2d01a89a | 13-Oct-2020 |
Christoph M. Becker |
7.3.25 is next |
8488c34f | 12-Oct-2020 |
Christoph M. Becker |
Fix #80226: imap_sort() leaks sortpgm memory We need to free what we have allocated. Closes GH-6327. |
73e43b6e | 12-Oct-2020 |
Christoph M. Becker |
Fix #80216: imap_mail_compose() does not validate types/encodings We need to check whether the given `type`s and `encoding`s are within bounds to avoid segfaults and out-of-bound reads.
Fix #80216: imap_mail_compose() does not validate types/encodings We need to check whether the given `type`s and `encoding`s are within bounds to avoid segfaults and out-of-bound reads. Closes GH-6323.
show more ...
|
c1962e90 | 12-Oct-2020 |
Christoph M. Becker |
Fix #80223: imap_mail_compose() leaks envelope on malformed bodies We have to clean up even on failure. Closes GH-6322. |
0d022ddf | 12-Oct-2020 |
Christoph M. Becker |
Fix #80220: imap_mail_compose() may leak memory Unless `topbod` is of `TYPEMULTIPART`, `mail_free_body()` does not free the `nested.part`; while we could do this ourselves, instead we ju
Fix #80220: imap_mail_compose() may leak memory Unless `topbod` is of `TYPEMULTIPART`, `mail_free_body()` does not free the `nested.part`; while we could do this ourselves, instead we just ignore additional bodies in this case, i.e. we don't attach them in the first place. Closes GH-6321.
show more ...
|
3c4dd73c | 12-Oct-2020 |
Nikita Popov |
Detect self-addition of array more accurately While the zvals may be different, they may still point to the same array. Fixes oss-fuzz #26245. |
e304468e | 12-Oct-2020 |
Nikita Popov |
Deindirect source elements in zend_hash_merge If the RHS has INDIRECT elements, we do not those to be added to the LHS verbatim. As we're using UPDATE_INDIRECT, we might even create
Deindirect source elements in zend_hash_merge If the RHS has INDIRECT elements, we do not those to be added to the LHS verbatim. As we're using UPDATE_INDIRECT, we might even create a nested INDIRECT that way. This is a side-quest of oss-fuzz #26245.
show more ...
|
1ed5a2a5 | 11-Oct-2020 |
Derick Rethans |
Fixed test for bug #48097 due to confirmed data changes in timelib |
62a2387a | 10-Oct-2020 |
Christoph M. Becker |
Fix #80215: imap_mail_compose() may modify by-val parameters We separate the input arrays and all sub-arrays to avoid modification of the passed parameters. This should be rewri
Fix #80215: imap_mail_compose() may modify by-val parameters We separate the input arrays and all sub-arrays to avoid modification of the passed parameters. This should be rewritten to use `zend_string`s for the "master" branch. Closes GH-6316.
show more ...
|
8bee0fbd | 10-Oct-2020 |
Christoph M. Becker |
Fix #80213: imap_mail_compose() segfaults on certain $bodies We have to cater to non-associative arrays where the key may be `NULL`; we just skip these elements. Closes GH-6315. |
07a4185d | 07-Oct-2020 |
Petr Sumbera |
Make iconv errno support test pass on Solaris. Closes GH-6291. |
50185814 | 09-Oct-2020 |
Nikita Popov |
XFAIL test broken by timelib update I was expecting this to get fixed quickly, but it didn't. XFAIL for now. |
14d231bd | 08-Oct-2020 |
Derick Rethans |
Updated to version 2020.2 (2020b) |
90a5d7c2 | 08-Oct-2020 |
Derick Rethans |
Updated to version 2020.2 (2020b) |
1895bf7b | 08-Oct-2020 |
Christoph M. Becker |
Fix too strict imap test expectations |
e68acd03 | 07-Oct-2020 |
Christoph M. Becker |
Fix #77040: tidyNode::isHtml() is completely broken The documentation of `tidyNode::isHtml()` states that this method "checks if a node is part of a HTML document". That is, of course,
Fix #77040: tidyNode::isHtml() is completely broken The documentation of `tidyNode::isHtml()` states that this method "checks if a node is part of a HTML document". That is, of course, nonsense, since a tidyNode is "an HTML node in an HTML file, as detected by tidy." What this method is actually supposed to do is to check whether a node is an element (unless it is the root element). This has been broken by commit d8eeb8e[1], which assumed that `enum TidyNodeType` would represent flags of a bitmask, what it does not. [1] <http://git.php.net/?p=php-src.git;a=commit;h=d8eeb8e28673236bca3f066ded75037a5bdf6378> Closes GH-6290.
show more ...
|
e857dfa7 | 07-Oct-2020 |
Christoph M. Becker |
Fix #80185: jdtounix() fails after 2037 There is no such thing as the "end of the unix epoch", and if it was, it would certainly not be 2037-10-11T02:00:00. There is, however, poten
Fix #80185: jdtounix() fails after 2037 There is no such thing as the "end of the unix epoch", and if it was, it would certainly not be 2037-10-11T02:00:00. There is, however, potential integer overflow which we need to avoid. Closes GH-6288.
show more ...
|
69ba81d1 | 05-Oct-2020 |
Christoph M. Becker |
Fix #46050: odbc_next_result corrupts prepared resource When resetting the result's values, we also have to reset its numcols. |
aa405b7d | 05-Oct-2020 |
Nikita Popov |
Fix -Wimplicit-function-declaration in configure As this is an error with xcode 12, see bug #80171. |
bf6873a1 | 21-Sep-2020 |
K.Kosako |
Fix out-of-bounds write Fixes CVE-2020-26159. Backported from <https://github.com/kkos/oniguruma/commit/cbe9f8bd9cfc6c3c87a60fbae58fa1a85db59df0>. |
1666cfcc | 02-Oct-2020 |
Matteo Beccati |
[ci skip] moved soap fix to 7.3.23 When committing I didn't notice that version had been just bumped |
773f980e | 01-Oct-2020 |
Dmitry Stogov |
Backport of a partial fix for bug Bug #76982 (memory leak declaring closure in included file). |
16163638 | 30-Sep-2020 |
George Peter Banyard |
Fixed incorrect error message |
3f5c47af | 30-Sep-2020 |
George Peter Banyard |
Fixed incorrect logical condition |
ae95d06f | 29-Sep-2020 |
Stanislav Malyshev |
[ci skip] Add 7.3.23 security fixes to NEWS |