Posted by & filed under PHP.

On February 18th 2015, the PHP group released PHP 5.4.38.

Seven security-related bugs were fixed in this release, including CVE-2015-0273 and mitigation for CVE-2015-0235. All PHP 5.4 users are encouraged to upgrade to this version.

The corresponding packages are now available on Dotdeb :

  • for Debian 7 “Wheezy” and Debian 6 “Squeeze”,
  • on both amd64 and i386 architectures.

The following modules have been packaged too :

  • APC 3.1.13
  • apcu 4.0.7
  • ffmpeg 0.6.0 (Squeeze only)
  • gearman 0.8.3
  • geoip 1.0.8
  • imagick 3.1.2
  • memcache 3.0.8
  • memcached 2.2.0
  • mongo 1.6.3
  • pecl_http 1.7.6
  • pinba (master)
  • redis 2.2.5
  • spplus 1.1
  • ssh2 0.12
  • xcache 3.2.0
  • xdebug 2.3.1
  • xhprof 0.9.4
  • zendopcache 7.0.4

As usual, please read the ChangeLog before upgrading and be sure to use to the latest packages before reporting any issue.

3 Responses to “PHP 5.4.38, for Wheezy and Squeeze”

  1. Justin L. Franks

    I’m getting some dependency issues when attempting to install this update with the php5-apc, php5-imagick, and php5-memcached packages. They are all looking for PHP 5.4.38-1~dotdeb.1 (the previous version), not the new 5.4.39.

  2. Guillaume Plessis

    @Justin L. Franks : Packages of PHP 5.4.39 have not been published yet. You’ll have to wait a few more hours. Thanks for your patience.

  3. Justin L. Franks

    Thanks Guillaume, all is working now. FYI, the 5.4.39 packages popped up a day or two ago, but I guess not all of the extra module packages were ready.