Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | 5.5.36php-5.5.36PHP-5.5.36 | Julien Pauli | 2016-05-25 | 3 | -4/+3 |
| | |||||
* | Fix memory leak in imagescale() | Stanislav Malyshev | 2016-05-24 | 2 | -4/+4 |
| | |||||
* | Update NEWS | Stanislav Malyshev | 2016-05-24 | 1 | -2/+12 |
| | |||||
* | Better fix for bug #72135 | Stanislav Malyshev | 2016-05-24 | 1 | -4/+5 |
| | |||||
* | Fixed bug #72227: imagescale out-of-bounds read | Stanislav Malyshev | 2016-05-23 | 2 | -8/+23 |
| | | | | Ported from https://github.com/libgd/libgd/commit/4f65a3e4eedaffa1efcf9ee1eb08f0b504fbc31a | ||||
* | Fix bug #72241: get_icu_value_internal out-of-bounds read | Stanislav Malyshev | 2016-05-22 | 2 | -117/+132 |
| | |||||
* | Fix bug #72135 - don't create strings with lengths outside int range | Stanislav Malyshev | 2016-05-15 | 1 | -23/+27 |
| | |||||
* | Add check for string overflow to all string add operations | Stanislav Malyshev | 2016-05-09 | 1 | -0/+7 |
| | |||||
* | Fix bug #72114 - int/size_t confusion in fread | Stanislav Malyshev | 2016-05-09 | 2 | -0/+18 |
| | |||||
* | Updated NEWS | Julien Pauli | 2016-05-02 | 1 | -5/+8 |
| | |||||
* | Backport of fixed for bug #71331 - Uninitialized pointer in ↵ | Julien Pauli | 2016-05-02 | 4 | -2/+18 |
|\ | | | | | | | phar_make_dirstream() | ||||
| * | Fixed bug #71331 - Uninitialized pointer in phar_make_dirstream() | Stanislav Malyshev | 2016-04-28 | 4 | -2/+18 |
| | | |||||
* | | Update PHP 5.5 NEWS entries with CVE info | Lior Kaplan | 2016-05-01 | 1 | -27/+34 |
| | | |||||
* | | Added CVE | Julien Pauli | 2016-04-29 | 1 | -1/+1 |
|/ | |||||
* | Updated NEWS | Julien Pauli | 2016-04-27 | 1 | -0/+3 |
| | |||||
* | Fix memory leak | Stanislav Malyshev | 2016-04-26 | 1 | -0/+3 |
| | |||||
* | Fix bug #72099: xml_parse_into_struct segmentation fault | Stanislav Malyshev | 2016-04-26 | 2 | -53/+70 |
| | |||||
* | 5.5.36 now | Julien Pauli | 2016-04-26 | 3 | -5/+24 |
| | |||||
* | Fix bug #72094 - Out of bounds heap read access in exif header processing | Stanislav Malyshev | 2016-04-24 | 6 | -2/+76 |
| | |||||
* | Fix bug #72093: bcpowmod accepts negative scale and corrupts _one_ definition | Stanislav Malyshev | 2016-04-24 | 3 | -22/+57 |
| | | | | | We can not modify result since it can be copy of _zero_ or _one_, etc. and "copy" in bcmath is just bumping the refcount. | ||||
* | Fix bug #72061 - Out-of-bounds reads in zif_grapheme_stripos with negative ↵ | Stanislav Malyshev | 2016-04-24 | 2 | -5/+22 |
| | | | | offset | ||||
* | Fix for bug #71912 (libgd: signedness vulnerability) | Stanislav Malyshev | 2016-04-18 | 3 | -0/+19 |
| | |||||
* | Typo in NEWS | Julien Pauli | 2016-03-31 | 1 | -1/+1 |
| | |||||
* | fix borked mainstream patch | Anatol Belski | 2016-03-31 | 1 | -1/+1 |
| | |||||
* | 5.5.35 now | Julien Pauli | 2016-03-29 | 3 | -5/+25 |
| | |||||
* | fix dir separator in test | Anatol Belski | 2016-03-29 | 1 | -2/+2 |
| | |||||
* | Fixed bug #71527 Buffer over-write in finfo_open with malformed magic file | Anatol Belski | 2016-03-29 | 3 | -1/+21 |
| | | | | | The actual fix is applying the upstream patch from https://github.com/file/file/commit/6713ca45e7757297381f4b4cdb9cf5e624a9ad36 | ||||
* | Fixed bug #71704 php_snmp_error() Format String Vulnerability | Anatol Belski | 2016-03-28 | 1 | -1/+1 |
| | | | | | Conflicts: ext/snmp/snmp.c | ||||
* | Merge branch 'PHP-5.5.34' into PHP-5.5 | Stanislav Malyshev | 2016-03-28 | 0 | -0/+0 |
|\ | | | | | | | | | * PHP-5.5.34: Fixed bug #71906: AddressSanitizer: negative-size-param (-1) in mbfl_strcut | ||||
| * | Fixed bug #71906: AddressSanitizer: negative-size-param (-1) in mbfl_strcut | Stanislav Malyshev | 2016-03-28 | 1 | -17/+17 |
| | | |||||
* | | Fixed bug #71906: AddressSanitizer: negative-size-param (-1) in mbfl_strcut | Stanislav Malyshev | 2016-03-28 | 2 | -20/+20 |
|/ | |||||
* | Fix bug #71798 - Integer Overflow in php_raw_url_encode | Stanislav Malyshev | 2016-03-27 | 2 | -4/+4 |
| | |||||
* | Fix bug #71860: Require valid paths for phar filenames | Stanislav Malyshev | 2016-03-20 | 9 | -37/+41 |
| | |||||
* | Going for 5.5.34 | Julien Pauli | 2016-03-02 | 3 | -4/+8 |
| | |||||
* | fix test file | Stanislav Malyshev | 2016-03-01 | 1 | -0/+0 |
| | |||||
* | Fix version | Stanislav Malyshev | 2016-03-01 | 1 | -3/+3 |
| | |||||
* | Update NEWS | Stanislav Malyshev | 2016-03-01 | 2 | -4/+11 |
| | |||||
* | Fix bug #71498: Out-of-Bound Read in phar_parse_zipfile() | Stanislav Malyshev | 2016-02-21 | 4 | -3/+21 |
| | |||||
* | Fixed bug #71587 - Use-After-Free / Double-Free in WDDX Deserialize | Stanislav Malyshev | 2016-02-14 | 2 | -4/+58 |
| | |||||
* | add error check to sysconf call | Anatol Belski | 2016-02-02 | 1 | -0/+11 |
| | |||||
* | Going for 5.5.33 now | Julien Pauli | 2016-02-02 | 3 | -5/+13 |
| | |||||
* | fix tests | Stanislav Malyshev | 2016-02-01 | 4 | -52/+52 |
| | |||||
* | fix NEWS | Stanislav Malyshev | 2016-02-01 | 1 | -3/+3 |
| | |||||
* | update NEWS | Stanislav Malyshev | 2016-02-01 | 1 | -0/+11 |
| | |||||
* | Merge branch 'PHP-5.5' into PHP-5.5.32 | Stanislav Malyshev | 2016-02-01 | 50 | -1511/+3141 |
|\ | | | | | | | | | | | * PHP-5.5: Upgrade bundled PCRE to 8.38 Fixed NEWS file entry | ||||
| * | Upgrade bundled PCRE to 8.38 | Stanislav Malyshev | 2016-01-31 | 51 | -1511/+3144 |
| | | |||||
| * | Fixed NEWS file entry | Julien Pauli | 2016-01-28 | 1 | -2/+4 |
| | | |||||
* | | Fixed bug #71488: Stack overflow when decompressing tar archives | Stanislav Malyshev | 2016-01-31 | 3 | -6/+32 |
| | | |||||
* | | update NEWS | Anatol Belski | 2016-01-28 | 1 | -0/+6 |
| | | |||||
* | | add missing headers for SIZE_MAX | Anatol Belski | 2016-01-28 | 1 | -0/+9 |
| | |