diff options
author | Christoph M. Becker <cmbecker69@gmx.de> | 2019-12-17 09:37:48 +0100 |
---|---|---|
committer | Christoph M. Becker <cmbecker69@gmx.de> | 2019-12-17 09:37:48 +0100 |
commit | a1457cf8b8b82516bf9561eb43972b63074fa9ae (patch) | |
tree | fa3c881bec52012a06f09baeb80cc1981ecc6fbb | |
parent | b88bd529e74ec0422dc6ed66c19ad8211455ac7e (diff) | |
download | php-git-PHP-7.3.13.tar.gz |
Update NEWSphp-7.3.13PHP-7.3.13
-rw-r--r-- | NEWS | 16 |
1 files changed, 16 insertions, 0 deletions
@@ -2,13 +2,29 @@ PHP NEWS ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| 19 Dec 2019, PHP 7.3.13 +- Bcmath: + . Fixed bug #78878 (Buffer underflow in bc_shift_addsub). (CVE-2019-11046). + (cmb) + - Core: + . Fixed bug #78862 (link() silently truncates after a null byte on Windows). + (CVE-2019-11044). (cmb) + . Fixed bug #78863 (DirectoryIterator class silently truncates after a null + byte). (CVE-2019-11045). (cmb) + . Fixed bug #78943 (mail() may release string with refcount==1 twice). + (CVE-2019-11049). (cmb) . Fixed bug #78787 (Segfault with trait overriding inherited private shadow property). (Nikita) . Fixed bug #78868 (Calling __autoload() with incorrect EG(fake_scope) value). (Antony Dovgal, Dmitry) . Fixed bug #78296 (is_file fails to detect file). (cmb) +- EXIF: + . Fixed bug #78793 (Use-after-free in exif parsing under memory sanitizer). + (CVE-2019-11050). (Nikita) + . Fixed bug #78910 (Heap-buffer-overflow READ in exif). (CVE-2019-11047). + (Nikita) + - GD: . Fixed bug #78849 (GD build broken with -D SIGNED_COMPARE_SLOW). (cmb) |