diff options
author | Stanislav Malyshev <stas@php.net> | 2019-01-06 13:04:51 -0800 |
---|---|---|
committer | Stanislav Malyshev <stas@php.net> | 2019-01-06 13:08:24 -0800 |
commit | 08bb0ce4e496d21190a8cff676b4aad3a4549e06 (patch) | |
tree | 39890024aad13e63ffc8692c8801adcccb12c598 | |
parent | 0c3503201244905611dfaac68f96ca840b923b16 (diff) | |
download | php-git-08bb0ce4e496d21190a8cff676b4aad3a4549e06.tar.gz |
Add NEWS
-rw-r--r-- | NEWS | 25 |
1 files changed, 25 insertions, 0 deletions
@@ -2,9 +2,34 @@ PHP NEWS ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| ?? ??? 2018, PHP 7.1.26 +- Core: + . Fixed bug #77369 (memcpy with negative length via crafted DNS response). (Stas) + +- GD: + . Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to + use-after-free). (cmb) + . Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). (cmb) + - IMAP: . Fixed bug #77020 (null pointer dereference in imap_mail). (cmb) +- Mbstring: + . Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). (Stas) + . Fixed bug #77371 (heap buffer overflow in mb regex functions + - compile_string_node). (Stas) + . Fixed bug #77381 (heap buffer overflow in multibyte match_at). (Stas) + . Fixed bug #77382 (heap buffer overflow due to incorrect length in + expand_case_fold_string). (Stas) + . Fixed bug #77385 (buffer overflow in fetch_token). (Stas) + . Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). (Stas) + +- Phar: + . Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). (Stas) + +- Xmlrpc: + . Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). (cmb) + . Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). (Stas) + 06 Dec 2018, PHP 7.1.25 - Core: |