| cb2021e5 | 02-Oct-2021 |
Jakub Zelenka |
Fix bug #81026 (PHP-FPM oob R/W in root process leading to priv escalation)
The main change is to store scoreboard procs directly to the variable sized
array rather than indirectly throu
Fix bug #81026 (PHP-FPM oob R/W in root process leading to priv escalation)
The main change is to store scoreboard procs directly to the variable sized
array rather than indirectly through the pointer.
Signed-off-by: Stanislav Malyshev <stas@php.net>
show more ...
|
| 866adb12 | 15-Oct-2021 |
Christoph M. Becker |
Fix #81500: Interval serialization regression since 7.3.14 / 7.4.2
While it may not be desired, `DateInterval::$f` supports negative
values, at least with regard to calculations. We sti
Fix #81500: Interval serialization regression since 7.3.14 / 7.4.2
While it may not be desired, `DateInterval::$f` supports negative
values, at least with regard to calculations. We still need to guard
from assigning double values which are out of range for signed 64bit
integers (which would be undefined behavior). zend_dval_to_lval() does
this by returning `0` instead of triggering UB. This way we can avoid
setting the invalid marker, which doesn't work as expected anyway.
We must not do that only for unserialization, but also when the property
is set in the first place.
We need to adapt some of the existing tests wrt. this behavior. In
particular, we check for an arbitrary value in bug79015.phpt, to cater
to differences between 32bit and 64bit architectures.
Closes GH-7575.
show more ...
|
| 36576936 | 12-Oct-2021 |
Christoph M. Becker |
Fix #81518: Header injection via default_mimetype / default_charset
We forbid setting these INI options to values containing NUL bytes, CR
or LF.
Closes GH-7574. |
| 788a701e | 12-Oct-2021 |
Christoph M. Becker |
Fix #81424: PCRE2 10.35 JIT performance regression
We backport the respective upstream fix[1] to our bundled pcre2lib plus
the follow-up fix[2] for a functional regression.
[1]
Fix #81424: PCRE2 10.35 JIT performance regression
We backport the respective upstream fix[1] to our bundled pcre2lib plus
the follow-up fix[2] for a functional regression.
[1] <https://github.com/PhilipHazel/pcre2/commit/dc5f96663597572f694147aeec3525003c351123>
[2] <https://github.com/PhilipHazel/pcre2/commit/e7af7efaa11f71b187b0432e9e60f18ba4d90a0c>
Closes GH-7573.
show more ...
|
| fcabe693 | 08-Oct-2021 |
Nikita Popov |
Fixed bug #81494
Use the proper error reporting mechanism rather than throwing a
warning. This requires something of a hack because we don't have
direct access to the connection obje
Fixed bug #81494
Use the proper error reporting mechanism rather than throwing a
warning. This requires something of a hack because we don't have
direct access to the connection object at this point.
show more ...
|
| 9733d49e | 08-Oct-2021 |
Derick Rethans |
Remove now superfluous tests due to changes in tzdata |
| 8a61f1ec | 08-Oct-2021 |
Derick Rethans |
Updated to version 2021.3 (2021c) |
| c0cbf3a6 | 07-Oct-2021 |
Nikita Popov |
Fix failing PDO PgSQL test
This now prints an additional
> CONTEXT: unnamed portal parameter $1 = ''
on azure, presumably as a result of a version update or configuration
Fix failing PDO PgSQL test
This now prints an additional
> CONTEXT: unnamed portal parameter $1 = ''
on azure, presumably as a result of a version update or configuration
change. Strip this additional line from the error info, the same as
already done in one other place in the test.
show more ...
|
| 89dfe493 | 07-Oct-2021 |
Derick Rethans |
Bump config.guess/config.sub in all supported branches to support Apple Silicon |
| cd0c32e7 | 07-Oct-2021 |
Derick Rethans |
Bump config.guess/config.sub in all supported branches to support Apple Silicon |
| 15197702 | 07-Oct-2021 |
Nikita Popov |
Fixed bug #54350
Don't allow calling fclose() on the stream while in the user
filter callback. This is basically the same protection as xp_ssl
streams use during callback invocations
Fixed bug #54350
Don't allow calling fclose() on the stream while in the user
filter callback. This is basically the same protection as xp_ssl
streams use during callback invocations.
There are more issues in this general area (e.g. stack overflow
on stream_filter_remove), but this addresses freeing the stream
during the filter callback invocation at least.
show more ...
|
| e5d35a32 | 05-Oct-2021 |
Derick Rethans |
Prepare branch for 7.4.26-dev |
| be36bf5a | 05-Oct-2021 |
Matteo Beccati |
Add test for pg_put_line() and pg_end_copy() |
| a19f655b | 05-Oct-2021 |
Christoph M. Becker |
Revert "Fix #81424: PCRE2 10.35 JIT performance regression"
This reverts commit a2471383fec332ae30827c7e3f4f9451420f1f0b.
Fixing the performance regression, apparently fixes a funct
Revert "Fix #81424: PCRE2 10.35 JIT performance regression"
This reverts commit a2471383fec332ae30827c7e3f4f9451420f1f0b.
Fixing the performance regression, apparently fixes a functional
regression[1], so we revert for now.
[1] <https://github.com/PhilipHazel/pcre2/issues/21>
Closes GH-7556.
show more ...
|
| 4c01bd2a | 04-Oct-2021 |
Nikita Popov |
Disable failing FPM test
Test fails intermittently, e.g.:
https://dev.azure.com/phpazuredevops/PHP/_build/results?buildId=20597&view=ms.vss-test-web.build-test-results-tab&runId=475
Disable failing FPM test
Test fails intermittently, e.g.:
https://dev.azure.com/phpazuredevops/PHP/_build/results?buildId=20597&view=ms.vss-test-web.build-test-results-tab&runId=475324&resultId=115501&paneView=debug
Possibly this is because the two requests end up being processed
in sequence and no second process is spawned.
show more ...
|
| 66a655fd | 04-Oct-2021 |
Jakub Zelenka |
Add the actual test for FPM prod idle timeout test with 6s sleep |
| edfb3470 | 04-Oct-2021 |
Jakub Zelenka |
Add FPM prod idle timeout test with 6s sleep |
| e0c0de00 | 29-Sep-2021 |
Christoph M. Becker |
Fix #77978: Dirname ending in colon unzips to wrong dir
When making the relative path, we must not stop on a `:\` sequence in
the middle of the filename. This is only significant on Win
Fix #77978: Dirname ending in colon unzips to wrong dir
When making the relative path, we must not stop on a `:\` sequence in
the middle of the filename. This is only significant on Windows as it
may indicate an absolute filename, but this is already checked at the
beginning of the function.
Note that the bug and this patch affects all systems. However, on
Windows the file is no longer extracted at all, since Windows NTSF does
not allow filenames containing colons.
Closes GH-7528.
show more ...
|
| 69514e6f | 04-Oct-2021 |
Nikita Popov |
Revert "Add FPM prod idle timeout test"
This reverts commit 08f52b1643d7a068e30c0abf5e1cad359f0eed06.
The newly added test fails. |
| 02778cdd | 04-Oct-2021 |
Stanislav Malyshev |
[ci skip] Add missing NEWS |
| 08f52b16 | 05-Sep-2021 |
Jakub Zelenka |
Add FPM prod idle timeout test |
| 4d442714 | 30-Sep-2021 |
Christoph M. Becker |
Fix #81490: ZipArchive::extractTo() may leak memory
We always need to free the CWD state.
Closes GH-7536. |
| 23e13e2c | 24-Sep-2021 |
Christoph M. Becker |
Fix #81475: stream_isatty emits warning with attached stream wrapper
We must not issue warnings, if `show_err` is false.
Closes GH-7513. |
| 2d668409 | 21-Sep-2021 |
Christoph M. Becker |
Fix #80663: Recursive SplFixedArray::setSize() may cause double-free
We address the `::setSize(0)` case by setting `array->element = NULL`
and `array->size = 0` before we destroy the ele
Fix #80663: Recursive SplFixedArray::setSize() may cause double-free
We address the `::setSize(0)` case by setting `array->element = NULL`
and `array->size = 0` before we destroy the elements.
Co-authored-by: Tyson Andre <tyson.andre@uwaterloo.ca>
Closes GH-7503.
show more ...
|
| 2c3dfe51 | 26-Aug-2021 |
Michael Voříšek |
Fix gdAlphaMax limit typo
Closes GH-7410. |
