Changes

From SME Server
Jump to navigationJump to search
505 bytes removed ,  13:59, 4 January 2014
Line 5: Line 5:     
=='''Warning'''==
 
=='''Warning'''==
{{warning box|msg=Actual versions of owncloud show an security-related warning on SME 8.x like:
+
{{Note box|msg=The CVE-2006-7243 has been corrected in SME 8 with the package php-5.3.3-14.el5.sme (or for centos release php53-5.3.3-22.el5_10). Please see the bug [[bugzilla : 7613]] if you need more informations}}
 
  −
Your PHP version is vulnerable to the NULL Byte attack (CVE-2006-7243)
  −
Please update your PHP installation to use ownCloud securely.
  −
 
  −
This is because SME8.x ships with PHP version 5.3.3 where Owncloud 5.x checks for PHP version 5.3.4
  −
The CVE has been corrected in SME 8 with php53-5.3.3-22.el5_10.
  −
 
  −
 
  −
see [[bugzilla:7613]] and most particularly [http://bugs.contribs.org/show_bug.cgi?id=7613#c3 bugzilla:7613#c3] and [http://bugs.contribs.org/show_bug.cgi?id=7613#c8 this one] for a workaround. An alternative method is mentioned in the forums [http://forums.contribs.org/index.php/topic,50335.msg252984.html#msg252984 here].
      
{{Note box|Currently ownCloud 6 is available. Do not try to install/upgrade to version 6 on SME8/9 for ownCloud 6 requires PHP 5.3.8}}
 
{{Note box|Currently ownCloud 6 is available. Do not try to install/upgrade to version 6 on SME8/9 for ownCloud 6 requires PHP 5.3.8}}

Navigation menu