Version 5.3.8 of PHP was recently released, patching two vulnerabilities that were introduced in version 5.3.7.

"PHP 5.3.7, which was released by The PHP Group on Aug.18, contained a serious error in the way that it handled certain inputs to the crypt() function," writes Threatpost's Dennis Fisher.

"On Tuesday the group released a new version of the language, PHP 5.3.8, which fixes the crypt() problem and also rolls back a function introduced in 5.3.7 that was causing some SSL sessions to hang," Fisher writes. "The PHP Group recommended that all users upgrade to 5.3.8 as soon as possible, as the older 5.2 chain is no longer supported."

Go to "PHP 5.3.8 Released, Fixes Crypto Bug" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.