php/archived-php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2026-04-27 01:48:26 +02:00
Code Issues Packages Projects Releases Wiki Activity
127,573 Commits 549 Branches 1,485 Tags
bce12f4e573cf2bc0cb623a3581477e1c59dc5f4
Commit Graph

13848 Commits

Author SHA1 Message Date
Kamil Tekiela bce12f4e57 Add NEWS entry for #9841 2022-10-28 11:23:37 +01:00
Remi Collet c84d7cc27e move CVEs in 8.1.12 changelog 2022-10-26 17:10:29 +02:00
Stanislav Malyshev 2caa79e963 Merge branch 'PHP-8.0' into PHP-8.1 2022-10-23 18:53:26 -06:00
Stanislav Malyshev 80ccaa3e36 Merge branch 'PHP-7.4' into PHP-8.0 2022-10-23 18:52:56 -06:00
Stanislav Malyshev 2669ed7d77 Update NEWS 2022-10-23 18:50:53 -06:00
David Carlier fe06c5ef60 Merge branch 'PHP-8.0' into PHP-8.1 2022-10-23 00:46:25 +01:00
Adam Saponara 45e224cf51 Fix GH-9709: Guard against current_execute_data==NULL in is_handle_exception_set 2022-10-23 00:46:05 +01:00
Jakub Zelenka ec844ccc3f Merge branch 'PHP-8.0' into PHP-8.1 2022-10-22 22:12:05 +01:00
Jakub Zelenka fa1b6ab5db Fix GH-8430: OpenSSL compiled with old disgests does not build 
Specifically no-md2, no-md4 or no-rmd160 were not supported
 2022-10-22 22:11:05 +01:00
Arnaud Le Blanc 386bbf4655 [ci skip] NEWS 2022-10-22 10:44:37 +02:00
Arnaud Le Blanc 845c6b3b3b [ci skip] NEWS 2022-10-22 10:43:11 +02:00
Stanislav Malyshev 248f647724 Fix bug #81738 (buffer overflow in hash_update() on long parameter) 2022-10-20 23:57:35 -06:00
Derick Rethans 41a6a298d9 Update NEWS 2022-10-17 18:22:29 +01:00
Arnaud Le Blanc e3c40c6829 [ci skip] NEWS 2022-10-16 12:44:05 +02:00
Arnaud Le Blanc f702f87f70 [ci skip] NEWS 2022-10-16 12:43:21 +02:00
Christoph M. Becker 24c297086d Merge branch 'PHP-8.0' into PHP-8.1 
* PHP-8.0:
  Fix GH-9720: Null pointer dereference while serializing the response
 2022-10-13 16:00:36 +02:00
Christoph M. Becker e440e37fa8 Fix GH-9720: Null pointer dereference while serializing the response 
When traversing the result array, we need to cater to `param_name`
possibly being `NULL`.  Prior to PHP 7.0.0, this was implicitly done
because `param_name` was of type `char*`.

Closes GH-9739.
 2022-10-13 15:56:08 +02:00
Christoph M. Becker 7e14d2466a Fix potential heap corruption due to alignment mismatch 
The fix for bug 63327[1] changed the extra size of mysqlnd allocations
from `sizeof(size_t)` to the properly aligned values; however, the
allocation in `_mysqlnd_pestrdup()` has apparently been overlooked,
which (currently) causes detectable heap corruption when running
mysqli_get_client_stats.phpt on 32bit Windows versions.

[1] <https://github.com/php/php-src/commit/338a47bb856872f9ab0db94e867333d73279ca85>

Closes GH-9724.
 2022-10-13 11:47:24 +02:00
Ben Ramsey 865161af33 PHP-8.1 is now for PHP 8.1.13-dev 2022-10-11 19:47:00 -04:00
Gabriel Caruso dd394b3dff Prepare for PHp 8.0.26 2022-10-11 15:24:53 +02:00
Christoph M. Becker 20680b885b [ci skip] Add missing NEWS entry 2022-10-10 14:00:41 +02:00
David Carlier be53e5e5bb Fix GH-9566: disable assembly for Fiber on FreeBSD i386. 
preparing in case there is more architectures especially the not tested.
 2022-10-10 12:31:38 +01:00
Arnaud Le Blanc 878b20bdc9 [ci skip] NEWS 2022-10-01 11:24:08 +02:00
Arnaud Le Blanc 33375e927c [ci skip] NEWS 2022-10-01 11:23:15 +02:00
Remi Collet 12c3636d01 add missing CVEs 2022-09-30 09:19:03 +02:00
Remi Collet b0cc5ed91f add missing CVEs 2022-09-30 09:18:03 +02:00
Derick Rethans ad8d00b47b Prepare for next release 2022-09-28 10:14:50 +01:00
Derick Rethans 0b4e153394 Prepare for 7.4.32 2022-09-28 10:07:43 +01:00
George Peter Banyard 72cb47338e Merge branch 'PHP-8.0' into PHP-8.1 
* PHP-8.0:
  Fix GH-9583: session_create_id() fails with user defined save handler that doesn't have a validateId() method
 2022-09-27 15:54:37 +01:00
George Peter Banyard 8b115254c0 Fix GH-9583: session_create_id() fails with user defined save handler that doesn't have a validateId() method 2022-09-27 15:52:21 +01:00
Derick Rethans 6f586ef90f Add CVEs 2022-09-27 14:10:02 +01:00
wxue1 52f4ed16e0 Indirect call reduction for Jit code 
Changing indirect call to direct call for Jit code
benefits the branch prediction, which gets 1% performance
gain in our workload.
Similarly, we change indirect jump to direct jump.

Signed-off-by: Su, Tao <tao.su@intel.com>
Signed-off-by: Wang, Xue <xue1.wang@intel.com>
 2022-09-22 11:22:27 +01:00
Anatol Belski 54701ea3e7 NEWS: Add entry for GH-8805 
[ci skip]

Signed-off-by: Anatol Belski <ab@php.net>
 2022-09-18 15:39:07 +02:00
Sara Golemon 559da529a0 Bump for 8.0.25 2022-09-13 23:46:26 +00:00
Patrick Allaert 0f575aa698 PHP-8.1 is now for PHP 8.1.12-dev 2022-09-13 23:09:47 +02:00
George Peter Banyard 71e198be25 Merge branch 'PHP-8.0' into PHP-8.1 2022-09-13 12:45:42 +01:00
George Peter Banyard 47500f3300 Fix GH-9421 Incorrect argument number for ValueError in NumberFormatter 
Closes GH-9489
 2022-09-13 12:42:58 +01:00
George Peter Banyard 3d5df064ca Merge branch 'PHP-8.0' into PHP-8.1 2022-09-13 11:33:09 +01:00
George Peter Banyard 293e69179d Fix GH-9308 GMP throws the wrong error when a GMP object is passed to gmp_init() 
Closes GH-9490
 2022-09-13 11:24:19 +01:00
Christoph M. Becker 404e8bdb68 Fix #81726: phar wrapper: DOS when using quine gzip file 
The phar wrapper needs to uncompress the file; the uncompressed file
might be compressed, so the wrapper implementation loops. This raises
potential DOS issues regarding too deep or even infinite recursion (the
latter are called compressed file quines[1]). We avoid that by
introducing a recursion limit; we choose the somewhat arbitrary limit
`3`.

This issue has been reported by real_as3617 and gPayl0ad.

[1] <https://honno.dev/gzip-quine/>
 2022-09-09 17:10:04 +01:00
Derick Rethans 0611be4e82 Fix #81727: Don't mangle HTTP variable names that clash with ones that have a specific semantic meaning. 2022-09-09 17:10:04 +01:00
Ilija Tovilo d5373eac46 Fix lsp error in eval'd code referring to incorrect class for static type 
Fixes GH-9407
Closes GH-9471
 2022-09-08 10:52:27 +02:00
Ilija Tovilo 1435fc6262 Private method incorrectly marked as "overwrites" in reflection 
Fix GH-9409
Closes GH-9469
 2022-09-08 10:43:25 +02:00
Christoph M. Becker b5cad508fe Merge branch 'PHP-8.0' into PHP-8.1 
* PHP-8.0:
  Fix GH-9411: PgSQL large object resource is incorrectly closed
 2022-09-05 17:26:13 +02:00
Yurun 6ac3f7c84d Fix GH-9411: PgSQL large object resource is incorrectly closed 
Co-authored-by: Christoph M. Becker <cmbecker69@gmx.de>

Closes GH-9411.
 2022-09-05 16:37:54 +02:00
Arnaud Le Blanc 6deddd3950 [ci skip] NEWS 2022-09-02 13:53:20 +02:00
Arnaud Le Blanc 6aedc5eaf0 [ci skip] NEWS 2022-09-02 13:48:56 +02:00
Ilija Tovilo 2cfb028e22 Fix class name FQN when AST dumping new and class const 
Fixes GH-9447
Closes GH-9462
 2022-09-02 08:57:26 +02:00
Niklas Keller f8b217a345 Fix pcre.jit on Apple Silicon 
This backports https://github.com/zherczeg/sljit/pull/105. Relates to bug #80435, however, it doesn't solve the bus error on PHP 8.0, but PHP 8.1 builds fine now.

Closes GH-9279.
 2022-08-31 14:22:44 +02:00
Ben Ramsey 1862152145 Revert "Fix GH-9296: ksort behaves incorrectly on arrays with mixed keys" 
This reverts commit cd1aed8edd, as
discussed on internals (<https://externals.io/message/118483>).
 2022-08-30 09:13:46 -05:00