954543ce | 13-Jul-2019 |
Christoph M. Becker |
Fix #78282: atime and mtime mismatch The fix for bug #78241 assumed that `time_t` would always be 64bit, but actually is 32bit for x86. We therefore enforce 64bit arithmetic to avoi
Fix #78282: atime and mtime mismatch The fix for bug #78241 assumed that `time_t` would always be 64bit, but actually is 32bit for x86. We therefore enforce 64bit arithmetic to avoid wrapping. (cherry picked from commit bf242d58e77d50d4d8fdaaaca7ede686ec4467c0)
show more ...
|
f9f4a683 | 02-Aug-2019 |
Christoph M. Becker |
Fix #78179: MariaDB server version incorrectly detected As of MariaDB 10.0.2, the server reports a fake version number as work- around for replication issues[1]. We apply the same "fix"
Fix #78179: MariaDB server version incorrectly detected As of MariaDB 10.0.2, the server reports a fake version number as work- around for replication issues[1]. We apply the same "fix" as in the MariaDB client to cater to this. [1] <https://github.com/MariaDB/server/commit/c50ee6c23dbeb090963580754bec2f0a96ac0557#diff-5b45fa673c88c06a9651c7906364f592>
show more ...
|
85e8ccd5 | 02-Aug-2019 |
Nikita Popov |
Fixed bug #78363 |
1c01a157 | 31-Jul-2019 |
Joe Watkins |
set version for release |
b29ecec4 | 30-Jul-2019 |
Remi Collet |
add security NEW entries + reorder [ci skip] |
284fb08f | 29-Jul-2019 |
Stanislav Malyshev |
Merge branch 'PHP-7.1' into PHP-7.2 * PHP-7.1: Fix #77919: Potential UAF in Phar RSHUTDOWN Update NEWS Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment)
Merge branch 'PHP-7.1' into PHP-7.2 * PHP-7.1: Fix #77919: Potential UAF in Phar RSHUTDOWN Update NEWS Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment) Fix bug #78222 (heap-buffer-overflow on exif_scan_thumbnail)
show more ...
|
cd1101e8 | 29-Jul-2019 |
Christoph M. Becker |
Fix #77919: Potential UAF in Phar RSHUTDOWN We have to properly clean up in case phar_flush() is failing. We also make the expectation of the respective test case less liberal t
Fix #77919: Potential UAF in Phar RSHUTDOWN We have to properly clean up in case phar_flush() is failing. We also make the expectation of the respective test case less liberal to avoid missing such bugs in the future.
show more ...
|
42e8b85d | 29-Jul-2019 |
Stanislav Malyshev |
Update NEWS |
dc7aa22b | 23-Jul-2019 |
Albert Casademont |
Fix bug #78326 Similar to what fread() does, truncate the stream_get_contents() result if the original buffer was way too large. |
38f1288b | 23-Jul-2019 |
Nikita Popov |
Fix Zend signals unblocking There are a few parts here: * opcache should not be blocking signals while invoking compile_file, otherwise signals may remain blocked on a compile er
Fix Zend signals unblocking There are a few parts here: * opcache should not be blocking signals while invoking compile_file, otherwise signals may remain blocked on a compile error. While at it, also protect SHM memory during compile_file. * We should deactivate Zend signals at the end of the request, to make sure that we gracefully recover from a missing unblock and signals don't remain blocked forever. * We don't use a critical section in deactivation, because it should not be necessary. Additionally we want to clean up the signal queue, if it is non-empty. * Enable SIGG(check) in debug builds so we notice issues in the future.
show more ...
|
68fd435b | 29-Jul-2019 |
Nikita Popov |
Fixed bug #78333 Don't dereference float/double values at unknown address, instead memcpy it into an aligned stack slot and dereference that. |
aeb6d131 | 08-Jul-2019 |
Stanislav Malyshev |
Fix bug #78256 (heap-buffer-overflow on exif_process_user_comment) |
dea2989a | 08-Jul-2019 |
Stanislav Malyshev |
Fix bug #78222 (heap-buffer-overflow on exif_scan_thumbnail) |
30eb4b35 | 29-Jul-2019 |
Christoph M. Becker |
Fix #78342: Bus error in configure test for iconv //IGNORE We have to check the return value of iconv_open() for error, to avoid that and potentially other undesired behavior of iconv(). |
5649267b | 25-Jul-2019 |
Levi Morrison |
Remove .post files only for passing tests This allows the sh script for failing tests with --POST-- to work |
8f384bea | 23-Jul-2019 |
Peter Kokot |
Update NEWS |
eb7e45f6 | 21-Jul-2019 |
George Wang |
Checked in LiteSpeed SAPI 7.5, addressed two main problems in "clean shutdown" introduced in 7.4.3, 1. falls in an infinite loop because PHP engine's inconsistent state, now override the ITIMER_P
Checked in LiteSpeed SAPI 7.5, addressed two main problems in "clean shutdown" introduced in 7.4.3, 1. falls in an infinite loop because PHP engine's inconsistent state, now override the ITIMER_PROF to 0.1 second, clean shutdown must finish before that. 2. generate too much error log, we completely disable "error_reporting" before calling php_request_shutdown().
show more ...
|
c8c183eb | 17-Jul-2019 |
Abyr Valg |
Fixed bug #77946 Save multi_info_read() result into easy handle. |
b864abfe | 17-Jul-2019 |
Nikita Popov |
Fixed bug #69100 |
bd051491 | 16-Jul-2019 |
Remi Collet |
move NEWS entry [ci skip] |
8a19fe29 | 16-Jul-2019 |
Nikita Popov |
Fixed bug #78297 |
c9037421 | 16-Jul-2019 |
Remi Collet |
next is 7.2.22 |
9ccf3fb9 | 15-Jul-2019 |
Dmitry Stogov |
Fixed incorrect specialization (missed IS_INDIRECT handling) |
88ffe057 | 25-Jun-2019 |
Nikita Popov |
Fix bug #77124 This is a backport of 6fcae63f614d1ed4aaeaff7b13a7a4627b1f1312 to PHP 7.2. |
eab0079c | 15-Jul-2019 |
Remi Collet |
Fix #78269 password_hash uses weak options for argon2 |