Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fixed res leakphp-5.4.40PHP-5.4.40 | Xinchen Hui | 2015-04-14 | 1 | -3/+4 |
| | |||||
* | Fixed recently introduced memory leak | Dmitry Stogov | 2015-04-14 | 1 | -0/+1 |
| | |||||
* | fix non-standard C | Stanislav Malyshev | 2015-04-14 | 1 | -54/+55 |
| | |||||
* | 5.4.40 | Stanislav Malyshev | 2015-04-14 | 2 | -3/+3 |
| | |||||
* | Merge branch 'PHP-5.4.40' into PHP-5.4 | Stanislav Malyshev | 2015-04-14 | 34 | -128/+382 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.4.40: update NEWS Fix bug #69441 (Buffer Overflow when parsing tar/zip/phar in phar_set_inode) fix memory leak & add test Fix tests fix CVE num Fix bug #69337 (php_stream_url_wrap_http_ex() type-confusion vulnerability) Fix test Additional fix for bug #69324 More fixes for bug #69152 Fixed bug #69353 (Missing null byte checks for paths in various PHP extensions) Fixed bug #69324 (Buffer Over-read in unserialize when parsing Phar) Fixed bug #69316 (Use-after-free in php_curl related to CURLOPT_FILE/_INFILE/_WRITEHEADER) Fix bug #68486 and bug #69218 (segfault in apache2handler with apache 2.4) Fix bug #68819 (Fileinfo on specific file causes spurious OOM and/or segfault) | ||||
| * | update NEWS | Stanislav Malyshev | 2015-04-14 | 1 | -7/+30 |
| | | |||||
| * | Merge branch 'PHP-5.4' into PHP-5.4.40 | Stanislav Malyshev | 2015-04-14 | 1 | -1/+1 |
| |\ | | | | | | | | | | | | | * PHP-5.4: fix CVE num | ||||
| | * | fix CVE num | Stanislav Malyshev | 2015-04-12 | 1 | -1/+1 |
| | | | |||||
| * | | Fix bug #69441 (Buffer Overflow when parsing tar/zip/phar in phar_set_inode) | Stanislav Malyshev | 2015-04-14 | 3 | -3/+27 |
| | | | |||||
| * | | fix memory leak & add test | Stanislav Malyshev | 2015-04-12 | 2 | -2/+48 |
| | | | |||||
| * | | Fix tests | Stanislav Malyshev | 2015-04-12 | 4 | -24/+24 |
| | | | |||||
| * | | Fix bug #69337 (php_stream_url_wrap_http_ex() type-confusion vulnerability) | Stanislav Malyshev | 2015-04-12 | 1 | -36/+43 |
| | | | |||||
| * | | Fix test | Stanislav Malyshev | 2015-04-12 | 1 | -1/+1 |
| | | | |||||
| * | | Additional fix for bug #69324 | Stanislav Malyshev | 2015-04-11 | 1 | -6/+7 |
| | | | | | | | | | | | | Not so happy about duplication but needed due to bug #69429 | ||||
| * | | More fixes for bug #69152 | Stanislav Malyshev | 2015-04-11 | 2 | -0/+19 |
| | | | |||||
| * | | Fixed bug #69353 (Missing null byte checks for paths in various PHP extensions) | Stanislav Malyshev | 2015-04-11 | 12 | -13/+42 |
| | | | |||||
| * | | Fixed bug #69324 (Buffer Over-read in unserialize when parsing Phar) | Stanislav Malyshev | 2015-04-11 | 4 | -36/+48 |
| | | | |||||
| * | | Fixed bug #69316 (Use-after-free in php_curl related to ↵ | Stanislav Malyshev | 2015-04-11 | 2 | -0/+45 |
| | | | | | | | | | | | | CURLOPT_FILE/_INFILE/_WRITEHEADER) | ||||
| * | | Fix bug #68486 and bug #69218 (segfault in apache2handler with apache 2.4) | Stanislav Malyshev | 2015-04-11 | 1 | -0/+1 |
| | | | |||||
| * | | Fix bug #68819 (Fileinfo on specific file causes spurious OOM and/or segfault) | Stanislav Malyshev | 2015-04-11 | 3 | -0/+47 |
| |/ | |||||
* | | fix CVE num | Stanislav Malyshev | 2015-04-14 | 1 | -1/+1 |
| | | |||||
* | | fix type in fix for #69085 | Remi Collet | 2015-04-13 | 1 | -3/+3 |
|/ | |||||
* | Fixed bug #68901 (use after free) | Xinchen Hui | 2015-04-11 | 2 | -1/+4 |
| | |||||
* | Fixed bug #68740 (NULL Pointer Dereference) | Xinchen Hui | 2015-04-05 | 2 | -0/+7 |
| | | | | (cherry picked from commit 124fb22a13fafa3648e4e15b4f207c7096d8155e) | ||||
* | Fix bug #66550 (SQLite prepared statement use-after-free) | Stanislav Malyshev | 2015-04-05 | 3 | -0/+42 |
| | |||||
* | Better fix for #68601 for perf | Remi Collet | 2015-04-05 | 1 | -6/+6 |
| | | | | https://bitbucket.org/libgd/gd-libgd/commits/81e9a993f2893d651d225646378e3fd1b7465467 | ||||
* | Fix bug #68601 buffer read overflow in gd_gif_in.c | Remi Collet | 2015-04-05 | 2 | -2/+12 |
| | |||||
* | Revert "Merge branch 'PHP-5.4' of https://git.php.net/repository/php-src ↵ | Stanislav Malyshev | 2015-04-01 | 1 | -1/+0 |
| | | | | | | | into PHP-5.4" This reverts commit fe0ca2745f00940a27bfc8e87db534541a19af70, reversing changes made to 968fbc6acf0bc27be17c0209be7f966e89a55943. | ||||
* | Fixed bug #69293 | Dmitry Stogov | 2015-03-27 | 1 | -1/+1 |
| | |||||
* | Merge branch 'PHP-5.4' of https://git.php.net/repository/php-src into PHP-5.4 | Xinchen Hui | 2015-03-25 | 143 | -3677/+3719 |
|\ | |||||
| * | Bacport fix bug #68741 - Null pointer dereference | Stanislav Malyshev | 2015-03-22 | 2 | -0/+6 |
| | | |||||
| * | Check that the type is correct | Stanislav Malyshev | 2015-03-22 | 1 | -1/+1 |
| | | |||||
| * | add CVEs | Stanislav Malyshev | 2015-03-19 | 1 | -3/+9 |
| | | |||||
| * | Fixed bug #69152 | Dmitry Stogov | 2015-03-19 | 1 | -0/+6 |
| | | |||||
| * | 5.4.40 next | Stanislav Malyshev | 2015-03-17 | 3 | -5/+7 |
| | | |||||
| * | Fix bug #69253 - ZIP Integer Overflow leads to writing past heap boundary | Stanislav Malyshev | 2015-03-17 | 2 | -1/+5 |
| | | |||||
| * | Fix bug #69248 - heap overflow vulnerability in regcomp.c | Stanislav Malyshev | 2015-03-17 | 2 | -1/+12 |
| | | | | | | | | Merged from https://github.com/garyhouston/regex/commit/70bc2965604b6b8aaf260049e64c708dddf85334 | ||||
| * | add test for bug #68976 | Stanislav Malyshev | 2015-03-17 | 1 | -0/+37 |
| | | |||||
| * | Fixed bug #68976 - Use After Free Vulnerability in unserialize() | Stanislav Malyshev | 2015-03-17 | 3 | -32/+35 |
| | | |||||
| * | Fixed bug #69134 (Per Directory Values overrides PHP_INI_SYSTEM ↵ | Stanislav Malyshev | 2015-03-17 | 2 | -1/+7 |
| | | | | | | | | configuration options) | ||||
| * | fix tests | Stanislav Malyshev | 2015-03-17 | 3 | -3/+3 |
| | | |||||
| * | Fix bug #69207 - move_uploaded_file allows nulls in path | Stanislav Malyshev | 2015-03-17 | 2 | -1/+4 |
| | | |||||
| * | Added type checks | Dmitry Stogov | 2015-03-03 | 2 | -9/+18 |
| | | |||||
| * | Added type checks | Dmitry Stogov | 2015-03-03 | 3 | -27/+46 |
| | | |||||
| * | Check variable type before its usage as IS_ARRAY. | Dmitry Stogov | 2015-03-02 | 1 | -1/+2 |
| | | |||||
| * | Fixed a bug that header value is not terminated by '\0' when accessed ↵ | George Wang | 2015-02-25 | 1 | -6/+25 |
| | | | | | | | | through getenv(). | ||||
| * | fix typo in bug# | Ferenc Kovacs | 2015-02-18 | 1 | -1/+1 |
| | | |||||
| * | add CVE | Remi Collet | 2015-02-18 | 1 | -1/+1 |
| | | |||||
| * | 5.4.39 next | Stanislav Malyshev | 2015-02-17 | 3 | -5/+7 |
| | | |||||
| * | Port for for bug #68552 | Stanislav Malyshev | 2015-02-17 | 2 | -4/+9 |
| | |