469ad325 | 21-Apr-2024 |
Ilija Tovilo |
[skip ci] Backport 0e7ef95 and 4f0d4c0 |
ca5fe403 | 10-Apr-2024 |
Ben Ramsey |
PHP-8.1 is now for PHP 8.1.29-dev |
de4f7f93 | 10-Apr-2024 |
Ben Ramsey |
Update NEWS |
0ba5229a | 29-Mar-2024 |
Jakub Zelenka |
Fix bug GHSA-q6x7-frmf-grcw: password_verify can erroneously return true Disallow null character in bcrypt password |
093c08af | 17-Mar-2024 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GHSA-wpj3-hf5j-x4v4: __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix The check happened too early as later code paths may perform more mangling rules. Move the chec
Fix GHSA-wpj3-hf5j-x4v4: __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix The check happened too early as later code paths may perform more mangling rules. Move the check downwards right before adding the actual variable.
show more ...
|
e3c784f2 | 15-Feb-2024 |
Jakub Zelenka |
Add proc_open escaping for cmd file execution |
4922b9eb | 31-Jan-2024 |
Ayesh Karunaratne |
ci: update caddy job to use GitHub Releases The caddyserver.com download page is unreliable, and it also recommends to use GitHub releases instead. Closes #13296 |
8f6610ce | 05-Dec-2023 |
Patrick Allaert |
PHP-8.1 is now for PHP 8.1.28-dev (If released one day!) |
df259f88 | 17-Nov-2023 |
Patrick Prasse |
Fix bug GH-12705: Segmentation fault in fpm_status_export_to_zval Closes GH-12706 |
3f57bd80 | 24-Nov-2023 |
ddv |
Fix phpGH-12763: PGSQL pg_untrace(): Argument #1 ($connection) must be of type resource or null, PgSql\Connection given. |
7e7817bc | 25-Aug-2023 |
Mikhail Galanin |
Avoid using uninitialised struct Closes GH-12046. |
d404e1d1 | 25-Nov-2023 |
Bob Weinand |
USE_ZEND_ALLOC=1 in tests with zend_test.observe_opline_in_zendmm=1 |
1305ea23 | 24-Nov-2023 |
Bob Weinand |
Add NEWS entry for GH-12768 |
8d2df86b | 24-Nov-2023 |
Florian Engelhardt |
Fix invalid opline in OOM handlers within ZEND_FUNC_GET_ARGS and ZEND_BIND_STATIC (#12768) * fix segfault in `ZEND_BIND_STATIC` In case a `ZEND_BIND_STATIC` is being executed, while
Fix invalid opline in OOM handlers within ZEND_FUNC_GET_ARGS and ZEND_BIND_STATIC (#12768) * fix segfault in `ZEND_BIND_STATIC` In case a `ZEND_BIND_STATIC` is being executed, while the current chunk is full, the `zend_array_dup()` call will trigger a OOM in ZendMM which will crash, as the opline might be a dangling pointer. * add missing test * `assert()`ing seems easier than trying to make the compiler to not optimize * moved from function call to INI setting, so we can use this in other places as well * make `assert()` work no NDEBUG builds * document magic number * fix segfault in `ZEND_FUNC_GET_ARGS` In case a `ZEND_FUNC_GET_ARGS` is being executed, while the current chunk is full, the `zend_new_array()` call will trigger a OOM in ZendMM which will crash, as the opline might be a dangling pointer. --------- Co-authored-by: Florian Engelhardt <florian@engelhardt.tc>
show more ...
|
87107f86 | 22-Nov-2023 |
Dmitry Stogov |
Fixed GH-12748: Function JIT emits "could not convert to int" warning at the same time as invalid offset Error |
fafa34d9 | 18-Nov-2023 |
Muhammad Moinur Rahman |
Add host_cpu type for FreeBSD In FreeBSD world x86_64 host type is identified as amd64 so add proper checks for FreeBSD amd64 hosts. Close GH-12736 |
daa38dd6 | 20-Nov-2023 |
Ilija Tovilo |
Fix in-place modification of filename in php_message_handler_for_zend php_strip_url_passwd modifies url in-place. We cannot assume from php_message_handler_for_zend that data is a tempor
Fix in-place modification of filename in php_message_handler_for_zend php_strip_url_passwd modifies url in-place. We cannot assume from php_message_handler_for_zend that data is a temporary, modifiable string. Fixes oss-fuzz #64209 Closes GH-12733
show more ...
|
1fdcfa4e | 20-Nov-2023 |
Ilija Tovilo |
Fix use-after-free of name in var-var with malicious error handler Fixes oss-fuzz #54325 Closes GH-12732 |
55e07484 | 23-Oct-2023 |
Jakub Zelenka |
Fix #50713: openssl_pkcs7_verify() may ignore untrusted CAs Closes GH-12499 |
2b4a47cc | 23-Nov-2023 |
Ben Ramsey |
Merge changes to CertificateGenerator.inc from PHP-8.2 This pulls only the changes made to CertificateGenerator.inc in the PHP-8.2 branch from commit 505e8d2a04b258d9982e8994e14f5e75be5e
Merge changes to CertificateGenerator.inc from PHP-8.2 This pulls only the changes made to CertificateGenerator.inc in the PHP-8.2 branch from commit 505e8d2a04b258d9982e8994e14f5e75be5e1cf8. Co-authored-by: Jakub Zelenka <bukka@php.net>
show more ...
|
243fa9c1 | 15-Nov-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GH-12616: DOM: Removing XMLNS namespace node results in invalid default: prefix The namespace data is freed and set to NULL, but there remain references to the namespace declaration
Fix GH-12616: DOM: Removing XMLNS namespace node results in invalid default: prefix The namespace data is freed and set to NULL, but there remain references to the namespace declaration nodes. This (rightfully) confuses libxml2 because its invariants are broken. We also have to remove all remaining references from the subtree. This fixes the data corruption bug. Closes GH-12681.
show more ...
|
6a76e5d0 | 17-Nov-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix GH-12702: libxml2 2.12.0 issue building from src Fixes GH-12702. Co-authored-by: nono303 <github@nono303.net> |
e43ffb50 | 17-Nov-2023 |
Jakub Zelenka |
Fix stream fclose_stdiocast_flush_in_progress type |
a7a6151c | 16-Nov-2023 |
Jakub Zelenka |
Fix bug #79945: Stream wrappers in imagecreatefrompng causes segfault Closes GH-12696 |
0b754fc4 | 01-Mar-2023 |
Ilija Tovilo |
Temporarily disable failing zlib tests on travis (#10738) |