diff options
| author | Christoph M. Becker <cmbecker69@gmx.de> | 2019-07-30 09:49:39 +0200 |
|---|---|---|
| committer | Christoph M. Becker <cmbecker69@gmx.de> | 2019-07-30 09:49:39 +0200 |
| commit | ef439abd46aa14eb7d0e2ef3f4bd552ce8c3f6ee (patch) | |
| tree | 2feaa3b8ee28e6c55a15fc2bc4d7afb33e1677ec | |
| parent | 6ea13baaf17976a3e4b6a2df814603e640e6cd2c (diff) | |
| download | php-git-ef439abd46aa14eb7d0e2ef3f4bd552ce8c3f6ee.tar.gz | |
Add security related NEWS entries [ci skip]
| -rw-r--r-- | NEWS | 10 |
1 files changed, 10 insertions, 0 deletions
@@ -37,6 +37,12 @@ PHP NEWS . Fixed bug #69044 (discrepency between time and microtime). (krakjoe) . Updated timelib to 2018.02. (Derick) +- EXIF: + . Fixed bug #78256 (heap-buffer-overflow on exif_process_user_comment). + (CVE-2019-11042) (Stas) + . Fixed bug #78222 (heap-buffer-overflow on exif_scan_thumbnail). + (CVE-2019-11041) (Stas) + - FTP: . Fixed bug #78039 (FTP with SSL memory leak). (Nikita) @@ -67,11 +73,15 @@ PHP NEWS - PCRE: . Fixed bug #78197 (PCRE2 version check in configure fails for "##.##-xxx" version strings). (pgnet, Peter Kokot) + . Fixed bug #78338 (Array cross-border reading in PCRE). (cmb) - PDO_Sqlite: . Fixed bug #78192 (SegFault when reuse statement after schema has changed). (Vincent Quatrevieux) +- Phar: + . Fixed bug #77919 (Potential UAF in Phar RSHUTDOWN). (cmb) + - Phpdbg: . Fixed bug #78297 (Include unexistent file memory leak). (Nikita) |