d77ea459 | 27-May-2014 |
Stanislav Malyshev |
Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS Upstream fix: https://github.com/file/file/commit/f97486ef5dc3e8735440edc4fc8808c63e1a3ef0 |
Revision tags: php-5.6.0beta2, php-5.5.12, php-5.4.28 |
|
44be7b7f | 24-Apr-2014 |
Anatol Belski |
backport this piece from 5.6, related to the #66307 fix Conflicts: ext/fileinfo/libmagic/readcdf.c |
0335d2ef | 24-Apr-2014 |
Anatol Belski |
Fixed bug #66307 Fileinfo crashes with powerpoint files Conflicts: ext/fileinfo/libmagic/readcdf.c ext/fileinfo/tests/finfo_file_002.phpt |
Revision tags: php-5.4.28RC1, php-5.5.12RC1, php-5.6.0beta1, php-5.4.27, php-5.5.11, php-5.5.11RC1, php-5.4.27RC1, php-5.5.10, php-5.4.26, php-5.6.0alpha3, php-5.4.26RC1, php-5.5.10RC1, php-5.6.0alpha2, php-5.5.9, php-5.4.25, php-5.5.9RC1, php-5.4.25RC1, php-5.6.0alpha1, php-5.5.8, php-5.4.24, php-5.4.24RC1, php-5.5.8RC1, php-5.5.7, php-5.4.23, php-5.3.28 |
|
a0bb3fd6 | 27-Nov-2013 |
Remi Collet |
Fixed bug #66060 (Heap buffer over-read in DateInterval) Conflicts: ext/date/lib/parse_iso_intervals.c |
eca037a5 | 08-Dec-2013 |
Stanislav Malyshev |
Fix bug #65873 - Integer overflow in exif_read_data() |
Revision tags: php-5.5.7RC1, php-5.4.23RC1, php-5.4.22, php-5.5.6, php-5.4.22RC1, php-5.5.6RC1, php-5.4.21, php-5.5.5, php-5.4.21RC1, php-5.5.5RC1, php-5.5.4, php-5.4.20, php-5.5.4RC1, php-5.4.20RC1, php-5.5.3, php-5.4.19, php-5.5.2, php-5.4.18, php-5.5.2RC1, php-5.4.18RC2, php-5.5.1, php-5.4.18RC1, php-5.3.27, php-5.4.17, php-5.5.0, php-5.3.27RC1, php-5.4.17RC1, php-5.5.0RC3, php-5.3.26, php-5.4.16, php-5.5.0RC2, php-5.3.26RC1, php-5.4.16RC1, php-5.5.0RC1, php-5.3.25, php-5.4.15, php-5.3.25RC1, php-5.5.0beta4, php-5.4.15RC1, php-5.4.14, php-5.3.24, php-5.5.0beta3, php-5.3.24RC1, php-5.4.14RC1, php-5.5.0beta2, php-5.5.0beta1, php-5.3.23, php-5.4.13, php-5.5.0alpha6, php-5.3.23RC1, php-5.4.13RC1, php-5.3.22, php-5.5.0alpha5, php-5.4.12, php-5.3.22RC2, php-5.4.12RC2, php-5.3.22RC1, php-5.4.12RC1, php-5.5.0alpha4, php-5.3.21, php-5.4.11, php-5.5.0alpha3, php-5.3.21RC1, php-5.4.11RC1, php-5.3.20, php-5.4.10, php-5.5.0alpha2, php-5.3.20RC1, php-5.4.10RC1 |
|
f3230e35 | 25-Nov-2012 |
Xinchen Hui |
let make test report the run-test result |
3c328f09 | 12-May-2014 |
Stanislav Malyshev |
Fix bug #67251 - date_parse_from_format out-of-bounds read Conflicts: ext/date/lib/parse_date.c ext/date/lib/parse_date.re |
d780c2a6 | 12-May-2014 |
Stanislav Malyshev |
Fix bug #67249: printf out-of-bounds read |
d400b742 | 10-Jun-2014 |
Sara Golemon |
Fix potential segfault in dns_get_record() If the remote sends us a packet with a malformed TXT record, we could end up trying to over-consume the packet and wander off into overruns. |
08334293 | 06-Jun-2014 |
Remi Collet |
Fix bug #67390 insecure temporary file use in the configure script |
adc070ca | 19-May-2014 |
Stanislav Malyshev |
fix typo in ODBC code |
8a22540a | 15-Apr-2014 |
Stanislav Malyshev |
Fix bug #67060: use default mode of 660 |
4b48b299 | 24-Jan-2014 |
Ferenc Kovacs |
fix the primary qa email address and update the list of available people being able to add moderators to our lists |
8aa93b7f | 19-Jan-2014 |
Will Fitch |
Revert "Fix #62479: Some chars not parsed in passwords" This reverts commit e6bb90c66a5306f3db7ca38206b27685177a65cc. |
e6bb90c6 | 19-Jan-2014 |
Will Fitch |
Fix #62479: Some chars not parsed in passwords This fixes an issue where backslashes and spaces aren't correctly parsed for passwords. |
3eb2b1ac | 13-Dec-2013 |
Julien Pauli |
Updated release process |
6f739318 | 11-Dec-2013 |
Anatol Belski |
fix dir separator in cve-2013-6420 test |
8650bbc8 | 10-Dec-2013 |
Stanislav Malyshev |
5.3.29-dev |
c1224573 | 08-Dec-2013 |
Stanislav Malyshev |
Fix CVE-2013-6420 - memory corruption in openssl_x509_parse |
c1c49d6e | 19-Aug-2013 |
Stanislav Malyshev |
fix using wrong buffer pointer |
dcea4ec6 | 14-Aug-2013 |
Stanislav Malyshev |
Fix CVE-2013-4073 - handling of certs with null bytes |
9c4ef501 | 10-Jul-2013 |
Johannes Schlüter |
Merge PHP 5.3.27 NEWS |
710eee55 | 10-Jul-2013 |
Johannes Schlüter |
add test for bug #65236 |
7d163e8a | 06-Jul-2013 |
Rob Richards |
truncate results at depth of 255 to prevent corruption |
e964817b | 03-Jul-2013 |
Nuno Lopes |
fix assembly of safe_address() for x86 and x86_64 |