Commit message (Expand) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
| * | | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-09-01 | 0 | -0/+0 | |
| |\ \ \ | | |/ / | ||||||
| | * | | add NEWS for fixes | Stanislav Malyshev | 2015-09-01 | 1 | -1/+35 | |
* | | | | Merge branch 'PHP-5.5' into PHP-5.5.29 | Stanislav Malyshev | 2015-09-01 | 3 | -1/+72 | |
|\ \ \ \ | |/ / / | ||||||
| * | | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-09-01 | 24 | -834/+977 | |
| |\ \ \ | | |/ / | | | / | | |/ | |/| | ||||||
| | * | Merge branch 'PHP-5.4.45' into PHP-5.4 | Stanislav Malyshev | 2015-09-01 | 24 | -877/+1018 | |
| | |\ | ||||||
| | | * | Improve fix for #70172 | Stanislav Malyshev | 2015-09-01 | 3 | -1/+72 | |
| | * | | Add CVE IDs asigned (post release) to PHP 5.4.43 | Lior Kaplan | 2015-08-10 | 1 | -3/+4 | |
| | * | | Add CVE IDs asigned to #69085 (PHP 5.4.39) | Lior Kaplan | 2015-08-10 | 1 | -1/+1 | |
* | | | | Merge branch 'PHP-5.4.45' into PHP-5.5.29 | Stanislav Malyshev | 2015-09-01 | 2 | -5/+23 | |
|\ \ \ \ | | |_|/ | |/| | | ||||||
| * | | | Fix bug #70312 - HAVAL gives wrong hashes in specific cases | Stanislav Malyshev | 2015-09-01 | 2 | -5/+23 | |
* | | | | Merge branch 'PHP-5.4.45' into PHP-5.5.29 | Stanislav Malyshev | 2015-09-01 | 1 | -1/+1 | |
|\ \ \ \ | |/ / / | ||||||
| * | | | fix test | Stanislav Malyshev | 2015-09-01 | 1 | -1/+1 | |
* | | | | Merge branch 'PHP-5.4.45' into PHP-5.5.29 | Stanislav Malyshev | 2015-09-01 | 16 | -267/+587 | |
|\ \ \ \ | |/ / / | ||||||
| * | | | add test | Stanislav Malyshev | 2015-09-01 | 1 | -0/+50 | |
| * | | | Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoubly... | Stanislav Malyshev | 2015-09-01 | 3 | -1/+56 | |
| * | | | Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObject... | Stanislav Malyshev | 2015-09-01 | 2 | -0/+52 | |
| * | | | Fix bug #70172 - Use After Free Vulnerability in unserialize() | Stanislav Malyshev | 2015-08-31 | 4 | -42/+121 | |
| * | | | Fix bug #70388 - SOAP serialize_function_call() type confusion | Stanislav Malyshev | 2015-08-31 | 2 | -44/+69 | |
| * | | | Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when c... | Stanislav Malyshev | 2015-08-30 | 2 | -39/+72 | |
| * | | | Improve fix for #70385 | Stanislav Malyshev | 2015-08-29 | 1 | -2/+2 | |
| * | | | Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) | Stanislav Malyshev | 2015-08-28 | 2 | -76/+100 | |
| * | | | Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte val... | Stanislav Malyshev | 2015-08-28 | 1 | -104/+104 | |
* | | | | More fixes for bug #70219 | Stanislav Malyshev | 2015-08-28 | 2 | -2/+51 | |
* | | | | Merge branch 'PHP-5.4.45' into PHP-5.5.29 | Stanislav Malyshev | 2015-08-25 | 7 | -564/+298 | |
|\ \ \ \ | |/ / / | | / / | |/ / |/| | | ||||||
| * | | Fix bug #70219 (Use after free vulnerability in session deserializer) | Stanislav Malyshev | 2015-08-23 | 6 | -498/+228 | |
| * | | Fix for bug #69782 | Stanislav Malyshev | 2015-08-16 | 1 | -69/+73 | |
| |/ | ||||||
| * | 5.4.45 next | Stanislav Malyshev | 2015-08-04 | 3 | -5/+7 | |
* | | 5.5.29 next | Stanislav Malyshev | 2015-08-04 | 3 | -5/+7 | |
* | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-08-04 | 1 | -2/+2 | |
|\ \ | |/ | ||||||
| * | fix test | Stanislav Malyshev | 2015-08-04 | 1 | -2/+2 | |
* | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-08-04 | 1 | -1/+1 | |
|\ \ | |/ | ||||||
| * | __wakeup doesn't have to be final | Stanislav Malyshev | 2015-08-04 | 1 | -1/+1 | |
* | | update NEWS | Stanislav Malyshev | 2015-08-04 | 1 | -0/+29 | |
* | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-08-04 | 1 | -4/+7 | |
|\ \ | |/ | ||||||
| * | fix test | Stanislav Malyshev | 2015-08-04 | 1 | -4/+7 | |
| * | update NEWS | Stanislav Malyshev | 2015-08-04 | 1 | -2/+30 | |
* | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-08-04 | 21 | -151/+398 | |
|\ \ | |/ | ||||||
| * | Merge branch 'PHP-5.4' into PHP-5.4.44 | Stanislav Malyshev | 2015-08-04 | 4 | -9/+21 | |
| |\ | ||||||
| | * | Fixed bug #69892 | Nikita Popov | 2015-08-01 | 3 | -3/+15 | |
| * | | Fix bug #70019 - limit extracted files to given directory | Stanislav Malyshev | 2015-08-04 | 3 | -4/+68 | |
| * | | Do not do convert_to_* on unserialize, it messes up references | Stanislav Malyshev | 2015-08-04 | 3 | -79/+85 | |
| * | | Fix #69793 - limit what we accept when unserializing exception | Stanislav Malyshev | 2015-08-01 | 3 | -0/+46 | |
| * | | Fixed bug #70169 (Use After Free Vulnerability in unserialize() with SplDoubl... | Stanislav Malyshev | 2015-08-01 | 2 | -12/+43 | |
| * | | Fixed bug #70166 - Use After Free Vulnerability in unserialize() with SPLArra... | Stanislav Malyshev | 2015-08-01 | 2 | -0/+32 | |
| * | | ignore signatures for packages too | Stanislav Malyshev | 2015-08-01 | 2 | -3/+22 | |
| * | | Fix bug #70168 - Use After Free Vulnerability in unserialize() with SplObject... | Stanislav Malyshev | 2015-08-01 | 2 | -33/+54 | |
| * | | Fix bug #70014 - use RAND_bytes instead of deprecated RAND_pseudo_bytes | Stanislav Malyshev | 2015-07-26 | 1 | -4/+2 | |
| * | | Improved fix for Bug #69441 | Stanislav Malyshev | 2015-07-26 | 1 | -5/+8 | |
| * | | Fix bug #70068 (Dangling pointer in the unserialization of ArrayObject items) | Stanislav Malyshev | 2015-07-26 | 2 | -43/+56 | |
| * | | Fix bug #70121 (unserialize() could lead to unexpected methods execution / NU... | Stanislav Malyshev | 2015-07-26 | 2 | -8/+18 |