=====================================================================
                                   CERT-Renater

                        Note d'Information No. 2009/VULN528
_____________________________________________________________________

DATE                      : 11/12/2009

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Systems running PHPIDS versions prior to 0.6.3.1.

======================================================================
http://php-ids.org/2009/10/22/phpids-0-6-3-ready-to-go/
______________________________________________________________________

PHPIDS 0.6.3.1 ready to go
October 22nd, 2009 by .mario

Time to announce a new release of the PHPIDS. Upgrading is highly
recommended since this release features several security fixes against
not yet published but working attack patterns. Don’t miss the PHP specific
talks at this years POC in Korea in early November to learn more about.
Furthermore several bugs with the JSON mode were fixed thanks to the
reports and feedback of our forum users.

Also we improved the rules against new and quite exotic intrusion attempts
and managed to fix a lot of false alerts too. So all in all PHPIDS 0.6.3.1
is a highly recommended stability and security release. The converter is
now even better with obfuscated SQL injection attempts and we added more
possibilities to customize the logger usage.

We appreciate your feedback as usual – and hope you have fun with this
release. Thanks to all our forum users reporting bugs and requesting
improvements – as well as to our testers and constant contributors.
Now go ahead already and grab your copy from the download area.


Update:

We repackaged 0.6.3.1 to fix a packaging issue and removed 0.6.3 from
distribution. Sorry for the inconvenience.


======================================================================

          =========================================================
          Les serveurs de référence du CERT-Renater
          http://www.urec.fr/securite
          http://www.cru.fr/securite
          http://www.renater.fr
          =========================================================
          + CERT-RENATER          | tel : 01-53-94-20-44          +
          + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
          + 75013 Paris           | email: certsvp@renater.fr     +
          =========================================================