| ca5fe403 | 10-Apr-2024 |
Ben Ramsey |
PHP-8.1 is now for PHP 8.1.29-dev |
| de4f7f93 | 10-Apr-2024 |
Ben Ramsey |
Update NEWS |
| 0ba5229a | 29-Mar-2024 |
Jakub Zelenka |
Fix bug GHSA-q6x7-frmf-grcw: password_verify can erroneously return true
Disallow null character in bcrypt password |
| 093c08af | 17-Mar-2024 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GHSA-wpj3-hf5j-x4v4: __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
The check happened too early as later code paths may perform more
mangling rules. Move the chec
Fix GHSA-wpj3-hf5j-x4v4: __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix
The check happened too early as later code paths may perform more
mangling rules. Move the check downwards right before adding the actual
variable.
show more ...
|
| e3c784f2 | 15-Feb-2024 |
Jakub Zelenka |
Add proc_open escaping for cmd file execution |
| 4922b9eb | 31-Jan-2024 |
Ayesh Karunaratne |
ci: update caddy job to use GitHub Releases
The caddyserver.com download page is unreliable, and it also recommends to use GitHub releases instead.
Closes #13296 |
| 8f6610ce | 05-Dec-2023 |
Patrick Allaert |
PHP-8.1 is now for PHP 8.1.28-dev
(If released one day!) |
| df259f88 | 17-Nov-2023 |
Patrick Prasse |
Fix bug GH-12705: Segmentation fault in fpm_status_export_to_zval
Closes GH-12706 |
| 3f57bd80 | 24-Nov-2023 |
ddv |
Fix phpGH-12763: PGSQL pg_untrace(): Argument #1 ($connection) must be of type resource or null, PgSql\Connection given. |
| 7e7817bc | 25-Aug-2023 |
Mikhail Galanin |
Avoid using uninitialised struct
Closes GH-12046. |
| d404e1d1 | 25-Nov-2023 |
Bob Weinand |
USE_ZEND_ALLOC=1 in tests with zend_test.observe_opline_in_zendmm=1 |
| 1305ea23 | 24-Nov-2023 |
Bob Weinand |
Add NEWS entry for GH-12768 |
| 8d2df86b | 24-Nov-2023 |
Florian Engelhardt |
Fix invalid opline in OOM handlers within ZEND_FUNC_GET_ARGS and ZEND_BIND_STATIC (#12768)
* fix segfault in `ZEND_BIND_STATIC`
In case a `ZEND_BIND_STATIC` is being executed, while
Fix invalid opline in OOM handlers within ZEND_FUNC_GET_ARGS and ZEND_BIND_STATIC (#12768)
* fix segfault in `ZEND_BIND_STATIC`
In case a `ZEND_BIND_STATIC` is being executed, while the current chunk is full,
the `zend_array_dup()` call will trigger a OOM in ZendMM which will crash, as
the opline might be a dangling pointer.
* add missing test
* `assert()`ing seems easier than trying to make the compiler to not optimize
* moved from function call to INI setting, so we can use this in other places as well
* make `assert()` work no NDEBUG builds
* document magic number
* fix segfault in `ZEND_FUNC_GET_ARGS`
In case a `ZEND_FUNC_GET_ARGS` is being executed, while the current chunk is
full, the `zend_new_array()` call will trigger a OOM in ZendMM which will crash,
as the opline might be a dangling pointer.
---------
Co-authored-by: Florian Engelhardt <florian@engelhardt.tc>
show more ...
|
| 87107f86 | 22-Nov-2023 |
Dmitry Stogov |
Fixed GH-12748: Function JIT emits "could not convert to int" warning at the same time as invalid offset Error |
| fafa34d9 | 18-Nov-2023 |
Muhammad Moinur Rahman |
Add host_cpu type for FreeBSD
In FreeBSD world x86_64 host type is identified as amd64 so add proper
checks for FreeBSD amd64 hosts.
Close GH-12736 |
| daa38dd6 | 20-Nov-2023 |
Ilija Tovilo |
Fix in-place modification of filename in php_message_handler_for_zend
php_strip_url_passwd modifies url in-place. We cannot assume from
php_message_handler_for_zend that data is a tempor
Fix in-place modification of filename in php_message_handler_for_zend
php_strip_url_passwd modifies url in-place. We cannot assume from
php_message_handler_for_zend that data is a temporary, modifiable string.
Fixes oss-fuzz #64209
Closes GH-12733
show more ...
|
| 1fdcfa4e | 20-Nov-2023 |
Ilija Tovilo |
Fix use-after-free of name in var-var with malicious error handler
Fixes oss-fuzz #54325
Closes GH-12732 |
| 55e07484 | 23-Oct-2023 |
Jakub Zelenka |
Fix #50713: openssl_pkcs7_verify() may ignore untrusted CAs
Closes GH-12499 |
| 2b4a47cc | 23-Nov-2023 |
Ben Ramsey |
Merge changes to CertificateGenerator.inc from PHP-8.2
This pulls only the changes made to CertificateGenerator.inc in the PHP-8.2
branch from commit 505e8d2a04b258d9982e8994e14f5e75be5e
Merge changes to CertificateGenerator.inc from PHP-8.2
This pulls only the changes made to CertificateGenerator.inc in the PHP-8.2
branch from commit 505e8d2a04b258d9982e8994e14f5e75be5e1cf8.
Co-authored-by: Jakub Zelenka <bukka@php.net>
show more ...
|
| 243fa9c1 | 15-Nov-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GH-12616: DOM: Removing XMLNS namespace node results in invalid default: prefix
The namespace data is freed and set to NULL, but there remain references
to the namespace declaration
Fix GH-12616: DOM: Removing XMLNS namespace node results in invalid default: prefix
The namespace data is freed and set to NULL, but there remain references
to the namespace declaration nodes. This (rightfully) confuses libxml2
because its invariants are broken. We also have to remove all remaining
references from the subtree. This fixes the data corruption bug.
Closes GH-12681.
show more ...
|
| 6a76e5d0 | 17-Nov-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GH-12702: libxml2 2.12.0 issue building from src
Fixes GH-12702.
Co-authored-by: nono303 <github@nono303.net> |
| e43ffb50 | 17-Nov-2023 |
Jakub Zelenka |
Fix stream fclose_stdiocast_flush_in_progress type |
| a7a6151c | 16-Nov-2023 |
Jakub Zelenka |
Fix bug #79945: Stream wrappers in imagecreatefrompng causes segfault
Closes GH-12696 |
| 0b754fc4 | 01-Mar-2023 |
Ilija Tovilo |
Temporarily disable failing zlib tests on travis (#10738) |
| e41cbd21 | 17-Nov-2023 |
Jakub Zelenka |
Skip slow tests on Travis
Closes GH-12697 |
