summaryrefslogtreecommitdiff
path: root/main
Commit message (Collapse)AuthorAgeFilesLines
* 5.6.34php-5.6.34PHP-5.6.34Ferenc Kovacs2018-02-281-4/+4
|
* 5.6.35 is nextFerenc Kovacs2018-02-271-3/+3
|
* php 5.6.34 is nextFerenc Kovacs2018-01-031-3/+3
|
* 5.6.33 is nextFerenc Kovacs2017-10-251-3/+3
|
* move NEWS entry to the correct place, also bump the versionFerenc Kovacs2017-07-061-3/+3
|
* Fix bug #73807Nikita Popov2017-06-201-3/+9
|
* Fix open_basedir check for glob:// opendir wrapperSara Golemon2017-01-091-4/+4
| | | | | | | | php_check_open_basedir() expects a local filesystem path, but we're handing it a `glob://...` URI instead. Move the check to after the path trim so that we're checking a meaningful pathspec.
* 5.6.31 is nextFerenc Kovacs2017-01-061-3/+3
|
* 5.6.30 will be nextFerenc Kovacs2016-11-241-3/+3
|
* 5.6.29 will be nextFerenc Kovacs2016-10-271-3/+3
|
* Clear FG(user_stream_current_filename) when bailing outSara Golemon2016-10-111-6/+11
| | | | | | | | | | If a userwrapper opener E_ERRORs then FG(user_stream_current_filename) would remain set until the next request and would not be pointing at unallocated memory. Catch the bailout, clear the variable, then continue bailing. Closes https://bugs.php.net/bug.php?id=73188
* Merge branch 'PHP-5.6.27' into PHP-5.6Stanislav Malyshev2016-10-111-7/+8
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6.27: Fix tests fix tsrm Fix bug #73284 - heap overflow in php_ereg_replace function Fix bug #73276 - crash in openssl_random_pseudo_bytes function Fix bug #73293 - NULL pointer dereference in SimpleXMLElement::asXML() fix bug #73275 - crash in openssl_encrypt function Fix for #73240 - Write out of bounds at number_format Bug #73218: add mitigation for ICU int overflow Add more locale length checks, due to ICU bugs. Fix bug #73208 - another missing length check Fix bug #73190: memcpy negative parameter _bc_new_num_ex Fix bug #73189 - Memcpy negative size parameter php_resolve_path Fixed bug #73174 - heap overflow in php_pcre_replace_impl Fix bug #73150: missing NULL check in dom_document_save_html Fix bug #73147: Use After Free in PHP7 unserialize() Fix bug #73082 Fix bug #73073 - CachingIterator null dereference when convert to string
| * Fix bug #73190: memcpy negative parameter _bc_new_num_exStanislav Malyshev2016-10-031-3/+3
| |
| * Fix bug #73189 - Memcpy negative size parameter php_resolve_pathStanislav Malyshev2016-09-281-7/+8
| |
* | 5.6.28 is nextFerenc Kovacs2016-09-291-3/+3
| |
* | Revert "Fixed bug #73037 SoapServer reports Bad Request when gzipped"Anatol Belski2016-09-231-1/+1
| | | | | | | | This reverts commit f9a699f6c3aa7acea922242a0f14731f6b829742.
* | Fixed bug #73037 SoapServer reports Bad Request when gzippedAnatol Belski2016-09-231-1/+1
|/ | | | (cherry picked from commit 410c68788ae4826807e8ced3f4a02e676142b22a)
* Fixed bug #72505 (readfile() mangles files larger than 2G)Xinchen Hui2016-09-161-1/+1
|
* 5.6.27 will be nextFerenc Kovacs2016-09-011-3/+3
|
* Fixed bug #72853 (stream_set_blocking doesn't work)Xinchen Hui2016-08-171-1/+13
| | | | Implemented PHP_STREAM_OPTION_META_DATA_API for plain_wrappers
* 5.6.26 will be nextFerenc Kovacs2016-08-041-3/+3
|
* Fixed bug #72686 (zlib: url support is broken).Pierrick Charron2016-07-271-5/+0
| | | | | | | | zlib: support is broken since a really long time. It never worked on versions >= PHP5.6 so we can just remove this dead code. Bug was introduced 2006-05-14 (Before 5.2.0)
* Merge branch 'PHP-5.5' into PHP-5.6Stanislav Malyshev2016-07-192-36/+59
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.5: fix #72519, possible OOB using imagegif fix #72512, invalid read or write for palette image when invalid transparent index is used Apparently some envs miss SIZE_MAX Fix tests Fix bug #72618: NULL Pointer Dereference in exif_process_user_comment Partial fix for bug #72613 - do not treat negative returns from bz2 as size_t Fix bug #72606: heap-buffer-overflow (write) simplestring_addn simplestring.c Fix for bug #72558, Integer overflow error within _gdContributionsAlloc() Fix bug #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE Fix bug #72562 - destroy var_hash properly Fix bug #72533 (locale_accept_from_http out-of-bounds access) Fix fir bug #72520 Fix for bug #72513 CS fix and comments with bug ID Fix for HTTP_PROXY issue. add tests for bug #72512 Fixed bug #72512 gdImageTrueColorToPaletteBody allows arbitrary write/read access Fixed bug #72479 - same as #72434 Conflicts: ext/bz2/bz2.c main/SAPI.c main/php_variables.c
| * CS fix and comments with bug IDStanislav Malyshev2016-07-122-3/+4
| |
| * Fix for HTTP_PROXY issue.Stanislav Malyshev2016-07-102-41/+63
| | | | | | | | | | | | | | | | | | The following changes are made: - _SERVER/_ENV only has HTTP_PROXY if the local environment has it, and only one from the environment. - getenv('HTTP_PROXY') only returns one from the local environment - getenv has optional second parameter, telling it to only consider local environment
| * 5.5.38 nowJulien Pauli2016-06-211-3/+3
| |
| * 5.5.37 nowJulien Pauli2016-05-251-3/+3
| |
| * 5.5.36 nowJulien Pauli2016-04-261-3/+3
| |
| * Fix bug #72093: bcpowmod accepts negative scale and corrupts _one_ definitionStanislav Malyshev2016-04-241-3/+3
| | | | | | | | | | We can not modify result since it can be copy of _zero_ or _one_, etc. and "copy" in bcmath is just bumping the refcount.
| * 5.5.35 nowJulien Pauli2016-03-291-3/+3
| |
| * Fixed bug #71906: AddressSanitizer: negative-size-param (-1) in mbfl_strcutStanislav Malyshev2016-03-281-3/+3
| |
| * Fix bug #71798 - Integer Overflow in php_raw_url_encodeStanislav Malyshev2016-03-271-3/+3
| |
| * Going for 5.5.34Julien Pauli2016-03-021-3/+3
| |
| * Fix versionStanislav Malyshev2016-03-011-3/+3
| |
| * Update NEWSStanislav Malyshev2016-03-011-3/+3
| |
| * Going for 5.5.33 nowJulien Pauli2016-02-021-3/+3
| |
* | 5.6.25 is nextFerenc Kovacs2016-07-071-3/+3
| |
* | Fix bug #71936 (Segmentation fault destroying HTTP_RAW_POST_DATA)Remi Collet2016-06-201-0/+3
| |
* | Fixed bug #72439 (Stream socket with remote address leads to a segmentation ↵Xinchen Hui2016-06-181-5/+16
| | | | | | | | fault)
* | 5.6.24 will be nextFerenc Kovacs2016-06-091-3/+3
| |
* | prepare for 5.6.22RC1Ferenc Kovacs2016-05-111-3/+3
| |
* | prepare for 5.6.21RC1Ferenc Kovacs2016-04-181-3/+3
| |
* | prepare for 5.6.20RC1Ferenc Kovacs2016-03-171-4/+4
| |
* | Merge branch 'PHP-5.6.19' into PHP-5.6Stanislav Malyshev2016-03-011-4/+4
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6.19: update NEWS Fix bug #71498: Out-of-Bound Read in phar_parse_zipfile() fix ts buld prep for 5.6.19RC1 Fixed bug #71587 - Use-After-Free / Double-Free in WDDX Deserialize
| * | prep for 5.6.19RC1Ferenc Kovacs2016-02-181-4/+4
| | |
* | | Bug #71596 Segmentation fault on ZTS with date function (setlocale)Anatol Belski2016-02-181-0/+3
|/ /
* | 5.6.20 is nextFerenc Kovacs2016-02-181-3/+3
| |
* | Merge branch 'PHP-5.6.18' into PHP-5.6Stanislav Malyshev2016-02-011-14/+16
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6.18: fix tests fix NEWS Update NEWS update NEWS Fixed bug #71488: Stack overflow when decompressing tar archives update NEWS add missing headers for SIZE_MAX backport the escapeshell* functions hardening branch add tests Fix bug #71459 - Integer overflow in iptcembed() prepare 5.6.18RC1 Fixed bug #71323 - Output of stream_get_meta_data can be falsified by its input Fix bug #71391: NULL Pointer Dereference in phar_tar_setupmetadata() Fixed bug #71331 - Uninitialized pointer in phar_make_dirstream() Fix bug #71335: Type Confusion in WDDX Packet Deserialization Fix bug #71354 - remove UMR when size is 0 Conflicts: configure.in main/php_version.h
| * \ Merge branch 'PHP-5.5.32' into PHP-5.6.18Stanislav Malyshev2016-02-011-14/+16
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.5.32: Fixed bug #71488: Stack overflow when decompressing tar archives update NEWS add missing headers for SIZE_MAX backport the escapeshell* functions hardening branch add tests Fix bug #71459 - Integer overflow in iptcembed() Fixed bug #71323 - Output of stream_get_meta_data can be falsified by its input Fix bug #71391: NULL Pointer Dereference in phar_tar_setupmetadata() Fix bug #71335: Type Confusion in WDDX Packet Deserialization Fix bug #71354 - remove UMR when size is 0
| | * Fixed bug #71323 - Output of stream_get_meta_data can be falsified by its inputStanislav Malyshev2016-01-161-14/+16
| | |
View Lorry Controller Status