codedifferent.com » MySQL http://www.codedifferent.com mobile | mac | business | development blog Wed, 21 Jul 2010 13:13:54 +0000 en hourly 1 http://wordpress.org/?v=3.0.1 Security-update WordPress 2.6.2 released today to fix the php mt_rand() security issue http://www.codedifferent.com/2008/09/09/security-update-wordpress-262-released-today-to-fix-the-php-mt_rand-security-issue/ http://www.codedifferent.com/2008/09/09/security-update-wordpress-262-released-today-to-fix-the-php-mt_rand-security-issue/#comments Tue, 09 Sep 2008 09:15:23 +0000 Christian http://www.codedifferent.com/?p=126 The development team of popular open-source blog-software Wordpress just released the security update 2.6.2. It is highly recommended to install the update to eliminate some security issues within the WordPress installation – especially for blogs with open registration.

The update fixes a security issue caused by the weak implementation of the php function mt_rand() in many popular php-distributions. The function is used for seeding the random number generator. It also addresses the security risk of MySQL and SQL column truncation vulnerabilities. Stefan Esser reported both security-issues which are probably relevant to a lot of other php-based open-source projects. Thanks, Stefan!

Beside the fix of security issues, the WordPress version 2.6.2 also implements some minor bugfixes. Therefor the upgrade to the newest version of WP is highly recommendet to everybody using WordPress.

Twitter Digg Facebook LinkedIn Google Bookmarks del.icio.us Technorati StumbleUpon MisterWong

]]> http://www.codedifferent.com/2008/09/09/security-update-wordpress-262-released-today-to-fix-the-php-mt_rand-security-issue/feed/ 0