Announce 7.4.2

2026-03-23 23:02:13 +01:00 · 2020-01-22 17:44:40 +00:00
parent 9ce598ab11
commit 77cf396b94
6 changed files with 183 additions and 6 deletions
--- a/ChangeLog-7.php
+++ b/ChangeLog-7.php
@@ -12,6 +12,100 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change

 <a name="PHP_7_4"></a>

+<section class="version" id="7.4.2"><!-- {{{ 7.4.2 -->
+<h3>Version 7.4.2</h3>
+<b><?php release_date('23-Jan-2020'); ?></b>
+<ul><li>Core:
+<ul>
+  <li>Preloading support on Windows has been disabled.</li>
+  <li><?php bugfix(79022); ?> (class_exists returns True for classes that are not ready to be used).</li>
+  <li><?php bugfix(78929); ?> (plus signs in cookie values are converted to spaces).</li>
+  <li><?php bugfix(78973); ?> (Destructor during CV freeing causes segfault if opline never saved).</li>
+  <li><?php bugfix(78776); ?> (Abstract method implementation from trait does not check "static").</li>
+  <li><?php bugfix(78999); ?> (Cycle leak when using function result as temporary).</li>
+  <li><?php bugfix(79008); ?> (General performance regression with PHP 7.4 on Windows).</li>
+  <li><?php bugfix(79002); ?> (Serializing uninitialized typed properties with __sleep makes unserialize throw).</li>
+</ul></li>
+<li>CURL:
+<ul>
+  <li><?php bugfix(79033); ?> (Curl timeout error with specific url and post).</li>
+  <li><?php bugfix(79063); ?> (curl openssl does not respect PKG_CONFIG_PATH).</li>
+</ul></li>
+<li>Date:
+<ul>
+  <li><?php bugfix(79015); ?> (undefined-behavior in php_date.c).</li>
+</ul></li>
+<li>DBA:
+<ul>
+  <li><?php bugfix(78808); ?> ([LMDB] MDB_MAP_FULL: Environment mapsize limit reached).</li>
+</ul></li>
+<li>Exif:
+<ul>
+  <li><?php bugfix(79046); ?> (NaN to int cast undefined behavior in exif).</li>
+</ul></li>
+<li>Fileinfo:
+<ul>
+  <li><?php bugfix(74170); ?> (locale information change after mime_content_type).</li>
+</ul></li>
+<li>GD:
+<ul>
+  <li><?php bugfix(79067); ?> (gdTransformAffineCopy() may use unitialized values).</li>
+  <li><?php bugfix(79068); ?> (gdTransformAffineCopy() changes interpolation method).</li>
+</ul></li>
+<li>Libxml:
+<ul>
+  <li><?php bugfix(79029); ?> (Use After Free's in XMLReader / XMLWriter).</li>
+</ul></li>
+<li>Mbstring:
+<ul>
+  <li><?php bugfix(79037); ?> (global buffer-overflow in `mbfl_filt_conv_big5_wchar`). (CVE-2020-7060)</li>
+</ul></li>
+<li>OPcache:
+<ul>
+  <li><?php bugfix(78961); ?> (erroneous optimization of re-assigned $GLOBALS).</li>
+  <li><?php bugfix(78950); ?> (Preloading trait method with static variables).</li>
+  <li><?php bugfix(78903); ?> (Conflict in RTD key for closures results in crash).</li>
+  <li><?php bugfix(78986); ?> (Opcache segfaults when inheriting ctor from immutable into mutable class).</li>
+  <li><?php bugfix(79040); ?> (Warning Opcode handlers are unusable due to ASLR).</li>
+  <li><?php bugfix(79055); ?> (Typed property become unknown with OPcache file cache).</li>
+</ul></li>
+<li>Pcntl:
+<ul>
+  <li><?php bugfix(78402); ?> (Converting null to string in error message is bad DX).</li>
+</ul></li>
+<li>PDO_PgSQL:
+<ul>
+  <li><?php bugfix(78983); ?> (pdo_pgsql config.w32 cannot find libpq-fe.h).</li>
+  <li><?php bugfix(78980); ?> (pgsqlGetNotify() overlooks dead connection).</li>
+  <li><?php bugfix(78982); ?> (pdo_pgsql returns dead persistent connection).</li>
+</ul></li>
+<li>Session:
+<ul>
+  <li><?php bugfix(79091); ?> (heap use-after-free in session_create_id()).</li>
+  <li><?php bugfix(79031); ?> (Session unserialization problem).</li>
+</ul></li>
+<li>Shmop:
+<ul>
+  <li><?php bugfix(78538); ?> (shmop memory leak).</li>
+</ul></li>
+<li>Sqlite3:
+<ul>
+  <li><?php bugfix(79056); ?> (sqlite does not respect PKG_CONFIG_PATH during compilation).</li>
+</ul></li>
+<li>Spl:
+<ul>
+  <li><?php bugfix(78976); ?> (SplFileObject::fputcsv returns -1 on failure).</li>
+</ul></li>
+<li>Standard:
+<ul>
+  <li><?php bugfix(79099); ?> (OOB read in php_strip_tags_ex). (CVE-2020-7059)</li>
+  <li><?php bugfix(79000); ?> (Non-blocking socket stream reports EAGAIN as error).</li>
+  <li><?php bugfix(54298); ?> (Using empty additional_headers adding extraneous CRLF).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
+
 <section class="version" id="7.4.1"><!-- {{{ 7.4.1 -->
 <h3>Version 7.4.1</h3>
 <b><?php release_date('18-Dec-2019'); ?></b>
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
    <uri>http://php.net/contact</uri>
    <email>php-webmaster@lists.php.net</email>
  </author>
+  <xi:include href="entries/2020-01-23-1.xml"/>
  <xi:include href="entries/2020-01-17-1.xml"/>
  <xi:include href="entries/2020-01-12-2.xml"/>
  <xi:include href="entries/2020-01-12-1.xml"/>
--- a/archive/entries/2020-01-23-1.xml
+++ b/archive/entries/2020-01-23-1.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom">
+  <title>PHP 7.4.2 Released</title>
+  <id>https://www.php.net/archive/2020.php#2020-01-23-1</id>
+  <published>2020-01-23T07:43:45+00:00</published>
+  <updated>2020-01-23T07:43:45+00:00</updated>
+  <link href="https://www.php.net/index.php#id2020-01-23-1" rel="alternate" type="text/html"/>
+  <link href="https://www.php.net/archive/2020.php#2020-01-23-1" rel="via" type="text/html"/>
+  <category term="frontpage" label="PHP.net frontpage news"/>
+  <category term="releases" label="New PHP release"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml">
+       <h1>PHP 7.4.2 Release Announcement</h1>
+     
+       <p>The PHP development team announces the immediate availability of PHP
+       7.4.2. This is a security release which also contains several bug fixes.</p>
+     
+       <p>All PHP 7.4 users are encouraged to upgrade to this version.</p>
+     
+       <p>For source downloads of PHP 7.4.2 please visit our <a href="http://www.php.net/downloads.php">downloads page</a>,
+       Windows source and binaries can be found on <a href="http://windows.php.net/download/">windows.php.net/download/</a>.
+       The list of changes is recorded in the <a href="http://www.php.net/ChangeLog-7.php#7.4.2">ChangeLog</a>.
+       </p>
+    </div>
+  </content>
+</entry>
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -2,6 +2,42 @@
 $OLDRELEASES = array (
  7 => 
  array (
+    '7.4.1' => 
+    array (
+      'announcement' => 
+      array (
+        'English' => '/releases/7_4_1.php',
+      ),
+      'tags' => 
+      array (
+      ),
+      'date' => '18 Dec 2019',
+      'source' => 
+      array (
+        0 => 
+        array (
+          'filename' => 'php-7.4.1.tar.bz2',
+          'name' => 'PHP 7.4.1 (tar.bz2)',
+          'sha256' => '6b1ca0f0b83aa2103f1e454739665e1b2802b90b3137fc79ccaa8c242ae48e4e',
+          'date' => '18 Dec 2019',
+        ),
+        1 => 
+        array (
+          'filename' => 'php-7.4.1.tar.gz',
+          'name' => 'PHP 7.4.1 (tar.gz)',
+          'sha256' => '67265d6bd48d828f4725964f71ca5c76c3da63b0d07bec5ec4e5acfdd3708073',
+          'date' => '18 Dec 2019',
+        ),
+        2 => 
+        array (
+          'filename' => 'php-7.4.1.tar.xz',
+          'name' => 'PHP 7.4.1 (tar.xz)',
+          'sha256' => '561bb866bdd509094be00f4ece7c3543ec971c4d878645ee81437e291cffc762',
+          'date' => '18 Dec 2019',
+        ),
+      ),
+      'museum' => false,
+    ),
    '7.2.25' => 
    array (
      'announcement' => 
--- a/include/version.inc
+++ b/include/version.inc
@@ -17,13 +17,13 @@
 */
 $RELEASES = (function() {
    /* PHP 7.4 Release */
-    $PHP_7_4_VERSION         = "7.4.1";
-    $PHP_7_4_DATE            = "18 Dec 2019";
-    $PHP_7_4_TAGS            = []; // Set to ['security'] for security releases.
+    $PHP_7_4_VERSION         = "7.4.2";
+    $PHP_7_4_DATE            = "23 Jan 2020";
+    $PHP_7_4_TAGS            = ['security']; // Set to ['security'] for security releases.
    $PHP_7_4_SHA256     = array(
-        "tar.gz"        => "67265d6bd48d828f4725964f71ca5c76c3da63b0d07bec5ec4e5acfdd3708073",
-        "tar.bz2"       => "6b1ca0f0b83aa2103f1e454739665e1b2802b90b3137fc79ccaa8c242ae48e4e",
-        "tar.xz"        => "561bb866bdd509094be00f4ece7c3543ec971c4d878645ee81437e291cffc762",
+        "tar.gz"        => "e1b8dbf561ac1d871362054ff4cd62dca5e19c8c896567996525dda7c4b320f9",
+        "tar.bz2"       => "02909974be9c70814ed5652a6bdae9c74220d41c1e5ed5ad921e15d028f8e816",
+        "tar.xz"        => "98284deac017da0d426117ecae7599a1f1bf62ae3911e8bc16c4403a8f4bdf13",
    );

    /* PHP 7.3 Release */
--- a/releases/7_4_2.php
+++ b/releases/7_4_2.php
@@ -0,0 +1,20 @@
+<?php
+$_SERVER['BASE_PAGE'] = 'releases/7_4_2.php';
+include_once __DIR__ . '/../include/prepend.inc';
+site_header("PHP 7.4.2 Release Announcement");
+?>
+
+  <h1>PHP 7.4.2 Release Announcement</h1>
+
+  <p>The PHP development team announces the immediate availability of PHP
+  7.4.2. This is a security release which also contains several bug fixes.</p>
+
+  <p>All PHP 7.4 users are encouraged to upgrade to this version.</p>
+
+  <p>For source downloads of PHP 7.4.2 please visit our <a href="http://www.php.net/downloads.php">downloads page</a>,
+  Windows source and binaries can be found on <a href="http://windows.php.net/download/">windows.php.net/download/</a>.
+  The list of changes is recorded in the <a href="http://www.php.net/ChangeLog-7.php#7.4.2">ChangeLog</a>.
+  </p>
+
+
+<?php site_footer(); ?>