Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix bug #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE | Stanislav Malyshev | 2016-07-17 | 3 | -2/+31 |
| | |||||
* | Fix bug #72094 - Out of bounds heap read access in exif header processing | Stanislav Malyshev | 2016-04-24 | 6 | -2/+76 |
| | |||||
* | Merge branch 'PHP-5.4.45' into PHP-5.5.29 | Stanislav Malyshev | 2015-09-01 | 1 | -106/+106 |
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.4.45: add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Conflicts: ext/pcre/php_pcre.c ext/standard/var_unserializer.c | ||||
| * | Improve fix for #70385 | Stanislav Malyshev | 2015-08-29 | 1 | -2/+2 |
| | | |||||
| * | Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte ↵ | Stanislav Malyshev | 2015-08-28 | 1 | -104/+104 |
| | | | | | | | | value of 32 bytes) | ||||
* | | Fix typo: unitialized -> uninitialized | Lior Kaplan | 2015-04-01 | 1 | -1/+1 |
| | | |||||
* | | Merge branch 'PHP-5.4' into PHP-5.5 | Stanislav Malyshev | 2015-01-20 | 3 | -1/+64 |
|\ \ | |/ | | | | | | | | | | | | | | | | | | | * PHP-5.4: 5.4.38 next Fix bug #68799: Free called on unitialized pointer Fix for bug #68710 (Use After Free Vulnerability in PHP's unserialize()) Conflicts: configure.in main/php_version.h | ||||
| * | Fix bug #68799: Free called on unitialized pointer | Stanislav Malyshev | 2015-01-11 | 3 | -1/+64 |
| | | |||||
| * | Fix bug #68113 (Heap corruption in exif_thumbnail()) | Stanislav Malyshev | 2014-10-13 | 3 | -2/+19 |
| | | |||||
* | | Bump year | Xinchen Hui | 2015-01-15 | 2 | -2/+2 |
| | | |||||
* | | fix dir separator in test | Anatol Belski | 2014-11-24 | 1 | -3/+3 |
| | | |||||
* | | Fix bug #68113 (Heap corruption in exif_thumbnail()) | Stanislav Malyshev | 2014-10-14 | 3 | -2/+19 |
|/ | |||||
* | Remove superfluous echos. | Jeff Welch | 2014-06-08 | 1 | -1/+1 |
| | |||||
* | Bump year | Xinchen Hui | 2014-01-03 | 2 | -2/+2 |
| | |||||
* | Fix bug #65873 - Integer overflow in exif_read_data() | Stanislav Malyshev | 2013-12-16 | 1 | -1/+6 |
| | |||||
* | add tests for bug #62523 | Michael Wallner | 2013-10-21 | 6 | -0/+73 |
| | |||||
* | Merged PR #293 (Exif crash on unknown encoding was fixed) | Michael Wallner | 2013-10-21 | 3 | -5/+21 |
| | | | | | | | | By: Draal Conflicts: configure.in main/php_version.h | ||||
* | typo fixes | Veres Lajos | 2013-07-15 | 1 | -1/+1 |
| | |||||
* | Merge branch 'pull-request/341' | Stanislav Malyshev | 2013-06-10 | 1 | -1/+1 |
| | | | | | * pull-request/341: (23 commits) typofixes | ||||
* | Happy New Year | Xinchen Hui | 2013-01-01 | 2 | -2/+2 |
| | |||||
* | Merge branch 'PHP-5.3' into PHP-5.4 | Xinchen Hui | 2012-10-10 | 2 | -0/+0 |
|\ | |||||
| * | Remove executable permission on phpt | Xinchen Hui | 2012-10-10 | 2 | -0/+0 |
| | | |||||
* | | Merge branch 'PHP-5.3' into PHP-5.4 | Nikita Popov | 2012-08-14 | 1 | -1/+1 |
|\ \ | |/ | |||||
| * | Fix exif test failure | Nikita Popov | 2012-08-14 | 1 | -1/+1 |
| | | | | | | | | | | There are two slightly different error messages for invalid pointers, so make the pattern slightly less strict to account for both. | ||||
* | | Merge commit 'e59b6dc0ae803d49c3f620818285f98dfb61fd57' into PHP-5.4 | Felipe Pena | 2012-06-03 | 1 | -1/+5 |
|\ \ | |/ | |||||
| * | - Fixed information leak in ext exif (discovered by Martin Noga, Matthew ↵ | Felipe Pena | 2012-06-03 | 1 | -1/+5 |
| | | | | | | | | "j00ru" Jurczyk, Gynvael Coldwind) | ||||
| * | - Year++ | Felipe Pena | 2012-01-01 | 2 | -2/+2 |
| | | |||||
| * | fix bug #60150 for 5.3 too | Stanislav Malyshev | 2011-11-19 | 3 | -2/+23 |
| | | |||||
| * | - Added ZEND_MOD_END macro to use in the end of zend_module_dep[] | Felipe Pena | 2011-08-06 | 1 | -1/+1 |
| | | |||||
| * | - Make usage of new PHP_FE_END macro | Felipe Pena | 2011-07-25 | 1 | -1/+1 |
| | | |||||
| * | Fixed bug #54121 (error message format string typo). | Ilia Alshanetsky | 2011-04-12 | 1 | -1/+1 |
| | | |||||
| * | - fix the fix (Dmitry) and ensure that it builds everywhere, can someone ↵ | Pierre Joye | 2011-02-15 | 1 | -2/+8 |
| | | | | | | | | test on solaris&co pls? | ||||
| * | -Bug #54002, fix windows build, use the relevant values in the warnings | Pierre Joye | 2011-02-14 | 2 | -5/+5 |
| | | |||||
| * | - fix bug #54002, exif_read_data crashes on crafted tags | Pierre Joye | 2011-02-14 | 4 | -2/+35 |
| | | |||||
| * | - Year++ | Felipe Pena | 2011-01-01 | 2 | -2/+2 |
| | | |||||
| * | Changed deprecated ini options on startup from E_WARNING to E_DEPRECATED ↵ | Kalle Sommer Nielsen | 2010-08-11 | 1 | -1/+1 |
| | | | | | | | | | | | | (Fixes #52570) # Trunk patch will follow shortly | ||||
* | | - Year++ | Felipe Pena | 2012-01-01 | 2 | -2/+2 |
| | | |||||
* | | fix test number | Stanislav Malyshev | 2011-11-19 | 1 | -1/+1 |
| | | |||||
* | | Fix bug #60150 (Integer overflow during the parsing of invalid exif header) | Stanislav Malyshev | 2011-11-19 | 3 | -2/+23 |
| | | |||||
* | | - Added ZEND_MOD_END macro to use in the end of zend_module_dep[] | Felipe Pena | 2011-08-06 | 1 | -1/+1 |
| | | |||||
* | | - Make usage of new PHP_FE_END macro | Felipe Pena | 2011-07-25 | 1 | -1/+1 |
| | | |||||
* | | Delete empty test files (old MQ tests) | Pierrick Charron | 2011-07-22 | 1 | -0/+0 |
| | | |||||
* | | - remove magic quotes support, functions are kept (see the NEWS entry for ↵ | Pierre Joye | 2011-07-22 | 3 | -92/+0 |
| | | | | | | | | the details) for BC reasons but do not allow to set enable MQ, missing tests changes in 5.4 | ||||
* | | - remove magic quotes support, functions are kept (see the NEWS entry for ↵ | Pierre Joye | 2011-07-22 | 1 | -26/+6 |
| | | | | | | | | the details) for BC reasons but do not allow to set enable MQ | ||||
* | | - Added new parameter parsing option (p - for valid path (string without ↵ | Felipe Pena | 2011-06-06 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | null byte in the middle)) # The tests will be fixed in the next commits | ||||
* | | Fixed bug #54121 (error message format string typo). | Ilia Alshanetsky | 2011-04-12 | 1 | -1/+1 |
| | | |||||
* | | Fixed multibyte related issues | Dmitry Stogov | 2011-03-14 | 1 | -15/+15 |
| | | |||||
* | | - fix the fix (Dmitry) and ensure that it builds everywhere, can someone ↵ | Pierre Joye | 2011-02-15 | 1 | -2/+8 |
| | | | | | | | | test on solaris&co pls? | ||||
* | | -Bug #54002, fix windows build, use the relevant values in the warnings | Pierre Joye | 2011-02-14 | 2 | -5/+6 |
| | | |||||
* | | - fix bug #54002, exif_read_data crashes on crafted tags | Pierre Joye | 2011-02-14 | 4 | -2/+34 |
| | |