Apache Friends Support Forum


https://community.apachefriends.org/f/

CVE-2022-31625

https://community.apachefriends.org/f/viewtopic.php?f=16&t=82122

Page 1 of 1

CVE-2022-31625

PostPosted: 29. June 2022 14:48
by mrjsandberg
Hello,

This vulnerability was discovered not long ago (https://nvd.nist.gov/vuln/detail/CVE-2022-31625)

I just installed XAMPP 8.1.6 and I wonder if anyone know if and when there will be a XAMPP version with PHP 8.1.7 released?

Otherwise, do anyone know how to properly install the PHP 8.1.7 version manually?

BR Johan

Re: CVE-2022-31625

PostPosted: 29. June 2022 17:30
by Altrea
Hi,

mrjsandberg wrote:I just installed XAMPP 8.1.6 and I wonder if anyone know if and when there will be a XAMPP version with PHP 8.1.7 released?

It's done when it's done. Bitnami does not publish any release schedule for XAMPP.

mrjsandberg wrote:Otherwise, do anyone know how to properly install the PHP 8.1.7 version manually?

Download the correct PHP binary (zip x64 TS), replace the current xampp php folder and restore the php.ini.

Re: CVE-2022-31625

PostPosted: 29. June 2022 21:05
by Froosh
Would anyone be able to clarify this for me, as XAMPP sites are not internet facing. So, I would assume that vulnerabilities in PHP and such are not as much of a concern. My thinking is that this would be more of a concern for something like a public facing WordPress site, correct?
All times are UTC + 1 hour
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/