Arnaud Le Blanc 19b49258d0 Fix GHSA-9pqp-7h25-4f32 ...

multipart/form-data boundaries larger than the read buffer result in erroneous
parsing, which violates data integrity.

Limit boundary size, as allowed by RFC 1521:

    Encapsulation boundaries [...] must be no longer than 70 characters, not
    counting the two leading hyphens.

We correctly parse payloads with boundaries of length up to
FILLUNIT-strlen("\r\n--") bytes, so allow this for BC.

2024-09-23 11:43:26 +01:00

..

basic

Fix GHSA-9pqp-7h25-4f32

2024-09-23 11:43:26 +01:00

classes

Deprecate implicit dynamic properties

2021-11-26 14:10:11 +01:00

func

Add many missing closing PHP tags to tests

2020-08-09 22:03:36 +02:00

lang

Fix Windows SKIPIF (#14219)

2024-05-13 22:09:47 +02:00

output

Fix GH-15179: Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re

2024-08-03 02:05:06 +02:00

run-test

run-tests: use the EXTENSIONS section for skipping

2021-03-22 09:53:38 +01:00

security

Merge branch 'PHP-8.0'

2021-08-17 11:32:24 +02:00

strings

Merge branch 'PHP-8.0' into PHP-8.1

2021-09-29 12:21:49 +02:00