diff options
| -rw-r--r-- | NEWS | 20 |
1 files changed, 10 insertions, 10 deletions
@@ -4,21 +4,11 @@ PHP NEWS - Core: . Fixed bug #79364 (When copy empty array, next key is unspecified). (cmb) - . Fixed bug #79329 (get_headers() silently truncates after a null byte) - (CVE-2020-7066) (cmb) . Fixed bug #78210 (Invalid pointer address). (cmb, Nikita) - CURL: . Fixed bug #79199 (curl_copy_handle() memory leak). (cmb) -- EXIF: - . Fixed bug #79282 (Use-of-uninitialized-value in exif) (CVE-2020-7064) - (Nikita) - -- MBstring: - . Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at - php_unicode_tolower_full) (CVE-2020-7065) (cmb) - - SimpleXML: . Fixed bug #61597 (SXE properties may lack attributes and content). (cmb) @@ -51,6 +41,14 @@ PHP NEWS . Fixed bug #79311 (enchant_dict_suggest() fails on big endian architecture). (cmb) +- EXIF: + . Fixed bug #79282 (Use-of-uninitialized-value in exif). (CVE-2020-7064) + (Nikita) + +- MBstring: + . Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at + php_unicode_tolower_full). (CVE-2020-7065) (cmb) + - MySQLi: . Fixed bug #64032 (mysqli reports different client_version). (cmb) @@ -69,6 +67,8 @@ PHP NEWS . Fixed bug #79294 (::columnType() may fail after SQLite3Stmt::reset()). (cmb) - Standard: + . Fixed bug #79329 (get_headers() silently truncates after a null byte). + (CVE-2020-7066) (cmb) . Fixed bug #79254 (getenv() w/o arguments not showing changes). (cmb) . Fixed bug #79265 (Improper injection of Host header when using fopen for http requests). (Miguel Xavier Penha Neto) |