Your one-stop shop for latest in news of interest to geeks...
http://www.washingtonpost.com/ac2/wp-dyn/A21958-2002Jul3?language=printer
4.2.0 and 4.2.1 are vulnerable..
got to http://www.php.net/