Yasuo Ohgaki
fb9444e053
Update NEWS
2016-09-09 11:34:34 +09:00
Yasuo Ohgaki
38553e853b
Fixed Bug #68015 Session does not report invalid uid for files save handler
2016-09-09 11:31:54 +09:00
Yasuo Ohgaki
2c3bc4eb55
Update NEWS
2016-09-08 13:35:38 +09:00
Yasuo Ohgaki
c50ae8fda7
Update NEWS
2016-09-08 13:35:35 +09:00
Yasuo Ohgaki
fb1c46f013
Update NEWS
2016-09-08 13:35:30 +09:00
Christoph M. Becker
5d394b3bb4
Merge branch 'PHP-7.0' into PHP-7.1
2016-09-06 12:16:42 +02:00
Christoph M. Becker
af3031d755
Merge branch 'PHP-5.6' into PHP-7.0
2016-09-06 12:11:24 +02:00
Christoph M. Becker
dad793630d
Fix #73025 : Heap Buffer Overflow in virtual_popen of zend_virtual_cwd.c
...
`command_length` is retrieved via strlen() and later passed to emalloc()
and memcpy(), so the appropriate type is `size_t`.
We don't add a regression test, because that would need to allocate a string
of at least 2 GiB.
2016-09-06 12:05:58 +02:00
Yasuo Ohgaki
3a35d43ad9
Update NEWS
2016-09-06 18:29:20 +09:00
Yasuo Ohgaki
0adf9191ad
Update NEWS
2016-09-06 18:29:00 +09:00
Yasuo Ohgaki
a58e6d4e34
Update NEWS
2016-09-06 18:28:45 +09:00
Christoph M. Becker
81ec843d0e
Merge branch 'PHP-5.6' into PHP-7.0
2016-09-06 01:15:36 +02:00
Christoph M. Becker
8aad3131a1
Fix #70752 : Depacking with wrong password leaves 0 length files
...
We should not open the output stream before we have tried to open the
archive entry, as failing the latter could leave an empty file behind.
2016-09-06 01:03:46 +02:00
Julien Pauli
dd6da58fac
Updated NEWS
2016-09-05 17:03:29 +02:00
Julien Pauli
5f9fe06555
Updated NEWS
2016-09-05 10:19:21 +02:00
Julien Pauli
d185c2f13a
Updated NEWS
2016-09-05 10:18:39 +02:00
Julien Pauli
1abbcc8cc5
Updated NEWS
2016-09-05 10:17:56 +02:00
Christoph M. Becker
b7259b71b4
Fix #72994 : mbc_to_code() out of bounds read
...
We're backporting commit 999a3553
to the still supported PHP 5.6.
2016-09-04 16:37:06 +02:00
Nikita Popov
1ae2d074f8
Fix bug #72996
2016-09-03 23:30:23 +02:00
Christoph M. Becker
85824eda36
Merge branch 'PHP-7.0' into PHP-7.1
2016-09-03 20:09:50 +02:00
Christoph M. Becker
8cc9570f53
Merge branch 'PHP-5.6' into PHP-7.0
2016-09-03 19:59:44 +02:00
Christoph M. Becker
d582241368
Fix #67325 : imagetruecolortopalette: white is duplicated in palette
...
gdImageTrueColorToPalette() is sometimes wasteful by putting multiple white
color entries into the palette. This is caused by an obvious typo, where
to avoid a division by zero when `total` is zero, `count` is checked instead
of `total`.
We fix this issue to improve the quality of the color quantization.
Cf. <https://github.com/libgd/libgd/commit/24b4550f >
2016-09-03 19:50:42 +02:00
Christoph M. Becker
8f110ee4dc
Update to SQLite 3.14.1
2016-09-02 17:58:16 +02:00
Ferenc Kovacs
fbb81dd755
5.6.27 will be next
2016-09-01 20:27:19 +02:00
Xinchen Hui
06e4a03e01
Update NEWS
2016-09-01 12:11:24 +08:00
Xinchen Hui
1ee41683dc
Fixed bug #72982 (Memory leak in zend_accel_blacklist_update_regexp() function)
2016-09-01 12:10:38 +08:00
Yasuo Ohgaki
4f07f0e93f
Update NEWS and UPGRADING
2016-09-01 10:32:34 +09:00
Yasuo Ohgaki
5366df75b4
Revert "Fix NEWS"
...
This reverts commit abc2271b8d
.
2016-09-01 10:12:16 +09:00
Yasuo Ohgaki
abc2271b8d
Fix NEWS
2016-09-01 05:53:26 +09:00
Davey Shafik
f17d67123f
Update NEWS for 7.1.0RC2
2016-08-31 17:01:42 +00:00
Yasuo Ohgaki
97f2bb894a
Update NEWS
2016-08-31 21:10:57 +09:00
Yasuo Ohgaki
e385b05ebe
Update NEWS
2016-08-31 21:08:23 +09:00
Yasuo Ohgaki
747b61808b
Update NEWS
2016-08-31 21:06:19 +09:00
Davey Shafik
11f0f97160
Update NEWS
2016-08-30 19:47:50 -07:00
Nikita Popov
02fb46e17c
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 18:07:21 +02:00
Nikita Popov
3317287ce1
Fix bug #71711
...
Also handle another case of bug #71996 .
2016-08-30 18:06:18 +02:00
Nikita Popov
b218eb916f
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 17:21:33 +02:00
Nikita Popov
8e487aefaa
Fixed bug #71996
2016-08-30 17:20:55 +02:00
Christoph M. Becker
ecdef60d00
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 15:12:49 +02:00
Christoph M. Becker
972302d2f0
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-30 15:01:12 +02:00
Christoph M. Becker
2f10db36af
Fix #66797 : mb_substr only takes 32-bit signed integer
...
`from` and `len` are `long`, but get passed to mbfl_substr() which expects
`int`s. Therefore we clamp the values to avoid the undefined conversion
behavior.
2016-08-30 14:52:47 +02:00
Anatol Belski
52afd8b744
fix typo
2016-08-30 14:11:47 +02:00
Anatol Belski
bc7460260b
prepare for next
2016-08-30 14:11:22 +02:00
Nikita Popov
d49024c6de
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 13:06:32 +02:00
Nikita Popov
bfd4277008
Fix bug #72957
2016-08-30 13:05:53 +02:00
Nikita Popov
51a564e505
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 10:56:06 +02:00
Nikita Popov
07cc6a6ba2
Fix bug #72971
2016-08-30 10:54:31 +02:00
Yasuo Ohgaki
4a12450de2
Update NEWS
2016-08-30 16:05:49 +09:00
Yasuo Ohgaki
b5f2f6fbd8
Fixed bug #72940 SID always return "name=ID", even if session cookie exist
2016-08-30 15:58:25 +09:00
Christoph M. Becker
38a7c0e0f7
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 02:24:43 +02:00
Christoph M. Becker
65f0c163f9
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-30 02:13:48 +02:00
Christoph M. Becker
207dab585a
Fix #71882 : Negative ftruncate() on php://memory exhausts memory
...
We must not pass negative sizes to a size_t parameter.
2016-08-30 02:05:45 +02:00
Christoph M. Becker
ec8bbba9c6
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-30 01:18:59 +02:00
Christoph M. Becker
4b45c0a9a7
Merge branch 'pull-request/2043' into PHP-7.0
2016-08-30 01:16:45 +02:00
Anatol Belski
6bb5b6e8a3
update NEWS
2016-08-29 21:26:13 +02:00
Anatol Belski
5bcae9d586
update NEWS
2016-08-29 21:23:20 +02:00
Anatol Belski
ae81e8fc32
update NEWS
2016-08-29 21:20:36 +02:00
Jakub Zelenka
f5b4aae7ac
Update NEWS with info about a json_encode fail return
2016-08-29 14:59:44 +01:00
Dmitry Stogov
b5bab0fce8
Merge branch 'PHP-7.0' into PHP-7.1
...
* PHP-7.0:
Fixed bug #72944 (Null pointer deref in zval_delref_p).
2016-08-29 12:07:54 +03:00
Dmitry Stogov
b66039db33
Fixed bug #72944 (Null pointer deref in zval_delref_p).
2016-08-29 12:02:50 +03:00
Christoph M. Becker
3a78530b8a
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-27 01:23:36 +02:00
Christoph M. Becker
8fcfacf746
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-27 01:18:10 +02:00
Christoph M. Becker
2139918ea6
Fix #65550 : get_browser() incorrectly parsers entries with "+" sign
...
+ signs in the browscap patterns are meant to be literal characters, so we
have to escape them for the regex matching.
2016-08-27 01:12:01 +02:00
Christoph M. Becker
14cd14ddaf
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-26 18:52:06 +02:00
Christoph M. Becker
c4c3eb55a7
Fix #72949 : Typo in opcache error message
2016-08-26 18:50:30 +02:00
Xinchen Hui
557f1ccf0c
Merge branch 'PHP-7.0' into PHP-7.1
...
* PHP-7.0:
Fixed bug #72943 (assign_dim on string doesn't reset hval)
Conflicts:
Zend/zend_execute.c
2016-08-26 18:32:54 +08:00
Xinchen Hui
c67fa3c91d
Fixed bug #72943 (assign_dim on string doesn't reset hval)
2016-08-26 18:30:08 +08:00
Anatol Belski
9f6d2c05b4
update NEWS
2016-08-25 19:44:55 +02:00
Anatol Belski
57509fb969
update NEWS
2016-08-25 19:43:39 +02:00
Christoph M. Becker
3f53814ca7
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-25 18:41:45 +02:00
Christoph M. Becker
433976f931
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-25 18:29:23 +02:00
Christoph M. Becker
84512a1177
Fix #70825 : Cannot fetch multiple values with group in ini file
...
If we have the position already from the last fetch, we also have to preset
the current group, because it won't be read again.
2016-08-25 18:18:10 +02:00
Christoph M. Becker
bd8112afe0
Fix #71514 : Bad dba_replace condition because of wrong API usage
...
We're backporting commit 9e309a2d
to PHP-5.6, because it is a bugfix.
2016-08-25 16:20:30 +02:00
Anatol Belski
cd5cab6288
update NEWS
2016-08-25 12:14:33 +02:00
Anatol Belski
392c5ea472
Fixed bug #72922 COM called from PHP does not return out parameters
2016-08-25 12:12:45 +02:00
Levi Morrison
f4e68a3968
Revert "Do not prepend ? on nullables in ReflectionType::__toString()"
...
This reverts commit 8855a2ce76
.
2016-08-23 09:43:31 -06:00
Dmitry Stogov
62ab40bc96
Added tests and NEWS entry
...
Fixed bug #72598 (Reference is lost after array_slice())
2016-08-23 12:14:31 +03:00
Xinchen Hui
434ae90e85
Fixed bug #72920 (Accessing a private constant using constant() creates an exception AND warning)
2016-08-22 23:44:38 +08:00
Christoph M. Becker
5347246f56
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-21 19:55:09 +02:00
Christoph M. Becker
4c13a7f5c4
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-21 19:48:38 +02:00
Christoph M. Becker
6a232c3604
Fix #68716 : possible resource leaks in _php_image_convert()
...
We properly clean up after ourselves wrt. to closing opened file pointers
and created images.
2016-08-21 19:39:58 +02:00
Christoph M. Becker
3dc6c4b329
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-21 17:51:53 +02:00
Christoph M. Becker
4c68fc5392
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-21 17:45:49 +02:00
Christoph M. Becker
d65adac2be
Fix #72913 : imagecopy() loses single-color transparency on palette images
...
The proper code to handle true-color to palette copies is already contained
in gdImageCopy(), so we can simply remove the buggy duplicated code.
2016-08-21 17:39:23 +02:00
Christoph M. Becker
15f1b04198
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-21 16:21:13 +02:00
Christoph M. Becker
7a36056d6c
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-21 16:15:22 +02:00
Christoph M. Becker
9eb5bbd8bd
Fix #66005 : imagecopy does not support 1bit transparency on truecolor images
...
We must not copy transparent pixels, see
<https://github.com/libgd/libgd/commit/daac285c >.
2016-08-21 16:08:57 +02:00
Xinchen Hui
0476bb1de5
Fixed bug #72911 (Memleak in zend_binary_assign_op_obj_helper)
2016-08-21 17:38:03 +08:00
Xinchen Hui
b740bb3987
Fixed bug #72907 (null pointer deref, segfault in gc_remove_zval_from_buffer (zend_gc.c:260))
2016-08-21 17:10:10 +08:00
Aaron Piotrowski
8855a2ce76
Do not prepend ? on nullables in ReflectionType::__toString()
...
Better BC with 7.0.
2016-08-21 00:12:47 -05:00
Christoph M. Becker
29849e5ba1
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-20 03:11:05 +02:00
Christoph M. Becker
078f674212
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-20 03:04:08 +02:00
Christoph M. Becker
e4a006cd3e
Fix #65732 : grapheme_*() is not Unicode compliant on CR LF sequence
...
According to the Unicode specification (at least as of 5.1), CRLF sequences
are considered to be a single grapheme. We cater to that special case by
letting grapheme_ascii_check() fail. While it would be trivial to fix
grapheme_ascii_check() wrt. grapheme_strlen(), grapheme_substr() and
grapheme_strrpos() would be much harder to handle, so we accept the slight
performance penalty if CRLF is involved.
2016-08-20 03:01:35 +02:00
Christoph M. Becker
76c796fb27
Merge branch 'PHP-7.0' into PHP-7.1
2016-08-20 02:28:18 +02:00
Christoph M. Becker
db1ef5cb00
Merge branch 'PHP-5.6' into PHP-7.0
2016-08-20 02:14:49 +02:00
Christoph M. Becker
9164dc11e2
Fix #72714 : _xml_startElementHandler() segmentation fault
...
The issue is caused by an integer overflow when the `long` passed as
XML_OPTION_SKIP_TAGSTART is assigned to `xml_parser::toffset` which is
declared as `int`. We can simply work around this issue, by clipping
resulting negative values to 0 (and raising a notice in this case), because
the reasonable range for this value is certainly catered to by positive
`int`s.
However, there still remains the issue that `xml_parser::toffset` is later
added to `char *`s, which can cause OOB reads, so we make sure that the
upper bound never exceeds the strlen(). We eschew optimizing `SKIP_TAGSTART`
wrt. to the potentially duplicate strlen() call, because that code path is
unexpected anyway.
2016-08-20 01:58:08 +02:00
Anatol Belski
98a155f336
update NEWS
2016-08-20 01:38:56 +02:00
Anatol Belski
a556543a3f
update NEWS
2016-08-20 01:38:01 +02:00
Anatol Belski
f682193609
update NEWS
2016-08-20 01:36:37 +02:00
Davey Shafik
0880bd1bb6
Update NEWS for 7.1.0RC1
2016-08-19 06:51:53 +00:00