| #
17a9f140 |
| 29-Apr-2019 |
Christoph M. Becker |
Extend CURLFile to support streams
Due to former restrictions of the libcurl API, curl multipart/formdata
file uploads supported only proper files. However, as of curl 7.56.0
the ne
Extend CURLFile to support streams
Due to former restrictions of the libcurl API, curl multipart/formdata
file uploads supported only proper files. However, as of curl 7.56.0
the new `curl_mime_*()` API is available (and already supported by
PHP[1]), which allows us to support arbitrary *seekable* streams, which
is generally desirable, and particularly resolves issues with the
transparent Unicode and long part support on Windows (see bug #77711).
Note that older curl versions are still supported, but CURLFile is
still restricted to proper files in this case.
[1] <http://git.php.net/?p=php-src.git;a=commit;h=a83b68ba56714bfa06737a61af795460caa4a105>
(cherry picked from commit c68dc6b5e37e74d89e0a387079139c054c8faa81)
show more ...
|
| #
b5d2cbe0 |
| 07-Dec-2019 |
willson-chen |
Fix #78923: Artifacts when convoluting image with transparency
We have to properly initialize `pxl` before using it.
Fix ported from <https://github.com/libgd/libgd/pull/559>.
|
| #
65bbc670 |
| 03-Dec-2019 |
Christoph M. Becker |
Next is 7.3.14
|
| #
600f1f89 |
| 17-Nov-2019 |
Christoph M. Becker |
Fix #78814: strip_tags allows / in tag name => whitelist bypass
When normalizing tags to check whether they are contained in the set
of allowable tags, we must not strip slashes, unless
Fix #78814: strip_tags allows / in tag name => whitelist bypass
When normalizing tags to check whether they are contained in the set
of allowable tags, we must not strip slashes, unless they come
immediately after the opening `<`, or immediately before the closing
`>`.
show more ...
|
| #
bb735c9e |
| 25-Nov-2019 |
Christoph M. Becker |
Fix #78296: is_file fails to detect file
If we're constructing extended-length paths (i.e. paths prefixed with
`\\?\`), we have to replace all forward slashes with backward slashes,
Fix #78296: is_file fails to detect file
If we're constructing extended-length paths (i.e. paths prefixed with
`\\?\`), we have to replace all forward slashes with backward slashes,
because the former are not supported by Windows for extended-length
paths.
The more efficient and likely cleaner alternative solution would be to
cater to this in `php_win32_ioutil_normalize_path_w()` by always
replacing forward slashes, but that might break existing code. It
might be sensible to change that for `master`, though.
show more ...
|
| #
db420cb6 |
| 19-Nov-2019 |
Christoph M. Becker |
Fix #78833: Integer overflow in pack causes out-of-bound access
We check for potential signed integer overflow, and bail out
gracefully, in that case.
|
| #
1979c5d1 |
| 30-Nov-2019 |
Christoph M. Becker |
Upgrade to Oniguruma 6.9.4
Oniguruma 6.9.4 fixes several CVEs.
|
| #
fee38633 |
| 26-Nov-2019 |
Christoph M. Becker |
Fix #78840: imploding $GLOBALS crashes
We add support for IS_INDIRECT zvals to implode().
|
| #
23c65a81 |
| 25-Nov-2019 |
Christoph M. Becker |
Fix #77638: var_export'ing certain class instances segfaults
If objects return immutable property hash tables (typically,
`zend_empty_array`), we must not try to apply recursion protecti
Fix #77638: var_export'ing certain class instances segfaults
If objects return immutable property hash tables (typically,
`zend_empty_array`), we must not try to apply recursion protection on
those.
show more ...
|
| #
bb30fe9e |
| 25-Nov-2019 |
Dmitry Stogov |
Fixed bug #78868 (Calling __autoload() with incorrect EG(fake_scope) value)
|
| #
e1da72bd |
| 22-Nov-2019 |
Christoph M. Becker |
Fix #78853: preg_match() may return integer > 1
Commit 54ebebd[1] optimized the match loop, but for this case it has
been overlooked, that we must only loop if we're doing global matchin
Fix #78853: preg_match() may return integer > 1
Commit 54ebebd[1] optimized the match loop, but for this case it has
been overlooked, that we must only loop if we're doing global matching.
[1] <http://git.php.net/?p=php-src.git;a=commit;h=54ebebd686255c5f124af718c966edb392782d4a>
show more ...
|
| #
9b92c1d1 |
| 21-Nov-2019 |
Christoph M. Becker |
Fix #78849: GD build broken with -D SIGNED_COMPARE_SLOW
Apparently, this has not been tested for a long time, and might be a
refactoring relict. Anyhow, we have to pass the context to
Fix #78849: GD build broken with -D SIGNED_COMPARE_SLOW
Apparently, this has not been tested for a long time, and might be a
refactoring relict. Anyhow, we have to pass the context to
`GIFNextPixel` as well.
show more ...
|
| #
f6eac76b |
| 18-Nov-2019 |
Christoph M. Becker |
Update NEWS
|
| #
39d04f15 |
| 12-Nov-2019 |
Christoph M. Becker |
Fix ASLR related invalid opline handler issues
Opcache stores `opline->handler`s in shared memory. These pointers are
invalid, if the main PHP DLL is loaded at another base address due
Fix ASLR related invalid opline handler issues
Opcache stores `opline->handler`s in shared memory. These pointers are
invalid, if the main PHP DLL is loaded at another base address due to
ASLR. We therefore store the address of `execute_ex` in the mmap base
file, and check on startup whether it matches its current address. If
not, we fall back on the file cache if enabled, and bail out otherwise.
This still does not address cases where the opline handler is located
inside of another DLL (e.g. for some profilers, debuggers), but there
seems to be no general solution for now.
(cherry picked from commit 8ba10b8fbc020dc225d3b19d8f088f1351a3e304)
show more ...
|
| #
2c9926f1 |
| 12-Nov-2019 |
Stanislav Malyshev |
Fix bug #78804 - Segmentation fault in Locale::filterMatches
|
| #
5fa6dcd9 |
| 07-Nov-2019 |
Nikita Popov |
Fixed bug #78759
Handle INDIRECT values in array.
|
| #
6d4965fe |
| 06-Nov-2019 |
Nikita Popov |
Fixed bug #78787
Not the first time inheritance of shadow properties causes an issue,
thankfully this whole concept is gone in PHP 7.4.
|
| #
4c9ba3e0 |
| 05-Nov-2019 |
Christoph M. Becker |
7.3.13 is next
|
| #
d317e16e |
| 05-Nov-2019 |
Sara Golemon |
Bump for 7.2.26-dev
|
| #
4f984a2f |
| 05-Nov-2019 |
Nikita Popov |
Fixed bug #78775
Clear the OpenSSL error queue before performing SSL stream operations.
As we don't control all code that could possibly be using OpenSSL,
we can't rely on the error
Fixed bug #78775
Clear the OpenSSL error queue before performing SSL stream operations.
As we don't control all code that could possibly be using OpenSSL,
we can't rely on the error queue being empty.
show more ...
|
| #
f9895b4b |
| 29-Oct-2019 |
Nikita Popov |
Fixed bug #78689
|
| #
89c327f8 |
| 25-Oct-2019 |
Christoph M. Becker |
Fix #78751: Serialising DatePeriod converts DateTimeImmutable
When getting the properties of a DatePeriod instance we have to retain
the proper classes, and when restoring a DatePeriod i
Fix #78751: Serialising DatePeriod converts DateTimeImmutable
When getting the properties of a DatePeriod instance we have to retain
the proper classes, and when restoring a DatePeriod instance we have to
cater to DateTimeImmutable instances as well.
show more ...
|
| #
16c49108 |
| 28-Oct-2019 |
Nikita Popov |
Fix bug #78752
NULL out the execute_data before destroying it, otherwise GC may
trigger while the execute_data is partially destroyed, resulting
in double-frees.
The handlin
Fix bug #78752
NULL out the execute_data before destroying it, otherwise GC may
trigger while the execute_data is partially destroyed, resulting
in double-frees.
The handling of call stack unfreezing is a bit awkward because it's
a ZEND_API function, so we can't change the signature.
show more ...
|
| #
52499938 |
| 25-Oct-2019 |
Nikita Popov |
Fixed bug #78747
|
| #
52f04987 |
| 22-Oct-2019 |
Joe Watkins |
bump version
|
