| 2d01a89a | 13-Oct-2020 |
Christoph M. Becker |
7.3.25 is next |
| 8488c34f | 12-Oct-2020 |
Christoph M. Becker |
Fix #80226: imap_sort() leaks sortpgm memory
We need to free what we have allocated.
Closes GH-6327. |
| 73e43b6e | 12-Oct-2020 |
Christoph M. Becker |
Fix #80216: imap_mail_compose() does not validate types/encodings
We need to check whether the given `type`s and `encoding`s are within
bounds to avoid segfaults and out-of-bound reads.
Fix #80216: imap_mail_compose() does not validate types/encodings
We need to check whether the given `type`s and `encoding`s are within
bounds to avoid segfaults and out-of-bound reads.
Closes GH-6323.
show more ...
|
| c1962e90 | 12-Oct-2020 |
Christoph M. Becker |
Fix #80223: imap_mail_compose() leaks envelope on malformed bodies
We have to clean up even on failure.
Closes GH-6322. |
| 0d022ddf | 12-Oct-2020 |
Christoph M. Becker |
Fix #80220: imap_mail_compose() may leak memory
Unless `topbod` is of `TYPEMULTIPART`, `mail_free_body()` does not free
the `nested.part`; while we could do this ourselves, instead we ju
Fix #80220: imap_mail_compose() may leak memory
Unless `topbod` is of `TYPEMULTIPART`, `mail_free_body()` does not free
the `nested.part`; while we could do this ourselves, instead we just
ignore additional bodies in this case, i.e. we don't attach them in the
first place.
Closes GH-6321.
show more ...
|
| 3c4dd73c | 12-Oct-2020 |
Nikita Popov |
Detect self-addition of array more accurately
While the zvals may be different, they may still point to the
same array.
Fixes oss-fuzz #26245. |
| e304468e | 12-Oct-2020 |
Nikita Popov |
Deindirect source elements in zend_hash_merge
If the RHS has INDIRECT elements, we do not those to be added to
the LHS verbatim. As we're using UPDATE_INDIRECT, we might even
create
Deindirect source elements in zend_hash_merge
If the RHS has INDIRECT elements, we do not those to be added to
the LHS verbatim. As we're using UPDATE_INDIRECT, we might even
create a nested INDIRECT that way.
This is a side-quest of oss-fuzz #26245.
show more ...
|
| 1ed5a2a5 | 11-Oct-2020 |
Derick Rethans |
Fixed test for bug #48097 due to confirmed data changes in timelib |
| 62a2387a | 10-Oct-2020 |
Christoph M. Becker |
Fix #80215: imap_mail_compose() may modify by-val parameters
We separate the input arrays and all sub-arrays to avoid modification
of the passed parameters.
This should be rewri
Fix #80215: imap_mail_compose() may modify by-val parameters
We separate the input arrays and all sub-arrays to avoid modification
of the passed parameters.
This should be rewritten to use `zend_string`s for the "master" branch.
Closes GH-6316.
show more ...
|
| 8bee0fbd | 10-Oct-2020 |
Christoph M. Becker |
Fix #80213: imap_mail_compose() segfaults on certain $bodies
We have to cater to non-associative arrays where the key may be `NULL`;
we just skip these elements.
Closes GH-6315. |
| 07a4185d | 07-Oct-2020 |
Petr Sumbera |
Make iconv errno support test pass on Solaris.
Closes GH-6291. |
| 50185814 | 09-Oct-2020 |
Nikita Popov |
XFAIL test broken by timelib update
I was expecting this to get fixed quickly, but it didn't.
XFAIL for now. |
| 14d231bd | 08-Oct-2020 |
Derick Rethans |
Updated to version 2020.2 (2020b) |
| 90a5d7c2 | 08-Oct-2020 |
Derick Rethans |
Updated to version 2020.2 (2020b) |
| 1895bf7b | 08-Oct-2020 |
Christoph M. Becker |
Fix too strict imap test expectations |
| e68acd03 | 07-Oct-2020 |
Christoph M. Becker |
Fix #77040: tidyNode::isHtml() is completely broken
The documentation of `tidyNode::isHtml()` states that this method
"checks if a node is part of a HTML document". That is, of course,
Fix #77040: tidyNode::isHtml() is completely broken
The documentation of `tidyNode::isHtml()` states that this method
"checks if a node is part of a HTML document". That is, of course,
nonsense, since a tidyNode is "an HTML node in an HTML file, as
detected by tidy."
What this method is actually supposed to do is to check whether a node
is an element (unless it is the root element). This has been broken by
commit d8eeb8e[1], which assumed that `enum TidyNodeType` would
represent flags of a bitmask, what it does not.
[1] <http://git.php.net/?p=php-src.git;a=commit;h=d8eeb8e28673236bca3f066ded75037a5bdf6378>
Closes GH-6290.
show more ...
|
| e857dfa7 | 07-Oct-2020 |
Christoph M. Becker |
Fix #80185: jdtounix() fails after 2037
There is no such thing as the "end of the unix epoch", and if it was,
it would certainly not be 2037-10-11T02:00:00. There is, however,
poten
Fix #80185: jdtounix() fails after 2037
There is no such thing as the "end of the unix epoch", and if it was,
it would certainly not be 2037-10-11T02:00:00. There is, however,
potential integer overflow which we need to avoid.
Closes GH-6288.
show more ...
|
| 69ba81d1 | 05-Oct-2020 |
Christoph M. Becker |
Fix #46050: odbc_next_result corrupts prepared resource
When resetting the result's values, we also have to reset its numcols. |
| aa405b7d | 05-Oct-2020 |
Nikita Popov |
Fix -Wimplicit-function-declaration in configure
As this is an error with xcode 12, see bug #80171. |
| bf6873a1 | 21-Sep-2020 |
K.Kosako |
Fix out-of-bounds write
Fixes CVE-2020-26159.
Backported from <https://github.com/kkos/oniguruma/commit/cbe9f8bd9cfc6c3c87a60fbae58fa1a85db59df0>. |
| 1666cfcc | 02-Oct-2020 |
Matteo Beccati |
[ci skip] moved soap fix to 7.3.23
When committing I didn't notice that version had been just bumped |
| 773f980e | 01-Oct-2020 |
Dmitry Stogov |
Backport of a partial fix for bug Bug #76982 (memory leak declaring closure in included file). |
| 16163638 | 30-Sep-2020 |
George Peter Banyard |
Fixed incorrect error message |
| 3f5c47af | 30-Sep-2020 |
George Peter Banyard |
Fixed incorrect logical condition |
| ae95d06f | 29-Sep-2020 |
Stanislav Malyshev |
[ci skip] Add 7.3.23 security fixes to NEWS |
