How to install the PHP 5.4 patch for the PHP Multipart/form-data remote dos BUG

[ufish]

Hi,

PHP 5.4.40 has a really big bug of Multipart/form-data remote dos Vulnerability.
https://bugs.php.net/bug.php?id=69364
Please teach me how to fix the bug with the PHP patch, I can download the patch from the link above, but I don't know how to install it on the Kloxo-MR  6.5.0.f with Centos system.

Thanks very much.

[MRatWork]

Kloxo-MR using php branch from IUS repo. Usually they are always update their rpms.

So, just need 'yum clean all; yum update -y'.

[ufish]

Kloxo-MR using php branch from IUS repo. Usually they are always update their rpms.

So, just need 'yum clean all; yum update -y'.

I have tried this yesterday, but still not work, nothing upgrade for the php. The new version PHP is 5.4.41 now.
Any way to manual install the PHP patch?

[MRatWork]

Wait 1-2 days because IUS still testing php 5.4.41.

[ufish]

Wait 1-2 days because IUS still testing php 5.4.41.

Thank you very much for the answer.
And how to confirm the IUS has done the test on php 5.4.41. Any website that they put this kind of message on it??

[MRatWork]

Try 'yum update php* -y' for php branch or 'sh /script/phpm-updater' for 'multiple php'.

[ufish]

Try 'yum update php* -y' for php branch or 'sh /script/phpm-updater' for 'multiple php'.

It can work now, thanks again.

[dacapel]

today i updated/upgraded with yum and it is the last version

PHP 5.4.41 (cli) (built: May 15 2015 09:22:50)
Copyright (c) 1997-2014 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2014 Zend Technologies
    with the ionCube PHP Loader v4.7.5, Copyright (c) 2002-2014, by ionCube Ltd.