summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* Fixed res leakphp-5.4.40PHP-5.4.40Xinchen Hui2015-04-141-3/+4
|
* Fixed recently introduced memory leakDmitry Stogov2015-04-141-0/+1
|
* fix non-standard CStanislav Malyshev2015-04-141-54/+55
|
* 5.4.40Stanislav Malyshev2015-04-142-3/+3
|
* Merge branch 'PHP-5.4.40' into PHP-5.4Stanislav Malyshev2015-04-1434-128/+382
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.4.40: update NEWS Fix bug #69441 (Buffer Overflow when parsing tar/zip/phar in phar_set_inode) fix memory leak & add test Fix tests fix CVE num Fix bug #69337 (php_stream_url_wrap_http_ex() type-confusion vulnerability) Fix test Additional fix for bug #69324 More fixes for bug #69152 Fixed bug #69353 (Missing null byte checks for paths in various PHP extensions) Fixed bug #69324 (Buffer Over-read in unserialize when parsing Phar) Fixed bug #69316 (Use-after-free in php_curl related to CURLOPT_FILE/_INFILE/_WRITEHEADER) Fix bug #68486 and bug #69218 (segfault in apache2handler with apache 2.4) Fix bug #68819 (Fileinfo on specific file causes spurious OOM and/or segfault)
| * update NEWSStanislav Malyshev2015-04-141-7/+30
| |
| * Merge branch 'PHP-5.4' into PHP-5.4.40Stanislav Malyshev2015-04-141-1/+1
| |\ | | | | | | | | | | | | * PHP-5.4: fix CVE num
| | * fix CVE numStanislav Malyshev2015-04-121-1/+1
| | |
| * | Fix bug #69441 (Buffer Overflow when parsing tar/zip/phar in phar_set_inode)Stanislav Malyshev2015-04-143-3/+27
| | |
| * | fix memory leak & add testStanislav Malyshev2015-04-122-2/+48
| | |
| * | Fix testsStanislav Malyshev2015-04-124-24/+24
| | |
| * | Fix bug #69337 (php_stream_url_wrap_http_ex() type-confusion vulnerability)Stanislav Malyshev2015-04-121-36/+43
| | |
| * | Fix testStanislav Malyshev2015-04-121-1/+1
| | |
| * | Additional fix for bug #69324Stanislav Malyshev2015-04-111-6/+7
| | | | | | | | | | | | Not so happy about duplication but needed due to bug #69429
| * | More fixes for bug #69152Stanislav Malyshev2015-04-112-0/+19
| | |
| * | Fixed bug #69353 (Missing null byte checks for paths in various PHP extensions)Stanislav Malyshev2015-04-1112-13/+42
| | |
| * | Fixed bug #69324 (Buffer Over-read in unserialize when parsing Phar)Stanislav Malyshev2015-04-114-36/+48
| | |
| * | Fixed bug #69316 (Use-after-free in php_curl related to ↵Stanislav Malyshev2015-04-112-0/+45
| | | | | | | | | | | | CURLOPT_FILE/_INFILE/_WRITEHEADER)
| * | Fix bug #68486 and bug #69218 (segfault in apache2handler with apache 2.4)Stanislav Malyshev2015-04-111-0/+1
| | |
| * | Fix bug #68819 (Fileinfo on specific file causes spurious OOM and/or segfault)Stanislav Malyshev2015-04-113-0/+47
| |/
* | fix CVE numStanislav Malyshev2015-04-141-1/+1
| |
* | fix type in fix for #69085Remi Collet2015-04-131-3/+3
|/
* Fixed bug #68901 (use after free)Xinchen Hui2015-04-112-1/+4
|
* Fixed bug #68740 (NULL Pointer Dereference)Xinchen Hui2015-04-052-0/+7
| | | | (cherry picked from commit 124fb22a13fafa3648e4e15b4f207c7096d8155e)
* Fix bug #66550 (SQLite prepared statement use-after-free)Stanislav Malyshev2015-04-053-0/+42
|
* Better fix for #68601 for perfRemi Collet2015-04-051-6/+6
| | | | https://bitbucket.org/libgd/gd-libgd/commits/81e9a993f2893d651d225646378e3fd1b7465467
* Fix bug #68601 buffer read overflow in gd_gif_in.cRemi Collet2015-04-052-2/+12
|
* Revert "Merge branch 'PHP-5.4' of https://git.php.net/repository/php-src ↵Stanislav Malyshev2015-04-011-1/+0
| | | | | | | into PHP-5.4" This reverts commit fe0ca2745f00940a27bfc8e87db534541a19af70, reversing changes made to 968fbc6acf0bc27be17c0209be7f966e89a55943.
* Fixed bug #69293Dmitry Stogov2015-03-271-1/+1
|
* Merge branch 'PHP-5.4' of https://git.php.net/repository/php-src into PHP-5.4Xinchen Hui2015-03-25143-3677/+3719
|\
| * Bacport fix bug #68741 - Null pointer dereferenceStanislav Malyshev2015-03-222-0/+6
| |
| * Check that the type is correctStanislav Malyshev2015-03-221-1/+1
| |
| * add CVEsStanislav Malyshev2015-03-191-3/+9
| |
| * Fixed bug #69152Dmitry Stogov2015-03-191-0/+6
| |
| * 5.4.40 nextStanislav Malyshev2015-03-173-5/+7
| |
| * Fix bug #69253 - ZIP Integer Overflow leads to writing past heap boundaryStanislav Malyshev2015-03-172-1/+5
| |
| * Fix bug #69248 - heap overflow vulnerability in regcomp.cStanislav Malyshev2015-03-172-1/+12
| | | | | | | | Merged from https://github.com/garyhouston/regex/commit/70bc2965604b6b8aaf260049e64c708dddf85334
| * add test for bug #68976Stanislav Malyshev2015-03-171-0/+37
| |
| * Fixed bug #68976 - Use After Free Vulnerability in unserialize()Stanislav Malyshev2015-03-173-32/+35
| |
| * Fixed bug #69134 (Per Directory Values overrides PHP_INI_SYSTEM ↵Stanislav Malyshev2015-03-172-1/+7
| | | | | | | | configuration options)
| * fix testsStanislav Malyshev2015-03-173-3/+3
| |
| * Fix bug #69207 - move_uploaded_file allows nulls in pathStanislav Malyshev2015-03-172-1/+4
| |
| * Added type checksDmitry Stogov2015-03-032-9/+18
| |
| * Added type checksDmitry Stogov2015-03-033-27/+46
| |
| * Check variable type before its usage as IS_ARRAY.Dmitry Stogov2015-03-021-1/+2
| |
| * Fixed a bug that header value is not terminated by '\0' when accessed ↵George Wang2015-02-251-6/+25
| | | | | | | | through getenv().
| * fix typo in bug#Ferenc Kovacs2015-02-181-1/+1
| |
| * add CVERemi Collet2015-02-181-1/+1
| |
| * 5.4.39 nextStanislav Malyshev2015-02-173-5/+7
| |
| * Port for for bug #68552Stanislav Malyshev2015-02-172-4/+9
| |
View Lorry Controller Status