snprintf() -> slprintf()

- Avoid sprintf, even when checked copy'n'paste or changes lead to errors

MFH: Bump year.

Fixed bug #39984 (redirect response code in header() could be ignored in
CGI sapi).

MFH

MFH: fix possible invalid read (reproducible only on big-endian machines)

Whitespace

MFH: Fixed mess with CGI/CLI -d command line option (now it works with cgi; constants are working exactly like in php.ini; with FastCGI -d affects all requests).

Add input_filter hook call in getenv()

bump year and license version

MFH: typofix

MFH: Prevent header injection by limiting each header to a single line.

MFH

- sapi_header_op(SAPI_HEADER_(REPLACE|ADD), {NULL, 0, 0}) caused HTTP response splitting
- sapi_send_headers() already takes care of default_content_type (left over of fix for bug #29983)

Fixed minor memory leak triggered by: -dzlib.output_compression=1 -m

MFH: Fixed bug #29983 (PHP does not explicitly set mime type & charset).

- Bumber up year

Fixed double-free in the digest authentication handling.

# Found and Reported by Stefan Esser

added a server variable PHP_AUTH_DIGEST to support HTTP Digest Authentication.

Fix for bug #32263
This adds proto_num to request_info. It is defaulted to HTTP 1.0 (1000)
such that it has a valid value even if the underlying sapi doesn't set it
correctly. It is the

Fix for bug #32263
This adds proto_num to request_info. It is defaulted to HTTP 1.0 (1000)
such that it has a valid value even if the underlying sapi doesn't set it
correctly. It is then used to determine if a 302 or a 303 should be sent
on a Location redirect. Any non GET/HEAD HTTP 1.1 redirect will get a 303
instead of a 302 to be compatible with the HTTP spec.

show more ...

FR 32275 - fifth parameter to preg_replace() to count number of replaces
made.
#it would be nice if someone of the doc team documents it. thanks!

- Fixed bug #32109 ($_POST is not populated in multithreaded environment).

- Silly typo.

Nuke unused variables when PCRE is not compiled in

Remove the useless TSRM_FETCH calls