| #
5c7f802e |
| 14-Aug-2016 |
Anatol Belski |
update NEWS
|
| #
9f1d962e |
| 14-Aug-2016 |
Jakub Zelenka |
Fixed bug #72787 (json_decode reads out of bounds)
|
| #
dfadc5a4 |
| 10-Aug-2016 |
Benedict Singer |
Bug 70195
Many FTP-S servers now require FTP clients to re-use the SSL session
from the control connection on the data connection, to prove that the
same entity controls both connect
Bug 70195
Many FTP-S servers now require FTP clients to re-use the SSL session
from the control connection on the data connection, to prove that the
same entity controls both connections. This patch updates PHP's FTP-S
client code to allow that possibility.
show more ...
|
| #
82df4e26 |
| 13-Aug-2016 |
Christoph M. Becker |
Fix #72278: getimagesize returning FALSE on valid jpg
getimagesize() is rather strict about the length of the marker payload data,
and fails if there are extraneous bytes before the next
Fix #72278: getimagesize returning FALSE on valid jpg
getimagesize() is rather strict about the length of the marker payload data,
and fails if there are extraneous bytes before the next marker. Only a very
special case reported in bug #13213 is catered to.
libjpeg is rather resilient to such corrupted JPEG files, and raises a
recoverable error in this case. Other image processors also accept such
JPEG files, so we adapt getimagesize() to skip (but warn about) such
extraneous bytes.
show more ...
|
| #
ae3b2078 |
| 13-Aug-2016 |
Christoph M. Becker |
Fix #72823: strtr out-of-bound access
If php_strtr_array_prepare_repls() reports pattern_len == 0, we return
early to avoid OOB accesses, and because there is nothing to replace anyway.
|
| #
7938ebf6 |
| 12-Aug-2016 |
Christoph M. Becker |
Fix #60665: call to empty() on NULL result using PDO::FETCH_LAZY returns false
The has_property handler only checked whether a respective column name
exists, but neither whether the colu
Fix #60665: call to empty() on NULL result using PDO::FETCH_LAZY returns false
The has_property handler only checked whether a respective column name
exists, but neither whether the column value is set, nor whether it is
empty, respectively. We fix that to match the behavior of POD:FETCH_OBJ in
particular and PHP in general.
show more ...
|
| #
e03480bf |
| 12-Aug-2016 |
Xinchen Hui |
Fixed bug #72813 (Segfault with __get returned by ref)
This should be safe change, as we don't dereference value and member
after calling setter/getter.
And compare to adding un
Fixed bug #72813 (Segfault with __get returned by ref)
This should be safe change, as we don't dereference value and member
after calling setter/getter.
And compare to adding unref codes, this is much cheaper.
show more ...
|
| #
bb955ec9 |
| 09-Aug-2016 |
Keyur |
Add NEWS
|
| #
e52cb185 |
| 09-Aug-2016 |
Xinchen Hui |
Fixed bug #72788 (Invalid memory access when using persistent PDO connection)
|
| #
e616bc86 |
| 03-Aug-2016 |
Lauri Kenttä |
Fix bug #55451
Make substr_compare ignore the length if it's NULL. This allows to
use the last parameter (case_insensitivity) with the default length.
|
| #
b601dc5b |
| 04-Aug-2016 |
Christopher Jones |
Fix bug #72524 (Binding null values triggers ORA-24816 error)
|
| #
5e2b8349 |
| 06-Aug-2016 |
Kalle Sommer Nielsen |
Check the return value of dbconvert() in mssql_guid_string(), as it may return -1 in case the conversion failed. In that case false is returned.
Also initialize buffer and buffer2 to NULL, w
Check the return value of dbconvert() in mssql_guid_string(), as it may return -1 in case the conversion failed. In that case false is returned.
Also initialize buffer and buffer2 to NULL, which should fix bug #72039 (Use of uninitialised value on mssql_guid_string).
This only applies to 5.6, as we do not have mssql in 7.0 anymore
show more ...
|
| #
65056e9d |
| 05-Aug-2016 |
Ville Hukkamaki |
Fix #72764
Negotiate data channel encryption after NLST command.
This is to prevent issues with IIS and ProFTPD.
|
| #
807e8193 |
| 05-Aug-2016 |
Nikita Popov |
Fix bug #72767
The page size calculation did not account for the size of the
stack header (or rather it did account for it, but in the wrong
direction...)
|
| #
d3a8e107 |
| 04-Aug-2016 |
Matteo Beccati |
Clean up FR #72633
|
| #
78488a54 |
| 04-Aug-2016 |
Christopher Jones |
Fixed invalid handle error with Implicit Result Sets and bump OCI8 version.
|
| #
562c17eb |
| 03-Aug-2016 |
Ferenc Kovacs |
5.6.26 will be next
|
| #
2bdb34fd |
| 03-Aug-2016 |
Anatol Belski |
update NEWS
|
| #
f15c1553 |
| 03-Aug-2016 |
Anatol Belski |
update NEWS
|
| #
1bcd439c |
| 02-Aug-2016 |
Nikita Popov |
Fix bug #72724
|
| #
f5622f5c |
| 02-Aug-2016 |
Christoph M. Becker |
Fix #72709: imagesetstyle() causes OOB read for empty $styles
Calling imagesetstyle() with an empty $styles array caused gdImageSetStyle()
to be called with `noOfPixels==0`, what could h
Fix #72709: imagesetstyle() causes OOB read for empty $styles
Calling imagesetstyle() with an empty $styles array caused gdImageSetStyle()
to be called with `noOfPixels==0`, what could have lead to OOB reads.
Actually, this issue will be fixed in libgd, but to avoid issues when older
libgd is in use, we simply disallow passing an empty $styles array to
imagesetstyle(), what wouldn't serve a useful purpose anyway.
show more ...
|
| #
e95625f4 |
| 02-Aug-2016 |
Anatol Belski |
update NEWS
|
| #
5c51433e |
| 02-Aug-2016 |
Anatol Belski |
prepare next
|
| #
753e6eac |
| 31-Jul-2016 |
Anatol Belski |
update NEWS
|
| #
c9d3ff0c |
| 30-Jul-2016 |
Nikita Popov |
Revert "Fixed bug #71219"
This reverts commit 14d674442ef86ad4e862228a1ff5ecd322ae7759.
I misread the discussion on the bug -- this is not the correct
fix. However the other pro
Revert "Fixed bug #71219"
This reverts commit 14d674442ef86ad4e862228a1ff5ecd322ae7759.
I misread the discussion on the bug -- this is not the correct
fix. However the other proposed fix does not work either, so just
reverting for now.
show more ...
|
