DjiXas

Well-Known Member
Feb 10, 2007
294
0
166
The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.

Hopefully, this will get integrated into EA faster than 5.2.10.

Cheers.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Let's see if the PHP cowboys fixed the problems from 5.2.10...


The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.
 

m0rgulvale

Member
Sep 18, 2009
10
0
51
Let's see if the PHP cowboys fixed the problems from 5.2.10...


The PHP development team would like to announce the immediate availability of PHP 5.2.11. This release focuses on improving the stability of the PHP 5.2.x branch with over 75 bug fixes, some of which are security related. All users of PHP 5.2 are encouraged to upgrade to this release.

dear cpanel folks, please update to php 5.2.11 as there were security vulns in 5.2.10
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Anybody upgrade to 5.2.11 yet?

Anyone who upgraded via EA, did you have any problems? All feed back is appreciated. I'm scheduled to do it at the end of the week. Just wondering if there are any speed bumps. 5.2.10 was a bit of a pain.
 

mtindor

Well-Known Member
Sep 14, 2004
1,417
82
178
inside a catfish
cPanel Access Level
Root Administrator
Anyone who upgraded via EA, did you have any problems? All feed back is appreciated. I'm scheduled to do it at the end of the week. Just wondering if there are any speed bumps. 5.2.10 was a bit of a pain.
I"m running the latest release version, and my previous EA compile was with 5.2.10. yesterday I recompiled three machines to have PHP 5.2.11 and I had no problems.

mike
 

Reado

Well-Known Member
Sep 8, 2009
228
8
68
United Kingdom
cPanel Access Level
Root Administrator
I've had problems today with several scripts, mainly those that use the "file_get_contents" function where PHP is adding the header information into the output automatically, at random. Downgrading to PHP 5.2.10 resolves the problem immediately. So I won't be upgrading till this is sorted.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Thanks for sharing. Any others?

A 1000 Thanks for your input.

I always wait for 2 weeks after a new PHP build comes available. They always have problems and the patch it in a few days.
 

Infopro

Well-Known Member
May 20, 2003
17,090
518
613
Pennsylvania
cPanel Access Level
Root Administrator
Twitter
Anyone who upgraded via EA, did you have any problems? All feed back is appreciated. I'm scheduled to do it at the end of the week. Just wondering if there are any speed bumps. 5.2.10 was a bit of a pain.
No problems here, but I did get this message for some reason during rebuild.


!! [bad manual edit detected] profile item 'Cpanel::Easy::PHP5' has no specific version chosen, defaulting to '2_11'. !!
 

Reado

Well-Known Member
Sep 8, 2009
228
8
68
United Kingdom
cPanel Access Level
Root Administrator
I've already submitted a bug report to PHP.net since I've put together a standalone script which replicates the issue I'm having no problem, but only in PHP 5.2.11. The problem for me is this totally breaks any scripts that need to use file_get_contents() to fetch remote files several times in the same job. The files PHP is fetching, it's adding header information automatically to a few of those files - when I did my tests 80 images were fetched, but 12 were amended with header info, as follows:

-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_NYDTHH
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_nyNQFp
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_pfiKkt
-rw------- 1 nobody nobody 1778247 Sep 21 09:15 test_img_PfqLqg
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_PgNxEV
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_PN1hWM
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_PUeJ64
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_roULhb
-rw------- 1 nobody nobody 1778247 Sep 21 09:15 test_img_rUL5Gr
-rw------- 1 nobody nobody 1778247 Sep 21 09:15 test_img_rWDMZO
-rw------- 1 nobody nobody 1777966 Sep 21 09:15 test_img_t7eCOU

Notice the files sizes differ. The files that are slightly bigger contain header info. The next stage in the process is to use imagecreatefrompng() as the files are all PNG files, thus the size, but this is failing with the reason "file is not a valid PNG".

If anyone has any scripts that utilise this function in this way, I would strongly recommend not installing PHP 5.2.11 till the problem has been fixed. This does not occur with PHP 5.2.10.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Pretty messed up bug...

I would say that this is a pretty significant error. About 20% of my scripts use that function to some degree. I'll have to hold off.

Guess the PCI compliance guys are not going to be happy with. I wonder if it will take the PHP dev. team another 3 months to fix it, just like 5.2.10 bugs took that long.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Reado where did your PHP Bug ticket go?

Hey Reado,

I was following your ticket on PHP bugs, but it disappeared. Did you figure it out?
 

Reado

Well-Known Member
Sep 8, 2009
228
8
68
United Kingdom
cPanel Access Level
Root Administrator
I have a ticket with cPanel which has gone as far as development and it's thought it could be down to the server kernel as the cause of the issue, but at the same time it's only since 5.2.11. Previous PHP versions don't cause any issues.

So all I can say at this time is proceed with caution. Also if you're running a Xen kernel as I am (which may be the cause - not sure yet), test the new PHP version by installing on to a dev/test server if you have one available. Luckily I do, but I went ahead and installed 5.2.11 on the live server too, which broke straight away, so now both my servers are back on 5.2.10.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
Thanks.

Thanks for the update. Sorry to hear that dude... Good Luck.

Not running Xen, so I'll give it a try.

I don't have access to a test server. So I'll keep my fingers crossed. For both of us.
 

Reado

Well-Known Member
Sep 8, 2009
228
8
68
United Kingdom
cPanel Access Level
Root Administrator
Check this bug report: PHP Bugs: #49611: file_get_contents() automatically including headers in output

Been trying to track down this issue with one of the cPanel devs and we think it may well be a bug in PHP 5.2.11 after all! So if anyone is yet to upgrade, I'd wait if I were you to see what happens next. JD is verifying whether the code change he's made will resolve the issue, but if it does cPanel will release a patch for 5.2.11 in EasyApache.

If you've already upgraded, don't worry. I did the same a week ago and it broke all my code that utilises the file_get_contents() function (in particular DOMPDF). However I downgraded to 5.2.10 via EasyApache without any problems and everything worked as expected afterwards.
 

pjman

Well-Known Member
Mar 22, 2003
101
0
166
New York
It looks like they created a patch?

It looks like CPanel already created a patch from the PHP ticket. Can anyone verify the patch is in place via EA?