| 954543ce | 13-Jul-2019 |
Christoph M. Becker |
Fix #78282: atime and mtime mismatch
The fix for bug #78241 assumed that `time_t` would always be 64bit, but
actually is 32bit for x86. We therefore enforce 64bit arithmetic to
avoi
Fix #78282: atime and mtime mismatch
The fix for bug #78241 assumed that `time_t` would always be 64bit, but
actually is 32bit for x86. We therefore enforce 64bit arithmetic to
avoid wrapping.
(cherry picked from commit bf242d58e77d50d4d8fdaaaca7ede686ec4467c0)
show more ...
|
| f9f4a683 | 02-Aug-2019 |
Christoph M. Becker |
Fix #78179: MariaDB server version incorrectly detected
As of MariaDB 10.0.2, the server reports a fake version number as work-
around for replication issues[1]. We apply the same "fix"
Fix #78179: MariaDB server version incorrectly detected
As of MariaDB 10.0.2, the server reports a fake version number as work-
around for replication issues[1]. We apply the same "fix" as in the
MariaDB client to cater to this.
[1] <https://github.com/MariaDB/server/commit/c50ee6c23dbeb090963580754bec2f0a96ac0557#diff-5b45fa673c88c06a9651c7906364f592>
show more ...
|
| 85e8ccd5 | 02-Aug-2019 |
Nikita Popov |
Fixed bug #78363 |
| 1c01a157 | 31-Jul-2019 |
Joe Watkins |
set version for release |
| b29ecec4 | 30-Jul-2019 |
Remi Collet |
add security NEW entries + reorder [ci skip] |
| 284fb08f | 29-Jul-2019 |
Stanislav Malyshev |
Merge branch 'PHP-7.1' into PHP-7.2
* PHP-7.1:
Fix #77919: Potential UAF in Phar RSHUTDOWN
Update NEWS
Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment)
Merge branch 'PHP-7.1' into PHP-7.2
* PHP-7.1:
Fix #77919: Potential UAF in Phar RSHUTDOWN
Update NEWS
Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment)
Fix bug #78222 (heap-buffer-overflow on exif_scan_thumbnail)
show more ...
|
| cd1101e8 | 29-Jul-2019 |
Christoph M. Becker |
Fix #77919: Potential UAF in Phar RSHUTDOWN
We have to properly clean up in case phar_flush() is failing.
We also make the expectation of the respective test case less liberal
t
Fix #77919: Potential UAF in Phar RSHUTDOWN
We have to properly clean up in case phar_flush() is failing.
We also make the expectation of the respective test case less liberal
to avoid missing such bugs in the future.
show more ...
|
| 42e8b85d | 29-Jul-2019 |
Stanislav Malyshev |
Update NEWS |
| dc7aa22b | 23-Jul-2019 |
Albert Casademont |
Fix bug #78326
Similar to what fread() does, truncate the stream_get_contents()
result if the original buffer was way too large. |
| 38f1288b | 23-Jul-2019 |
Nikita Popov |
Fix Zend signals unblocking
There are a few parts here:
* opcache should not be blocking signals while invoking compile_file,
otherwise signals may remain blocked on a compile er
Fix Zend signals unblocking
There are a few parts here:
* opcache should not be blocking signals while invoking compile_file,
otherwise signals may remain blocked on a compile error. While at
it, also protect SHM memory during compile_file.
* We should deactivate Zend signals at the end of the request, to make
sure that we gracefully recover from a missing unblock and signals
don't remain blocked forever.
* We don't use a critical section in deactivation, because it should
not be necessary. Additionally we want to clean up the signal queue,
if it is non-empty.
* Enable SIGG(check) in debug builds so we notice issues in the future.
show more ...
|
| 68fd435b | 29-Jul-2019 |
Nikita Popov |
Fixed bug #78333
Don't dereference float/double values at unknown address, instead
memcpy it into an aligned stack slot and dereference that. |
| aeb6d131 | 08-Jul-2019 |
Stanislav Malyshev |
Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment) |
| dea2989a | 08-Jul-2019 |
Stanislav Malyshev |
Fix bug #78222 (heap-buffer-overflow on exif_scan_thumbnail) |
| 30eb4b35 | 29-Jul-2019 |
Christoph M. Becker |
Fix #78342: Bus error in configure test for iconv //IGNORE
We have to check the return value of iconv_open() for error, to avoid
that and potentially other undesired behavior of iconv(). |
| 5649267b | 25-Jul-2019 |
Levi Morrison |
Remove .post files only for passing tests
This allows the sh script for failing tests with --POST-- to work |
| 8f384bea | 23-Jul-2019 |
Peter Kokot |
Update NEWS |
| eb7e45f6 | 21-Jul-2019 |
George Wang |
Checked in LiteSpeed SAPI 7.5, addressed two main problems in "clean shutdown" introduced in 7.4.3,
1. falls in an infinite loop because PHP engine's inconsistent state, now override the ITIMER_P
Checked in LiteSpeed SAPI 7.5, addressed two main problems in "clean shutdown" introduced in 7.4.3,
1. falls in an infinite loop because PHP engine's inconsistent state, now override the ITIMER_PROF to 0.1 second, clean shutdown must finish before that.
2. generate too much error log, we completely disable "error_reporting" before calling php_request_shutdown().
show more ...
|
| c8c183eb | 17-Jul-2019 |
Abyr Valg |
Fixed bug #77946
Save multi_info_read() result into easy handle. |
| b864abfe | 17-Jul-2019 |
Nikita Popov |
Fixed bug #69100 |
| bd051491 | 16-Jul-2019 |
Remi Collet |
move NEWS entry [ci skip] |
| 8a19fe29 | 16-Jul-2019 |
Nikita Popov |
Fixed bug #78297 |
| c9037421 | 16-Jul-2019 |
Remi Collet |
next is 7.2.22 |
| 9ccf3fb9 | 15-Jul-2019 |
Dmitry Stogov |
Fixed incorrect specialization (missed IS_INDIRECT handling) |
| 88ffe057 | 25-Jun-2019 |
Nikita Popov |
Fix bug #77124
This is a backport of 6fcae63f614d1ed4aaeaff7b13a7a4627b1f1312
to PHP 7.2. |
| eab0079c | 15-Jul-2019 |
Remi Collet |
Fix #78269 password_hash uses weak options for argon2 |
