Friday, February 3rd, 2012
A few hours ago, PHP 5.3.10 has been released by the PHP Group. It's an important security update for PHP 5.3.9 users : Stefan Esser discovered a remotely exploitable bug, introduced with PHP 5.3.9's max_input_vars directive (CVE-2012-0830). You really should upgrade as soon as possible.
Packages of PHP 5.3.10 are now available ...
Posted in PHP | 8 Comments »
Friday, January 13th, 2012
A few days ago, Percona has released a major version of their Percona toolkit (formerly named Maatkit), bringing a lot of improvements, especially on pt-table-checksum. Baron Schwartz wrote a post about it.
Percona toolkit 2.0.2 is now available on Dotdeb for :
both Debian 6.0 “Squeeze” and Debian 5.0 “Lenny”
both amd64 and i386 ...
Posted in MySQL | No Comments »
Friday, January 13th, 2012
Redis 2.4.6 has been released with these changes :
[BUGFIX] Fixed issue #141 part 1: Possible protocol desyncs when clients send wrong protocol is now fixed. (See issue 141 for more details)
[BUGFIX] Fixed issue #141 part 2: Connection of multiple slaves used to result from time to time into corrupted protocol ...
Posted in Redis | No Comments »
Thursday, January 12th, 2012
On january 10th 2012, the PHP group has released PHP 5.3.9, that brings over 90 bug fixes, some of which are security related :
Security Enhancements and Fixes in PHP 5.3.9:
Added max_input_vars directive to prevent attacks based on hash collisions. (CVE-2011-4885)
Fixed bug #60150 (Integer overflow during the parsing of invalid exif header). ...
Posted in PHP | 66 Comments »
Sunday, December 25th, 2011
Redis 2.4.5 has been released with these changes :
[BUGFIX] Fixed a ZUNIONSTORE/ZINTERSTORE bug that can cause a NaN to be inserted as a sorted set element score. This happens when one of the elements has +inf/-inf score and the weight used is 0.
[BUGFIX] Fixed memory leak in CLIENT INFO.
[BUGFIX] Fixed ...
Posted in Redis | No Comments »
Monday, December 19th, 2011
The packages of MySQL 5.5.19 are now available for Debian 6.0 "Squeeze" on both amd64 and i386 architectures. They fix some annoying issues that Dotdeb users kindly reported :
the mysql-common package, in its 5.5.19+ version, "breaks" mysql-server-5.1 and mysql-client-5.1 (as APT means it - it won't actually break your server into pieces). Freezing ...
Posted in MySQL | 38 Comments »
Monday, December 19th, 2011
Nginx 1.0.11 packages are now available :
for both Debian 6.0 "Squeeze" and 5.0 "Lenny"
for both amd64 and i386 architectures
Here are the changes on the Dotdeb side :
nginx-extras now includes the Push stream module, instead of the bogus HTTP Push. Please review your configuration.
nginx-extras now uses Passenger 3.0.11
Please take a look at Nginx' ...
Posted in Nginx, Passenger | 17 Comments »
Tuesday, November 29th, 2011
Redis 2.4.4 has been released with these changes :
[BUGFIX] jemalloc upgraded to version 2.2.5, previous versions had a potentially serious issue when allocating big memory areas, something that Redis actually does. However we never received bug reports that appear to be caused by jemalloc.
[BUGFIX] DISCARD now clears DIRTY_CAS flag in ...
Posted in Redis | No Comments »
Tuesday, November 22nd, 2011
Redis 2.4.3 has been released yesterday with these changes :
redis-cli now supports 'single quotes' style strings.
It is possible to disable password auth with CONFIG SET.
Some section of redis.conf better documented.
Default timeout for client connections now is 0 (no timeout).
I/O buffer length modified for better performances with big payloads.
Fixed crash on ...
Posted in Redis | No Comments »
Saturday, November 19th, 2011
MySQL 5.5.18 has been released by Oracle yesterday. The packages for Debian 6.0 "Squeeze" are now available on Dotdeb for both amd64 and i386 architectures.
As usual, please read the full Changelog carefully before upgrading.
Please also note that Oracle now provides .deb packages on their download page. That's a great thing, but ...
Posted in MySQL | 42 Comments »
