#
99a20856 |
| 21-May-2021 |
Dimitry Andric |
Fix bug #81068: Fix possible use-after-free in realpath_cache_clean() If ZTS is enabled, this can cause cwd_globals_ctor() to be called multiple times, each with a freshly allocated virt
Fix bug #81068: Fix possible use-after-free in realpath_cache_clean() If ZTS is enabled, this can cause cwd_globals_ctor() to be called multiple times, each with a freshly allocated virtual_cwd_globals instance. At shutdown time however, cwd_globals_dtor() will call realpath_cache_clean(), which then possibly cleans up the same realpath_cache instance more than once. Using AddressSanitzer, this shows up as a heap use-after-free. To avoid this, add a helper function to do the actual work on one instance of a realpath_cache, and call it both from cwd_globals_dtor() and realpath_cache_clean(). The former uses the virtual_cwd_globals parameter passed in via the destructor, the latter uses the CWDG() macro.
show more ...
|
#
36b9bdee |
| 19-May-2021 |
Christoph M. Becker |
Fix #81048: phpinfo(INFO_VARIABLES) "Array to string conversion" Now that we properly dereference references of the superglobals. we also need to dereference contained references to avoi
Fix #81048: phpinfo(INFO_VARIABLES) "Array to string conversion" Now that we properly dereference references of the superglobals. we also need to dereference contained references to avoid to string conversion. Closes GH-7014.
show more ...
|
#
3938bfb5 |
| 18-May-2021 |
Derick Rethans |
The PHP 7.4 branch is now for 7.4.21
|
#
66c3a174 |
| 18-May-2021 |
Graham Campbell |
[ci skip] Removed incorrect news entry Closes GH-7007.
|
#
ead72aab |
| 14-May-2021 |
Kamil Tekiela |
Fix NEWS
|
#
6afbb741 |
| 13-May-2021 |
Kamil Tekiela |
Fixed bug #81037 PDO discards error message text from prepared statement
|
#
28e7addb |
| 12-May-2021 |
Flavio Heleno |
Fix #81032: GD install is affected by external libgd installation This PR replaces the bundled libgd includes from #include <foo.h> with #include "foo.h" for gd-related headers to avoid
Fix #81032: GD install is affected by external libgd installation This PR replaces the bundled libgd includes from #include <foo.h> with #include "foo.h" for gd-related headers to avoid including headers that may be available in system directories instead of the expected local headers. Closes GH-6975.
show more ...
|
#
23a3bbb4 |
| 11-May-2021 |
Christoph M. Becker |
Fix #44643: bound parameters ignore explicit type definitions If `SQLDescribeParam()` fails for a parameter, we must not assume `SQL_LONGVARCHAR` for any param which is not `PDO_PARAM_LO
Fix #44643: bound parameters ignore explicit type definitions If `SQLDescribeParam()` fails for a parameter, we must not assume `SQL_LONGVARCHAR` for any param which is not `PDO_PARAM_LOB`. At least mapping `PDO_PARAM_INT` to `SQL_INTEGER` should be safe, and not introduce a BC break. Closes GH-6973.
show more ...
|
#
04078a59 |
| 10-May-2021 |
Petr Sumbera |
php-fpm: fix Solaris port events.mechanism Bug #65800 Fix by: rainer.jung@kippdata.de
|
#
57918b1a |
| 07-May-2021 |
Christoph M. Becker |
Fix #80863: ZipArchive::extractTo() ignores references We need to cater to references, when traversing the files to extract. While we're at it, we move the `zval_file` declaration into a
Fix #80863: ZipArchive::extractTo() ignores references We need to cater to references, when traversing the files to extract. While we're at it, we move the `zval_file` declaration into a narrower scope. Closes GH-6959.
show more ...
|
#
178bbe34 |
| 06-May-2021 |
Nikita Popov |
Fixed bug #81015 Make sure that the previous opline is part of the same block, otherwise it may be non-dominating. The test case does not fail on PHP-7.4, but I think the genera
Fixed bug #81015 Make sure that the previous opline is part of the same block, otherwise it may be non-dominating. The test case does not fail on PHP-7.4, but I think the general problem can appear on 7.4 as well, so I'm applying the patch to that branch.
show more ...
|
#
0cafd53d |
| 04-May-2021 |
Christoph M. Becker |
Fix #81011: mb_convert_encoding removes references from arrays We need to dereference references. Closes GH-6938.
|
#
0328ff49 |
| 04-May-2021 |
Derick Rethans |
Reset PHP-7.4 for 7.4.20
|
#
42c72ef4 |
| 22-Apr-2021 |
Christoph M. Becker |
Fix #79100: Wrong FTP error messages First we need to properly clear the `inbuf`, what is an amendment to commit d2881adcbc[1]. Then we need to report `php_pollfd_for_ms()` fail
Fix #79100: Wrong FTP error messages First we need to properly clear the `inbuf`, what is an amendment to commit d2881adcbc[1]. Then we need to report `php_pollfd_for_ms()` failures right away; just setting `errno` does not really help, since at least in some cases it would have been overwritten before we actually could check it. We use `php_socket_strerror()` to get a proper error message, and define `ETIMEDOUT` to the proper value on Windows; otherwise we catch the definition in errno.h, which is not compatible with WinSock. The proper solution for this issue would likely be to include something like ext/sockets/windows_common.h. Finally, we ensure that we only report warnings using `inbuf`, if it is not empty. [1] <http://git.php.net/?p=php-src.git;a=commit;h=d2881adcbc9be60de7e7d45a3316b0e11b7eb1e8>. Closes GH-6718.
show more ...
|
#
272df442 |
| 22-Apr-2021 |
Christoph M. Becker |
Fix #73246: XMLReader: encoding length not checked libxml2 expects the passed encoding to be NUL terminated, so we reject strings with NUL bytes right away. Closes GH-6899.
|
#
b8e49fe8 |
| 29-Apr-2021 |
Matteo Beccati |
Revert "Fix #80892: PDO::PARAM_INT is treated the same as PDO::PARAM_STR" This reverts commit 340a06778c39054c7d715bceab82175840d92443.
|
#
7f839762 |
| 26-Mar-2021 |
Christoph M. Becker |
Fix #80460: ODBC doesn't account for SQL_NO_TOTAL indicator The `StrLen_or_IndPtr` parameter usually may be `SQL_NO_TOTAL`; we need to cater to that possibility to avoid working with neg
Fix #80460: ODBC doesn't account for SQL_NO_TOTAL indicator The `StrLen_or_IndPtr` parameter usually may be `SQL_NO_TOTAL`; we need to cater to that possibility to avoid working with negative string lengths and other issues. A noteable exemption are calls to `SQLGetData()` which return `SQL_SUCCESS`; in that case `SQL_NO_TOTAL` can not occur. Closes GH-6809.
show more ...
|
#
60a68a45 |
| 27-Apr-2021 |
Christoph M. Becker |
Add missing NEWS entry for #80710
|
#
c0ae3a7f |
| 22-Apr-2021 |
Christoph M. Becker |
Fix #80901: Info leak in ftp extension We ensure that inbuf is NUL terminated on `ftp_readline()` failure. Closes GH-6894.
|
#
7f9183ce |
| 26-Apr-2021 |
Christoph M. Becker |
Fix typo in NEWS
|
#
97f8ca52 |
| 25-Apr-2021 |
George Peter Banyard |
Fix Bug #80972: Memory exhaustion on invalid string offset Closes GH-6909
|
#
39ddf6b8 |
| 23-Apr-2021 |
Christoph M. Becker |
Fix #67792: HTTP Authorization schemes are treated as case-sensitive We use `zend_binary_strncasecmp()` to avoid any locale issues, and refactor. We also add a test case for Digest auth
Fix #67792: HTTP Authorization schemes are treated as case-sensitive We use `zend_binary_strncasecmp()` to avoid any locale issues, and refactor. We also add a test case for Digest authentication. Closes GH-6900.
show more ...
|
#
1fcea24e |
| 20-Apr-2021 |
Christoph M. Becker |
Fix php_pgsql_fd_cast() wrt. php_stream_can_cast() `php_stream_can_cast()` forwards to `_php_stream_cast()` with `ret` set to `NULL`. `php_pgsql_fd_cast()` needs to cater to that, becau
Fix php_pgsql_fd_cast() wrt. php_stream_can_cast() `php_stream_can_cast()` forwards to `_php_stream_cast()` with `ret` set to `NULL`. `php_pgsql_fd_cast()` needs to cater to that, because otherwise the stream would report that it is not castable. This *might* fix https://bugs.php.net/73903. Closes GH-6888.
show more ...
|
#
ea3c992b |
| 19-Apr-2021 |
Christoph M. Becker |
Fix #80960: opendir() warning wrong info when failed on Windows Firstly, we must not forget to set appropriate error codes for "manual" checks in `virtual_file_ex()`. Secondly,
Fix #80960: opendir() warning wrong info when failed on Windows Firstly, we must not forget to set appropriate error codes for "manual" checks in `virtual_file_ex()`. Secondly, we must not call `php_error_docref2()` for warnings regarding unary functions; thus, we introduce `php_win32_docref1_from_error()`. Closes GH-6872.
show more ...
|
#
c0b1bdcd |
| 15-Apr-2021 |
twosee |
Fixed bug #80929 The function name should be kept if Closure was created from the function which is marked as ZEND_ACC_CALL_VIA_TRAMPOLINE, because it is not a one-time thing and it may be c
Fixed bug #80929 The function name should be kept if Closure was created from the function which is marked as ZEND_ACC_CALL_VIA_TRAMPOLINE, because it is not a one-time thing and it may be called multiple times. Closes GH-6867.
show more ...
|