PHP 5.3.5 and 5.2.17 out for critical flaw fix
If you're running PHP on your webserver -- and you probably are - you really need to update, NOW.
According to commercial PHP vendor Zend, the flaw is related to how PHP handleS an internal
conversion of floating
point numbers. An attacker could potential insert a malicious string into a web browser query string, which could then take down a web server.