php/archived-php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2026-03-30 20:22:36 +02:00
Code Issues Packages Projects Releases Wiki Activity
134,685 Commits 547 Branches 1,481 Tags
php-8.3.12
Commit Graph

15592 Commits

Author SHA1 Message Date
Jakub Zelenka
b6961d4938 [skip ci] Fix typo in NEWS 
Co-authored-by: Niels Dossche <7771979+nielsdos@users.noreply.github.com>
 2024-09-23 20:53:43 +01:00
Jakub Zelenka
bbe593816a Update NEWS with security fixes info 2024-09-23 12:09:29 +01:00
Niels Dossche
d2a5c98797 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15658: Segmentation fault in Zend/zend_vm_execute.h
 2024-09-09 20:26:44 +02:00
Niels Dossche
c1ffd4b484 Fix GH-15658: Segmentation fault in Zend/zend_vm_execute.h 
Implement a minimal ZEND_MATCH handler using a tail call.

Closes GH-15782.
 2024-09-09 20:26:16 +02:00
Niels Dossche
75f5cbf89e Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15661: Access null pointer in Zend/Optimizer/zend_inference.c
 2024-09-09 20:12:01 +02:00
Niels Dossche
86ef8d5466 Fix GH-15661: Access null pointer in Zend/Optimizer/zend_inference.c 
Closes GH-15666.
 2024-09-09 20:10:16 +02:00
Ilija Tovilo
e207071129 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix uninitialized lineno in constant AST of internal enums
 2024-09-08 23:44:48 +02:00
Ilija Tovilo
08e0729c57 Fix uninitialized lineno in constant AST of internal enums 
Closes GH-15806
 2024-09-08 23:44:11 +02:00
David Carlier
ea83eba590 Merge branch 'PHP-8.2' into PHP-8.3 2024-09-05 01:41:55 +01:00
Daniel Scherzer
c5e0a6aaab Fix GH-15752: finfo_file() - parameter validation error messages 
Show the correct parameter names and numbers - the errors are caused by the
second parameter being empty or having null bytes, not the first.

close GH-15755
 2024-09-05 01:41:15 +01:00
Christoph M. Becker
a51f54b54b Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15552: Signed integer overflow in ext/standard/scanf.c
 2024-09-01 17:25:18 +02:00
Christoph M. Becker
08841bf79c Fix GH-15552: Signed integer overflow in ext/standard/scanf.c 
We ensure that the argnum `value` is in the allowed range, *before*
mapping it to the `objIndex`, not *afterwards*.

Closes GH-15581.
 2024-09-01 17:24:17 +02:00
Christoph M. Becker
5f504f10dd Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15628: php_stream_memory_get_buffer() not zero-terminated
 2024-09-01 14:56:54 +02:00
Christoph M. Becker
93021c635d Fix GH-15628: php_stream_memory_get_buffer() not zero-terminated 
We're reasonably sure that appending the NUL is not an OOB write, since
the memory stream implementation uses `zend_string` APIs instead of
fiddling with the buffer.

We don't add a regression test because that would require to set up
something in the zend_test extension, and regressions are supposed
to be caught by external consumers of this API, such as mailparse.

Closes GH-15648.
 2024-09-01 14:55:40 +02:00
Niels Dossche
9cb23a3dec Fix GH-15654: Signed integer overflow in ext/dom/nodelist.c 
There's implicit truncation casts from zend_long to int which cause
issues because checks are done against the zend_longs. Since the
iterator infrastructure uses zend_longs, just convert everything to
zend_long.

Closes GH-15669.
 2024-08-31 11:47:08 +02:00
David Carlier
d7d40b4c80 Merge branch 'PHP-8.2' into PHP-8.3 2024-08-30 17:17:20 +01:00
David Carlier
7db1a5843f Fix GH-15653: fgetcsv overflow on length parameter. 
close GH-15655
 2024-08-30 17:16:57 +01:00
Arnaud Le Blanc
0e9e5912c1 [ci skip] NEWS for GH-15330 2024-08-28 17:45:32 +02:00
Arnaud Le Blanc
4db78140a0 [ci skip] NEWS for GH-15330 2024-08-28 17:44:20 +02:00
David Carlier
618edb5e15 Merge branch 'PHP-8.2' into PHP-8.3 2024-08-27 04:57:13 +01:00
David Carlier
cc67220ea3 Fixed GH-15547: curl_multi_wait expects a signed int for timeout. 
confusion might come from the previous argument type.
PHP expects ms so we check it fits integer boundaries before the cast.
raising a warning at least for stable branches.

close GH-15548
 2024-08-27 04:56:32 +01:00
Peter Kokot
5c44610093 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15587: Autotools: fix configure check for aarch64 CRC32 API
 2024-08-25 18:01:33 +02:00
Bernd Kuhls
5947db6bb8 Fix GH-15587: Autotools: fix configure check for aarch64 CRC32 API 
On arm32 bit the check succeeds leading to a build error later on:

/home/autobuild/autobuild/instance-3/output-1/build/php-8.3.10/ext/standard/crc32.c:70:12:
 error: 'armv8-a' does not support feature 'nothing'
   70 | #   pragma GCC target ("+nothing+crc")

Co-authored-by: Thomas Petazzoni <thomas.petazzoni@bootlin.com>
[http://lists.busybox.net/pipermail/buildroot/2024-August/761151.html]
Signed-off-by: Bernd Kuhls <bernd@kuhls.net>
 2024-08-25 18:00:29 +02:00
Niels Dossche
8da94cfc41 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15565: --disable-ipv6 during compilation produces error EAI_SYSTEM not found
 2024-08-24 14:14:57 +02:00
Niels Dossche
4b6575a1f9 Fix GH-15565: --disable-ipv6 during compilation produces error EAI_SYSTEM not found 
Closes GH-15567.
 2024-08-24 14:14:20 +02:00
Niels Dossche
8a00faa2bb Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15551: Segmentation fault (access null pointer) in ext/dom/xml_common.h
 2024-08-23 19:42:36 +02:00
Niels Dossche
9af574c26e Fix GH-15551: Segmentation fault (access null pointer) in ext/dom/xml_common.h 
Closes GH-15556.
 2024-08-23 19:40:42 +02:00
Jakub Zelenka
70c5e366f6 Revert fix for GH-14930: truncating readdir output (#15533) 2024-08-22 23:41:34 +01:00
Peter Kokot
d5b5e61d80 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix bug GH-15514 (Configure error: genif.sh: syntax error)
 2024-08-21 18:17:58 +02:00
Peter Kokot
48a18e5be7 Fix bug GH-15514 (Configure error: genif.sh: syntax error) 
Autoconf assigns the current suitable shell to SHELL variable. This
notably fixes cases on Solaris 10 when using C shell or KornShell where
genif.sh: syntax error at line 35 occurs due to using the `sh` command.
 2024-08-21 18:16:07 +02:00
Peter Kokot
9e63e20a2c Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15515: Configure error grep illegal option q (#15516)
 2024-08-21 15:54:56 +02:00
Peter Kokot
63841ba7cf Fix GH-15515: Configure error grep illegal option q (#15516) 
On Solaris default grep doesn't support the -q option. In such cases
the grep output can be redirected to /dev/null and the exit status is
checked.
 2024-08-21 15:51:27 +02:00
Christoph M. Becker
3162ddbd84 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  [skip ci] Fix NEWS
 2024-08-20 16:20:29 +02:00
Christoph M. Becker
6652a34006 [skip ci] Fix NEWS 2024-08-20 16:17:19 +02:00
Christoph M. Becker
a3dbd39be0 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15432: Heap corruption when querying a vector
 2024-08-20 15:44:40 +02:00
Christoph M. Becker
b1211c1e4a Fix GH-15432: Heap corruption when querying a vector 
Since the mysqlnd result set is arena allocated, we must not simply
free it, but rather call the appropriate `free_result` method.

Co-authored-by: Kamil Tekiela <tekiela246@gmail.com>
 2024-08-20 15:43:21 +02:00
Go Kudo
bd843d760f [ci skip] fix NEWS 2024-08-17 03:12:38 +09:00
Go Kudo
140a257f2f [ci skip] Update NEWS 2024-08-17 02:58:25 +09:00
Go Kudo
ad998356dd [ci skip] Update NEWS 2024-08-17 02:57:42 +09:00
David Carlier
4f582011cb Merge branch 'PHP-8.2' into PHP-8.3 2024-08-13 21:02:12 +01:00
David Carlier
8c3f5f99f3 [ci skip] update NEWS 2024-08-13 21:01:20 +01:00
Jakub Zelenka
0b61b8dc99 PHP-8.3 is now for PHP-8.3.12-dev 2024-08-13 20:16:40 +01:00
Sergey Panteleev
84d8fa9f53 PHP-8.2 is now for PHP 8.2.24-dev 2024-08-13 17:18:16 +03:00
Arnaud Le Blanc
4606202b89 [ci skip] NEWS for GH-15275 2024-08-10 15:50:21 +02:00
Arnaud Le Blanc
39bacafeed [ci skip] NEWS for GH-15275 2024-08-10 15:48:30 +02:00
David Carlier
de5c760c69 Merge branch 'PHP-8.2' into PHP-8.3 2024-08-09 21:12:34 +01:00
David Carlier
9aeb6761b5 Fix GH-15210: phpdbg_print_changed_zvals working on a real copy instead. 
Close GH-15229
 2024-08-09 21:12:11 +01:00
Niels Dossche
47e4991d38 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Fix GH-15268: heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h)
 2024-08-08 20:35:50 +02:00
Niels Dossche
a6c547d1dd Fix GH-15268: heap buffer overflow in phpdbg (zend_hash_num_elements() Zend/zend_hash.h) 
The class is not yet linked, so we cannot access `parent`, but only
`parent_name`.

Closes GH-15277.
 2024-08-08 20:35:20 +02:00
Niels Dossche
1d56340831 Merge branch 'PHP-8.2' into PHP-8.3 
* PHP-8.2:
  Revert "Fix bug #69280: SoapClient classmap doesn't support fully qualified class name (#14398)"
 2024-08-07 10:03:35 +02:00