archived-php-src

mirror of https://github.com/php/php-src.git synced 2026-04-28 10:43:30 +02:00

Author	SHA1	Message	Date
Remi Collet	debfc866d2	Fix build php_zip.c:1647:2: warning: suggest parentheses around assignment used as truth value [-Wparentheses] php_zip.c:1648:3: error: format not a string literal and no format arguments [-Werror=format-security]	2015-09-07 13:52:28 +02:00
Jakub Zelenka	d47029167d	Fix bug #60632 : openssl_seal fails with AES	2015-09-06 16:39:59 +01:00
Christoph M. Becker	aed225b7e4	updated NEWS	2015-09-05 14:39:24 +02:00
Christoph M. Becker	fd94c92171	Fix #68291 : 404 on urls with '+' URI paths have to be treated according to RFC 3986 by the CLI web server, not as application/x-www-form-urlencoded.	2015-09-05 14:34:08 +02:00
Christoph M. Becker	f9ece83994	updated NEWS	2015-09-05 03:14:56 +02:00
Christoph M. Becker	43b26c7b21	Fix #70395 : Missing ARG_INFO for openssl_seal() This patch adds the missing ARG_INFO for the optional 5th parameter $method.	2015-09-05 03:08:02 +02:00
Christoph M. Becker	dc1a8dd7f0	updated NEWS	2015-09-05 01:27:59 +02:00
Christoph M. Becker	b2954c64ab	Fix #70001 : Assigning to DOMNode::textContent does additional entity encoding Assigning to DOMNode::textContent encodes entities, what does not match the behavior of DOMText::__construct() and DOMDocument::createTextNode. This patch changes the behavior of DOMNode::textContent in this regard.	2015-09-05 01:17:50 +02:00
Christoph M. Becker	b59ea797f5	updated NEWS	2015-09-05 00:37:08 +02:00
Christoph M. Becker	c77f783777	Fix #70322 : ZipArchive::close() doesn't indicate errors If an archive can't be written, ZipArchive::close() nonetheless returns TRUE. We fix the return value to properly return success, and additionally raise a warning on failure.	2015-09-05 00:34:10 +02:00
Niklas Keller	4b1dff6f43	Fix #70361 : HTTP stream wrapper doesn't close keep-alive connections	2015-09-04 16:29:35 +02:00
Ferenc Kovacs	52b2a3ff25	move the phpdbg NEWS entry to the correct version	2015-09-03 01:58:13 +02:00
Ferenc Kovacs	3759de241f	add missing news entries	2015-09-03 01:46:38 +02:00
Julien Pauli	c65350cd4d	Merge branch 'PHP-5.5' into PHP-5.6 * PHP-5.5: Merge branch 'PHP-5.6' bump version	2015-09-02 17:55:57 +02:00
Julien Pauli	bb98ed600a	Merge branch 'PHP-5.4' into PHP-5.5 * PHP-5.4: Merge branch 'PHP-5.6' bump version Conflicts: configure.in main/php_version.h	2015-09-02 17:55:20 +02:00
Matteo Beccati	a12cef979d	Merge branch 'PHP-5.6' * PHP-5.6: Added missing skipif for phar+zlib test	2015-09-02 17:53:36 +02:00
Julien Pauli	c07150cd1a	Merge branch 'PHP-5.5' into PHP-5.6 * PHP-5.5: 5.5.30 next Conflicts: configure.in main/php_version.h	2015-09-02 17:42:00 +02:00
Julien Pauli	ea807f9c07	5.5.30 next	2015-09-02 17:40:56 +02:00
Stanislav Malyshev	51fca4b77d	bump version	2015-09-01 13:12:16 -07:00
Stanislav Malyshev	a6c063d663	Merge branch 'PHP-5.5' into PHP-5.6 * PHP-5.5: More fixes for bug #70219	2015-09-01 12:51:48 -07:00
Stanislav Malyshev	3fe509443c	Merge branch 'PHP-5.5' into PHP-5.6 * PHP-5.5: fix unit tests	2015-09-01 12:24:14 -07:00
Stanislav Malyshev	43c2dfa7b3	Merge branch 'PHP-5.5' into PHP-5.5.29 * PHP-5.5: fix unit tests	2015-09-01 12:24:06 -07:00
Stanislav Malyshev	4aeff30337	Merge branch 'PHP-5.4' into PHP-5.5 * PHP-5.4: fix unit tests	2015-09-01 12:23:55 -07:00
Stanislav Malyshev	1922c650ba	fix unit tests	2015-09-01 12:23:22 -07:00
Stanislav Malyshev	c19d59c550	Merge branch 'PHP-5.5' into PHP-5.6 * PHP-5.5: update NEWS add NEWS for fixes Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix for bug #69782 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) 5.4.45 next Conflicts: ext/pcre/php_pcre.c ext/standard/var_unserializer.c ext/standard/var_unserializer.re ext/zip/php_zip.c	2015-09-01 12:06:41 -07:00
Stanislav Malyshev	45e7e79485	Merge branch '70284' into PHP-5.6 * 70284: Fix bug ##70284 (Use after free vulnerability in unserialize() with GMP)	2015-09-01 12:05:02 -07:00
Stanislav Malyshev	32fe02c27d	Merge branch 'PHP-5.5' into PHP-5.5.29 * PHP-5.5: update NEWS add NEWS for fixes	2015-09-01 12:04:04 -07:00
Stanislav Malyshev	31b634bf7c	update NEWS	2015-09-01 12:03:48 -07:00
Stanislav Malyshev	0fac73a3bf	Merge branch 'PHP-5.4' into PHP-5.5 * PHP-5.4: add NEWS for fixes	2015-09-01 12:00:30 -07:00
Stanislav Malyshev	7ceb0e3a18	add NEWS for fixes	2015-09-01 11:53:59 -07:00
Stanislav Malyshev	53d274beb0	Merge branch 'PHP-5.5' into PHP-5.5.29 * PHP-5.5: Improve fix for #70172 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) Conflicts: ext/pcre/php_pcre.c	2015-09-01 11:43:27 -07:00
Stanislav Malyshev	33d3acaae7	Merge branch 'PHP-5.4' into PHP-5.5 * PHP-5.4: Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix for bug #69782 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) 5.4.45 next Conflicts: configure.in ext/pcre/php_pcre.c ext/standard/var_unserializer.c ext/standard/var_unserializer.re main/php_version.h	2015-09-01 11:42:19 -07:00
Stanislav Malyshev	48cfd1160b	Merge branch 'PHP-5.4.45' into PHP-5.4 * PHP-5.4.45: Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix for bug #69782	2015-09-01 11:40:15 -07:00
Stanislav Malyshev	7c31203935	Improve fix for #70172	2015-09-01 11:38:39 -07:00
Stanislav Malyshev	e2291e4b1a	Merge branch 'PHP-5.4.45' into PHP-5.5.29 * PHP-5.4.45: Fix bug #70312 - HAVAL gives wrong hashes in specific cases	2015-09-01 01:17:12 -07:00
Stanislav Malyshev	1390a5812b	Fix bug #70312 - HAVAL gives wrong hashes in specific cases	2015-09-01 01:16:30 -07:00
Stanislav Malyshev	3605d1baf5	Merge branch 'PHP-5.4.45' into PHP-5.5.29 * PHP-5.4.45: fix test	2015-09-01 00:59:55 -07:00
Stanislav Malyshev	906f19f136	fix test	2015-09-01 00:59:31 -07:00
Stanislav Malyshev	6935058a98	Merge branch 'PHP-5.4.45' into PHP-5.5.29 * PHP-5.4.45: add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Conflicts: ext/pcre/php_pcre.c ext/standard/var_unserializer.c	2015-09-01 00:28:39 -07:00
Stanislav Malyshev	c8f07ad477	add test	2015-09-01 00:26:12 -07:00
Stanislav Malyshev	259057b2a4	Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList	2015-09-01 00:20:45 -07:00
Stanislav Malyshev	f06a069c46	Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage	2015-09-01 00:14:15 -07:00
Stanislav Malyshev	e8429400d4	Fix bug #70172 - Use After Free Vulnerability in unserialize()	2015-08-31 23:26:14 -07:00
Stanislav Malyshev	e201f01ac1	Fix bug #70388 - SOAP serialize_function_call() type confusion	2015-08-31 21:06:03 -07:00
Xinchen Hui	9da99d8c5f	Merge branch 'PHP-5.6' of git.php.net:/php-src into PHP-5.6	2015-08-30 05:34:15 -07:00
Xinchen Hui	ef1bd8f0e6	Fixed bug #70389 (PDO constructor changes unrelated variables)	2015-08-30 05:02:38 -07:00
Stanislav Malyshev	f9c2bf73ad	Fixed bug #70350 : ZipArchive::extractTo allows for directory traversal when creating directories	2015-08-30 00:38:08 -07:00
Stanislav Malyshev	ce2c67c8e8	Improve fix for #70385	2015-08-29 23:01:36 -07:00
Matteo Beccati	9d816f1bcf	Added missing skipif for phar+zlib test	2015-08-29 10:47:02 +02:00
Stanislav Malyshev	03964892c0	Fix bug #70345 (Multiple vulnerabilities related to PCRE functions)	2015-08-28 22:52:50 -07:00

1 2 3 4 5 ...

82644 Commits