PHP Version 5.4

Written by Christi Nickerson

We are pleased to announce the deployment of PHP 5.4 on our newest servers. While the default PHP version will still be 5.3 on these servers, customers will have the option to switch to between three versions of PHP: 5.2, 5.3, or 5.4. For step-by-step instructions on how to change your PHP version through cPanel, please see our tutorial How to Switch Between PHP Versions.

If you are currently on a server that does not support newer versions of PHP but would like to use either PHP 5.3 or 5.4, please submit a request to our Support Department to request an account move to a server that supports PHP 5.3 and 5.4. Please make sure you include the cPanel user name or main domain name on the account along with account verification (either your AMP password or last 4 digits of the credit card on file).

Did you find this article helpful?
Floryn 2012-05-23 11:48 am
there is a big security risk available in php v.5.4.0, I highly suggest the host to upgrade immediately to v.5.4.3

And for people not able to update/apply a patch, this mod_rewrite condition and
rule should take care of it for Apache users:

[code]RewriteCond %{QUERY_STRING} ^(%2d|-)[^=]+$ [NC]
RewriteRule ^(.*) ? [L][/code]
Hello Floryn,

Thank you for your comment. If you could, would you mind providing a link so we can have it here for both us and others to check out that information? That would be great!

Thank you for the additional information!
- Scott M
Floryn 2012-05-23 1:07 pm
[08-May-2012] The PHP development team would like to announce the immediate availability of PHP 5.4.3 and PHP 5.3.13. All users are encouraged to upgrade to PHP 5.4.3 or PHP 5.3.13

The releases complete a fix for a <a href='http://www.php.net/archive/2012.php#id2012-05-03-1'>vulnerability</a> in CGI-based setups (CVE-2012-2311). Note: mod_php and php-fpm are not vulnerable to this attack.

PHP 5.4.3 fixes a buffer overflow vulnerability in the <a href='http://php.net/manual/function.apache-request-headers.php'>apache_request_headers()</a> (CVE-2012-2329). The PHP 5.3 series is not vulnerable to this issue.

For source downloads of PHP 5.4.3 and PHP 5.3.13 please visit our <a href='http://www.php.net/downloads.php'>downloads page</a>, Windows binaries can be found on <a href='http://windows.php.net/download/'>windows.php.net/download/</a>. The list of changes are recorded in the <a href='http://www.php.net/ChangeLog-5.php'>ChangeLog</a>.

<a href='http://www.php.net/archive/2012.php#id2012-05-08-1'>Published on 08-May-2012 in PHP News.</a>

Login to comment.

Support Center Login

Your Opinion Matters

... but we need to know what you're thinking!

I'm Christi Nickerson, your friendly Community Support technician, and I wrote the article you're looking at now. I like to think it's perfect, but I'm sure you have some suggestions. Please, let me know what they are!

Feedback
Your Email Address
Because we'd like to talk with you!

Have a Question?

If you need some help, submit your question to our Community! We guarantee a response within 60 minutes (8am - 9pm EST, Monday - Friday)

Recent Questions

  1. Email from unknown party re domain transfer
  2. how to make new website with single account.
  3. Internal Server Error

Support Center Search

Current Customers

Email: support@WebHostingHub.com Ticket: Submit a Support Ticket
Call: 877-595-4HUB (4482)
757-416-6627 (Intl.) 		Chat: Click To Chat Now

Ask the Community

Get help with your questions from our community of like-minded hosting users and Web Hosting Hub Staff.

Not a Customer?

Get web hosting from a company that is here to help.