]
the php development team would like to announce the immediate
availability of php 5.2.4.
this release focuses on improving the stability of the php 5.2.x
branch with over 120 various bug fixes in addition to resolving
several low priority security bugs. all users of php are encouraged
to upgrade to this release.
further details about the php 5.2.4 release can be found in the
release announcement for 5.2.4, the full list of
changes is available in the changelog for php 5.
security enhancements and fixes in php 5.2.4:
fixed a floating point exception inside wordwrap() (reported by mattias bengtsson)
fixed several integer overflows inside the gd extension (reported by mattias bengtsson)
fixed size calculation in chunk_split() (reported by gerhard wagner)
fixed integer overflow in str[c]spn(). (reported by mattias bengtsson)
fixed money_format() not to accept multiple %i or %n tokens. (reported by stanislav malyshev)
fixed zend_alter_ini_entry() memory_limit interruption vulnerability. (reported by stefan esser)
fixed infile local option handling with mysql extensions not to be allowed when open_basedir or safe_mode is active. (reported by mattias bengtsson)
fixed session.save_path and error_log values to be checked against open_basedir and safe_mode (cve-2007-3378) (reported by maksymilian arciemowicz)
fixed a possible invalid read in glob() win32 implementation (cve-2007-3806) (reported by shinnai)
fixed a possible buffer overflow in php_openssl_make_req (reported by zatanzlatan at hotbrev dot com)
fixed an open_basedir bypass inside glob() function (reported by dr at peytz dot dk)
fixed a possible open_basedir bypass inside session extension when the session file is a symlink (reported by c dot i dot morris at durham dot ac dot uk)
improved fix for mopb-03-2007.
corrected fix for cve-2007-2872.
for users upgrading to php 5.2 from php 5.0 and php 5.1, an upgrade guide is
available here, detailing the changes between
those releases and php 5.2.4.
php 4 end of life announcement
[13-jul-2007]
today it is exactly three years ago since php 5 has been released. in
those three years it has seen many improvements over php 4. php 5 is
fast, stable & production-ready and as php 6 is on the way, php 4
will be discontinued.
the php development team hereby announces that support for php 4 will
continue until the end of this year only. after 2007-12-31 there will be no
more releases of php 4.4. we will continue to make critical security fixes
available on a case-by-case basis until 2008-08-08. please use the rest of
this year to make your application suitable to run on php 5.
for documentation on migration for php 4 to php 5, we would like to point you
to our migration guide. there is
additional information available in the php 5.0 to php 5.1 and php 5.1 to php 5.2 migration guides as
well.
php 5.2.3 released
[31-may-2007]
the php development team would like to announce the immediate availability of php 5.2.3.
this release continues to improve the security and the stability of
the 5.x branch as well as addressing two regressions introduced
by the previous 5.2 releases. these regressions relate to the timeout
handling over non-blocking ssl connections and the lack of
http_raw_post_data in certain conditions. all users are encouraged to
upgrade to this release.
further details about the php 5.2.3 release can be found in the
release announcement for 5.2.3, the full list of
changes is available in the changelog for php 5.
security enhancements and fixes in php 5.2.3:
fixed an integer overflow inside chunk_split() (by gerhard wagner, cve-2007-2872)
fixed possible infinite loop in imagecreatefrompng. (by xavier roche, cve-2007-2756)
fixed ext/filter email validation vulnerability (mopb-45 by stefan esser, cve-2007-1900)
fixed bug #41492 (open_basedir/safe_mode bypass inside realpath()) (by bugs dot php dot net at chsc dot dk)
improved fix for cve-2007-1887 to work with non-bundled sqlite2 lib.
added mysql_set_charset() to allow runtime altering of connection encoding.
for users upgrading to php 5.2 from php 5.0 and php 5.1, an upgrade guide is
available here, detailing the changes between
those releases and php 5.2.3.
php 5.2.2 and php 4.4.7 released
[02-may-2007]
the php development team would like to announce the immediate
availability of php 5.2.2 and
availability of php 4.4.7.
these releases are major stability and security enhancements of the 5.x and
4.4.x branches, and all users are strongly encouraged to upgrade to it as
soon as possible. further details about the php 5.2.2 release can be found
in the release announcement for 5.2.2,
the full list of changes is available in the
changelog for php 5. details about
the php 4.4.7 release can be found in the
release announcement for 4.4.7, the full
list of changes is available in the
changelog for php 4.
security enhancements and fixes in php 5.2.2 and php 4.4.7:
fixed cve-2007-1001, gd wbmp used with invalid image size (by ivan fratric)
fixed asciiz byte truncation inside mail() (mopb-33 by stefan esser)
fixed a bug in mb_parse_str() that can be used to activate register_globals (mopb-26 by stefan esser)
fixed unallocated memory access/double free in in array_user_key_compare() (mopb-24 by stefan esser)
fixed a double free inside session_regenerate_id() (mopb-22 by stefan esser)
added missing open_basedir & safe_mode checks to zip:// and bzip:// wrappers. (mopb-21 by stefan esser).
fixed crlf injection inside ftp_putcmd(). (by loveshell[at]bug.center.team)
fixed a remotely trigger-able buffer overflow inside bundled libxmlrpc library. (by stanislav malyshev)
security enhancements and fixes in php 5.2.2 only:
fixed a header injection via subject and to parameters to the mail() function (mopb-34 by stefan esser)
fixed wrong length calculation in unserialize s type (mopb-29 by stefan esser)
fixed substr_compare and substr_count information leak (mopb-14 by stefan esser) (stas, ilia)
fixed a remotely trigger-able buffer overflow inside make_http_soap_request(). (by ilia alshanetsky)
fixed a buffer overflow inside user_filter_factory_create(). (by ilia alshanetsky)
fixed a possible super-global overwrite inside import_request_variables(). (by stefano di paola, stefan esser)
limit nesting level of input variables with max_input_nesting_level as fix for (mopb-03 by stefan esser)
security enhancements and fixes in php 4.4.7 only:
xss in phpinfo() (mopb-8 by stefan esser)
while majority of the issues outlined above are local, in some
circumstances given specific code paths they can be triggered externally.
therefor, we strongly recommend that if you use code utilizing the
functions and extensions identified as having had vulnerabilities in them,
you consider upgrading your php.
for users upgrading to php 5.2 from php 5.0 and php 5.1, an upgrade guide is
available here, detailing the changes between
those releases and php 5.2.2.
update: may 4th; the php 4.4.7 windows build was updated due to the faulty apache2 module shipped with the original
update: may 23th; by accident a couple of fixes where listed as fixed in both php 5.2.2 and 4.4.7 but where however only fixed in php 5.2.2. the php 4 changelog was not affected.
the php.net google summer of code
[13-apr-2007]
the php team is once again proud to participate in the
google summer of code.
seven students will "flip bits instead of burgers" this summer:
mentored by michael wallner, hannes magnusson will work on
livedocs, which is a
"tool to display docbook xml files in a web browser on the
fly, without the need of building all html target files first".
this project will be of great value to the php documentation team.
the php interpreter uses reference counting to keep track of which
objects are no longer referenced and thus can be destroyed. a major
weakness in the current implementation is that it cannot detect
reference cycles, that is objects that reference each other in a
circular graph structure which is not referenced itself from outside
the circle. mentored by derick rethans, david wang will implement a
new reference counting algorithm that will alleviate this problem.
xdebug provides a range of useful
functionality for php developers, including detailed error information,
code coverage and profiling support, and support for remote debugging
using the gdb and dbgp protocols. mentored by xdebug's creator,
derick rethans, adam harvey will develop a cross-platform gui
application that implements the dbgp protocol and allows php
applications to be debugged using xdebug in a development environment
agnostic fashion.
mentored by lukas smith, konsta vesterinen will work on the
object-relational mapper doctrine.
mutation testing, or automated error seeding, is an approach where
the testing tool makes some change to the tested code, runs the tests,
and if the tests pass displays a message saying what it changed. this
approach is different than code coverage analysis, because it can find
code that is executed by the running of tests but not actually tested.
mentored by sebastian bergmann, mike lewis will implement mutation
testing for phpunit.
mentored by helgi Þormar Þorbjörnsson, igor feghali will add support
for foreign keys to
mdb2_schema,
a package that "enables users to maintain rdbms independant schema
files in xml that can be used to create, alter and drop database
entities and insert data into a database".
mentored by david coallier, nicolas bérard-nault will refactor the
internals of jaws, a
framework and content management system for building dynamic web sites,
for php 6.
php 4.4.6 released
[28-feb-2007]
the php development team would like to announce the immediate
availability of php 4.4.6.
the main issue that this release addresses is a crash problem that was
introduced in php 4.4.5. the problem occurs when session variables are used
while register_globals is enabled.
details about the php 4.4.6 release can be found in the
release announcement for 4.4.6,
the full list of changes is available in the
changelog for php 4.
php 5.2.1 and php 4.4.5 released
[07-feb-2007]
the php development team would like to announce the immediate
availability of php 5.2.1 and
availability of php 4.4.5.
these releases are major stability and security enhancements of the 5.x and
4.4.x branches, and all users are strongly encouraged to upgrade to it as
soon as possible. further details about the php 5.2.1 release can be found in
the release announcement for 5.2.1, the full list of
changes is available in the changelog for php
5. details about the php 4.4.5 release can be found in the
release announcement for 4.4.5, the full list of
changes is available in the changelog for php 4.
security enhancements and fixes in php 5.2.1 and php 4.4.5:
fixed possible safe_mode & open_basedir bypasses inside the session extension.
fixed unserialize() abuse on 64 bit systems with certain input strings.
fixed possible overflows and stack corruptions in the session extension.
fixed an underflow inside the internal sapi_header_op() function.
fixed non-validated resource destruction inside the shmop extension.
fixed a possible overflow in the str_replace() function.
fixed possible clobbering of super-globals in several code paths.
fixed a possible information disclosure inside the wddx extension.
fixed a possible string format vulnerability in *print() functions on 64 bit systems.
fixed a possible buffer overflow inside ibase_{delete,add,modify}_user() functions.
fixed a string format vulnerability inside the odbc_result_all() function.
security enhancements and fixes in php 5.2.1 only:
prevent search engines from indexing the phpinfo() page.
fixed a number of input processing bugs inside the filter extension.
fixed allocation bugs caused by attempts to allocate negative values in some code paths.
fixed possible stack/buffer overflows inside zip, imap & sqlite extensions.
fixed several possible buffer overflows inside the stream filters.
memory limit is now enabled by default.
added internal heap protection.
extended filter extension support for $_server in cgi and apache2 sapis.
security enhancements and fixes in php 4.4.5 only:
fixed possible overflows inside zip & imap extensions.
fixed a possible buffer overflow inside mail() function on windows.
unbundled the ovrimos extension.
the majority of the security vulnerabilities discovered and resolved can in
most cases be only abused by local users and cannot be triggered remotely.
however, some of the above issues can be triggered remotely in certain
situations, or exploited by malicious local users on shared hosting setups
utilizing php as an apache module. therefore, we strongly advise all users of
php, regardless of the version to upgrade to the 5.2.1 or 4.4.5 releases as soon as possible.
for users upgrading to php 5.2 from php 5.0 and php 5.1, an upgrade guide is
available here, detailing the changes between
those releases and php 5.2.1.
update: feb 14th; added release information for php
4.4.5.
update: feb 12th; the windows install package had problems
with upgrading from previous php versions. that has now been fixed and new file
posted in the download section.
the front page has changed
[07-feb-2007]
the news on the front page of php.net has changed, the conference announcements are now located on their own page.
the idea is to keep php.net specific news clear and also opens the door for additional news entries, like for rc releases. more changes are on the way so keep an eye out.
php manual updates
[02-feb-2007]
the php documentation team is proud to present to the php community a few fixes and tweaks to the php manual, including:
an improved, xsl-based build system that will deliver compiled manuals to mirrors in a more timely manner (goodbye dsssl)
manual pages can now contain images (see imagearc() for an example)
updated function version information and capture system (fewer "no version information, might be only in cvs" messages)
... and more to come!
please help us improve the documentation by submitting bug reports, and adding notes to undocumented functions.
news archive
rss | show source |
credits |
stats |
sitemap |
contact |
advertising |
mirror sites
copyright © 2001-2007 the php group
all rights reserved.
this mirror generously provided by:
rediris
last updated: thu nov 15 20:40:59 2007 cet
Acceuil
suivante
php: hypertext preprocessor SONY Support plafond pour vidéoprojecteur VPL-ES1/VPL-DS100/VPL ... Climatiseurs monobloc sans unité extérieure SONY LMP-E150 Lampe de rechange pour vidéo-projecteur VPL-ES2 ... pv M2 RECHERCHE - EPIDEMIOLOGIE.RTF PROCES-VERBAL DE MASTER M2 PHYSIQUE MEDICALE Spécialité ... ACCUEIL ES2 Blog de blondinette1212 - THE 1ere ES2 - Skyrock.com Video 1es2 - fin, d'année, lycée, morteau, es2 - Alice Video ... Sport24 - Auto/Moto : Grönholm résiste TYPE ES2 WRC - Monte-Carlo : Loeb après l'ES2 - ALI Live - Rallye de France - ES2 Belvedere - Bocca Albitrina - WRC ... Catherine.Goubert - première ES2 ESL option Classement après ES2 Blog de nobaces2 - ~ 1 ère Es2 2006-2007- TEs2 2007-2008 ... Blog de classees2 - première ES2 - Skyrock.com ES2 es2 Lisseur braun es2 : Forum auFeminin - 11 novembre Blog de tombeducamion - Le blog du délégué; Terminale ES2 en force ... Mathématiques 1ère ES2 lycée Evariste Galois Noisy le Grand Classe de Première ES2 ES2 - Braun - LISSEUR - Boostore.com VIDEO PROJECTEUR SONY VPL-ES2 - 550€ comme neuf +/- 150h hi fi ... int-es2.htm APA RAS-10GKHP-ES2 unité murale intérieure puissance 2,92 KW chaud et ... classes de Terminales ES2 / ES3 Créer des fichiers ES1 , ES2. avec smartnamer Anciens élèves Sony VPL-ES2 Vidéoprojecteur - caractéristiques techniques sur ... Documents pédagogiques collège-lycée international de Saint ... Documents pédagogiques collège-lycée international de Saint ... elections et personnes repr.sent.es2-info.qxd ES2 elektrische vloerverwarming Photo Printer Selphy Es2 300x600dpi 3.0in Lcd 2096B009 Atmel Es2 Boutique eBay - HANDESTORE: scale: The Original Electronic Kitchen ... Chaîne et accessoires, corde, sangle, chaîne, quincaillerie ... Blog de the-parti - the-parti - Skyrock.com Rubicon ES2 ~ Evolving Science. Evolving Solutions. EXCELLENCE équipe 2 Canon Selphy ES2 - Imprimante - Comparateur de prix MeilleursPrix.net SEPATON, Inc. - Products: S2100-ES2 9h37 ES2 Mouret: IMG_0662 NEWSLETTER 22 FR.pub Rundschlingen-Gehänge Jeux de levage en élingues L’album de Jean-Marie - Rallye Epernay Vin de Champagne 2007 Cinq imprimantes 10x15 pour des photos instantanées : Qualité d’image Canon launches Selphy ES2 and ES20: Digital Photography Review PLACEMENT ROUTAGE AUTOMATIQUE EHP : Dudley Dursley EHP : Citations par et à propos de la famille Dursley Barracuda ES.2 Archives photo et vidéo numérique, home cinéma, audio, mobilité ... ES5000 - HEWI InfoWare 5.1 CAT.INIST CAT.INIST SELPHY ES2 Top Page climshop.com : Climatiseur réversible Toshiba RAS-10 GKHP-ES2 et ...