Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | PHP-5.6.33php-5.6.33PHP-5.6.33 | Ferenc Kovacs | 2018-01-03 | 3 | -8/+6 |
| | |||||
* | php 5.6.34 is next | Ferenc Kovacs | 2018-01-03 | 3 | -5/+7 |
| | |||||
* | Update NEWS | Stanislav Malyshev | 2018-01-01 | 1 | -1/+7 |
| | |||||
* | Fixed bug #75571: Potential infinite loop in gdImageCreateFromGifCtx | Christoph M. Becker | 2018-01-01 | 3 | -5/+20 |
| | | | | | | | Due to a signedness confusion in `GetCode_` a corrupt GIF file can trigger an infinite loop. Furthermore we make sure that a GIF without any palette entries is treated as invalid *after* open palette entries have been removed. | ||||
* | Fix bug #74782: remove file name from output to avoid XSS | Stanislav Malyshev | 2018-01-01 | 14 | -45/+45 |
| | |||||
* | Backport and apply upstream patch for CVE-2017-14107 | Anatol Belski | 2017-10-27 | 1 | -1/+6 |
| | |||||
* | 5.6.33 is next | Ferenc Kovacs | 2017-10-25 | 3 | -5/+7 |
| | |||||
* | These tests all assume that IPV6 is available. | Rasmus Lerdorf | 2017-10-25 | 5 | -5/+20 |
| | |||||
* | fix the travis build for PHP-5.6 using precise instead of trusty | Ferenc Kovacs | 2017-10-25 | 1 | -1/+1 |
| | |||||
* | fix the travis build for PHP-5.6 using precise instead of trusty | Ferenc Kovacs | 2017-10-25 | 1 | -0/+1 |
| | |||||
* | Parametrize the expected value to avoid platform false positives | Anatol Belski | 2017-10-24 | 1 | -1/+1 |
| | |||||
* | [ci skip] update NEWS | Anatol Belski | 2017-10-24 | 1 | -0/+9 |
| | |||||
* | Fixed bug #72535 arcfour encryption stream filter crashes php | Anatol Belski | 2017-10-24 | 2 | -1/+24 |
| | |||||
* | Fixed bug #75055 Out-Of-Bounds Read in timelib_meridian() | Anatol Belski | 2017-10-24 | 5 | -716/+2336 |
| | |||||
* | Apply upstream patch for CVE-2016-1283 | Anatol Belski | 2017-10-24 | 2 | -1/+16 |
| | | | | | | | | Fix bug #75207, see also https://bugzilla.redhat.com/show_bug.cgi?id=1295385 https://vcs.pcre.org/pcre?view=revision&revision=1636 (cherry picked from commit d11fceab151cd0410645f81eb7444af4388470c3) | ||||
* | add missing NEWS entry for #74087 and also fix the formatting | Ferenc Kovacs | 2017-07-06 | 1 | -4/+8 |
| | |||||
* | move NEWS entry to the correct place, also bump the version | Ferenc Kovacs | 2017-07-06 | 3 | -7/+11 |
| | |||||
* | NEWS for oniguruma | Remi Collet | 2017-07-05 | 1 | -0/+2 |
| | |||||
* | Patch from the upstream git | Remi Collet | 2017-07-05 | 1 | -1/+3 |
| | | | | | | https://github.com/kkos/oniguruma/issues/60 (CVE-2017-9228) Thanks to Mamoru TASAKA <mtasaka@fedoraproject.org> | ||||
* | Patch from the upstream git | Remi Collet | 2017-07-05 | 1 | -1/+8 |
| | | | | | | | https://github.com/kkos/oniguruma/issues/59 (CVE-2017-9229) b690371bbf97794b4a1d3f295d4fb9a8b05d402d Modified for onig 5.9.6 Thanks to Mamoru TASAKA <mtasaka@fedoraproject.org> | ||||
* | Patch from the upstream git | Remi Collet | 2017-07-05 | 1 | -0/+2 |
| | | | | | | https://github.com/kkos/oniguruma/issues/58 (CVE-2017-9227) Thanks to Mamoru TASAKA <mtasaka@fedoraproject.org> | ||||
* | Patch from the upstream git | Remi Collet | 2017-07-05 | 1 | -5/+0 |
| | | | | | | https://github.com/kkos/oniguruma/issues/57 (CVE-2017-9224) Thanks to Mamoru TASAKA <mtasaka@fedoraproject.org> | ||||
* | Patch from the upstream git | Remi Collet | 2017-07-05 | 1 | -2/+6 |
| | | | | | | | | https://github.com/kkos/oniguruma/issues/55 (CVE-2017-9226) b4bf968ad52afe14e60a2dc8a95d3555c543353a Modified for onig 5.9.6 f015fbdd95f76438cd86366467bb2b39870dd7c6 Modified for onig 5.9.6 Thanks to Mamoru TASAKA <mtasaka@fedoraproject.org> | ||||
* | Improve fix for #74145 | Stanislav Malyshev | 2017-07-04 | 1 | -5/+10 |
| | |||||
* | Fix tests | Stanislav Malyshev | 2017-07-04 | 2 | -4/+4 |
| | |||||
* | Update NEWS | Stanislav Malyshev | 2017-07-04 | 1 | -1/+17 |
| | |||||
* | Fix bug #74087 | Stanislav Malyshev | 2017-07-04 | 1 | -1/+1 |
| | | | | Ported from https://vcs.pcre.org/pcre/code/trunk/pcre_jit_compile.c?r1=1676&r2=1680&view=patch | ||||
* | Fixed parsing of strange formats with mixed month/day and time strings | Derick Rethans | 2017-07-04 | 2 | -6370/+5466 |
| | |||||
* | Fix bug #74145 - wddx parsing empty boolean tag leads to SIGSEGV | Stanislav Malyshev | 2017-07-04 | 3 | -9/+31 |
| | |||||
* | Fixed bug #74111 | Nikita Popov | 2017-07-04 | 4 | -517/+501 |
| | |||||
* | Fix #74435: Buffer over-read into uninitialized memory | Christoph M. Becker | 2017-07-04 | 3 | -0/+30 |
| | | | | | The stack allocated color map buffers were not zeroed before usage, and so undefined palette indexes could cause information leakage. | ||||
* | Fix bug #74603 - use correct buffer size | Stanislav Malyshev | 2017-07-04 | 3 | -1/+17 |
| | |||||
* | Fix bug #74651 - check EVP_SealInit as it can return -1 | Stanislav Malyshev | 2017-07-04 | 3 | -3/+47 |
| | |||||
* | Update NEWS | Stanislav Malyshev | 2017-06-24 | 1 | -0/+4 |
| | |||||
* | Fix bug #73807 | Nikita Popov | 2017-06-20 | 1 | -3/+9 |
| | |||||
* | fix test for 32bits (int -> float) | Remi Collet | 2017-02-01 | 1 | -2/+2 |
| | | | | (cherry picked from commit 0f1ae93bfa2feb3d0fd0b8d3036148df8ef856e2) | ||||
* | update NEWS | Ferenc Kovacs | 2017-01-19 | 1 | -0/+2 |
| | |||||
* | Fix #73869: Signed Integer Overflow gd_io.c | Christoph M. Becker | 2017-01-17 | 4 | -0/+23 |
| | | | | | | | | | | | GD2 stores the number of horizontal and vertical chunks as words (i.e. 2 byte unsigned). These values are multiplied and assigned to an int when reading the image, what can cause integer overflows. We have to avoid that, and also make sure that either chunk count is actually greater than zero. If illegal chunk counts are detected, we bail out from reading the image. (cherry picked from commit 5b5d9db3988b829e0b121b74bb3947f01c2796a1) | ||||
* | Fix #73868: DOS vulnerability in gdImageCreateFromGd2Ctx() | Christoph M. Becker | 2017-01-17 | 3 | -2/+24 |
| | | | | | | | We must not pretend that there are image data if there are none. Instead we fail reading the image file gracefully. (cherry picked from commit cdb648dc4115ce0722f3cc75e6a65115fc0e56ab) | ||||
* | Add additional serialize tests for fixed bugs | Nikita Popov | 2017-01-16 | 3 | -0/+120 |
| | | | | | These have been fixed as a side-effect of the delayed __wakeup patch. | ||||
* | Fix typo | Stanislav Malyshev | 2017-01-16 | 1 | -1/+1 |
| | |||||
* | Fix test | Stanislav Malyshev | 2017-01-15 | 1 | -6/+6 |
| | |||||
* | Update more functions with path check | Stanislav Malyshev | 2017-01-15 | 3 | -3/+3 |
| | |||||
* | Fix glob-wrapper.phpt to not fail in Windows | Mitch Hagstrand | 2017-01-10 | 1 | -5/+5 |
| | |||||
* | Fix open_basedir check for glob:// opendir wrapper | Sara Golemon | 2017-01-09 | 2 | -4/+39 |
| | | | | | | | | php_check_open_basedir() expects a local filesystem path, but we're handing it a `glob://...` URI instead. Move the check to after the path trim so that we're checking a meaningful pathspec. | ||||
* | add skip when json not loaded | Remi Collet | 2017-01-06 | 1 | -0/+2 |
| | |||||
* | 5.6.31 is next | Ferenc Kovacs | 2017-01-06 | 3 | -5/+17 |
| | |||||
* | Fix printf modifier | Nikita Popov | 2017-01-05 | 1 | -1/+1 |
| | |||||
* | Add tests for delayed __wakeup() | Nikita Popov | 2017-01-05 | 7 | -0/+263 |
| | |||||
* | Implement delayed __wakeup | Nikita Popov | 2017-01-05 | 2 | -535/+622 |
| |