2d3d7241 | 13-May-2020 |
Christoph M. Becker |
Fix #77423: parse_url() will deliver a wrong host to user To avoid that `parse_url()` returns an erroneous host, which would be valid for `FILTER_VALIDATE_URL`, we make sure that only us
Fix #77423: parse_url() will deliver a wrong host to user To avoid that `parse_url()` returns an erroneous host, which would be valid for `FILTER_VALIDATE_URL`, we make sure that only userinfo which is valid according to RFC 3986 is treated as such. For consistency with the existing url parsing code, we use ctype functions, although that is not necessarily correct.
show more ...
|
662083fc | 30-Sep-2020 |
Remi Collet |
bump version to 7.2.35-dev |
af500b86 | 29-Sep-2020 |
Remi Collet |
[ci skip] typo |
7bc112a1 | 29-Sep-2020 |
Stanislav Malyshev |
Update NEWS & UPGRADING |
6559fe91 | 21-Sep-2020 |
Stanislav Malyshev |
Do not decode cookie names anymore |
0216630e | 27-Sep-2020 |
Stanislav Malyshev |
Fix bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV) |
6b8ffdbd | 04-Aug-2020 |
Remi Collet |
bump version to 7.2.34-dev |
07aeb917 | 03-Aug-2020 |
Stanislav Malyshev |
Update NEWS |
ff577b04 | 21-Jul-2020 |
Christoph M. Becker |
Fix #79877: getimagesize function silently truncates after a null byte We have to check for NUL bytes if `getimagesize()` has been called. |
7355ab81 | 14-Jul-2020 |
Christoph M. Becker |
Fix #79797: Use of freed hash key in the phar_parse_zipfile function We must not use heap memory after we freed it. |
c68d48de | 07-Jul-2020 |
Sara Golemon |
Prep for 7.2.33 |
9588c847 | 07-Jul-2020 |
Sara Golemon |
Prep NEWS for 7.2.32 release |
4cf8be71 | 12-May-2020 |
Remi Collet |
bump version to 7.2.32-dev |
b4afd214 | 11-May-2020 |
Stanislav Malyshev |
Update NEWS |
3c8582ca | 18-Mar-2020 |
Christoph M. Becker |
Fix #78876: Long variables cause OOM and temp files are not cleaned We use the proper type for size calculations, which is `size_t`. |
1c9bd513 | 18-Mar-2020 |
Christoph M. Becker |
Fix #78875: Long filenames cause OOM and temp files are not cleaned We must not cast `size_t` to `int` (unless the `size_t` value is guaranteed to be less than or equal to `INT_MAX`). I
Fix #78875: Long filenames cause OOM and temp files are not cleaned We must not cast `size_t` to `int` (unless the `size_t` value is guaranteed to be less than or equal to `INT_MAX`). In this case we can declare `array_len` as `size_t` in the first place.
show more ...
|
bef96b9d | 14-Apr-2020 |
Sara Golemon |
Update NEWS for 7.2.31 |
cf083535 | 14-Apr-2020 |
Sara Golemon |
Update CREDITS for PHP 7.2.30 |
bd49622a | 14-Apr-2020 |
Sara Golemon |
Update NEWS for PHP 7.2.30 |
13842eda | 13-Apr-2020 |
dinosaur |
Fixed bug #79468 Close the stream filter resources when removing them from the stream. |
6df761b7 | 14-Apr-2020 |
Sara Golemon |
NEWS |
9d6bf822 | 14-Apr-2020 |
Stanislav Malyshev |
Fix bug #79465 - use unsigneds as indexes. |
14fcc813 | 14-Apr-2020 |
Stanislav Malyshev |
Fix bug #79330 - make all execution modes consistent in rejecting \0 |
3072b77c | 17-Mar-2020 |
Remi Collet |
bump verison to 7.2.30-dev |
6a4fff46 | 17-Mar-2020 |
Christoph M. Becker |
Fix NEWS |