Stanislav Malyshev
c11b23c465
Fix bug #71540 - NULL pointer dereference in xsl_ext_function_php()
2016-02-15 00:08:18 -08:00
Lior Kaplan
49493a2dcf
Happy new year (Update copyright to 2016)
2016-01-01 19:21:47 +02:00
Stanislav Malyshev
33d3acaae7
Merge branch 'PHP-5.4' into PHP-5.5
...
* PHP-5.4:
Improve fix for #70172
Fix bug #70312 - HAVAL gives wrong hashes in specific cases
fix test
add test
Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList
Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage
Fix bug #70172 - Use After Free Vulnerability in unserialize()
Fix bug #70388 - SOAP serialize_function_call() type confusion
Fixed bug #70350 : ZipArchive::extractTo allows for directory traversal when creating directories
Improve fix for #70385
Fix bug #70345 (Multiple vulnerabilities related to PCRE functions)
Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes)
Fix bug #70219 (Use after free vulnerability in session deserializer)
Fix for bug #69782
Add CVE IDs asigned (post release) to PHP 5.4.43
Add CVE IDs asigned to #69085 (PHP 5.4.39)
5.4.45 next
Conflicts:
configure.in
ext/pcre/php_pcre.c
ext/standard/var_unserializer.c
ext/standard/var_unserializer.re
main/php_version.h
2015-09-01 11:42:19 -07:00
Stanislav Malyshev
1744be2d17
Fix for bug #69782
2015-08-16 17:16:15 -07:00
Xinchen Hui
73c1be2653
Bump year
2015-01-15 23:26:03 +08:00
Xinchen Hui
47c9027772
Bump year
2014-01-03 11:06:16 +08:00
Xinchen Hui
c0d060f5c0
Bump year
2014-01-03 11:04:26 +08:00
Michael Wallner
6408a1a59e
fix bug #49634x
2013-12-02 12:10:00 +01:00
Christopher Jones
9ad97cd489
Reduce (some) compile noise of 'unused variable' and 'may be used uninitialized' warnings.
2013-08-14 20:36:50 -07:00
Xinchen Hui
0a7395e009
Happy New Year
2013-01-01 16:28:54 +08:00
Marc Easen
896ac689c9
Fixed the common misspelling of the word occurred (occured -> occurred)
2012-06-30 16:54:03 -07:00
Felipe Pena
4e19825281
- Year++
2012-01-01 13:15:04 +00:00
Christian Stocker
eb039d5783
Added the xsl.security_prefs option to 5_4 and trunk and
...
mark it as deprecated for BC-reasons
Added tests for ini option and combination of both
2011-10-10 07:59:19 +00:00
Christian Stocker
6873ef7055
- Set an empty string and avoid warnings and stopping of the transformation process
...
when a php function can't be called.
- Fixed tests.
2011-08-31 09:14:08 +00:00
Ilia Alshanetsky
9c297247ef
Another build fix relating to previous DOM commit
2011-08-08 16:49:43 +00:00
Ilia Alshanetsky
0b3cb3f220
Fixed build
2011-08-08 16:06:40 +00:00
Pierrick Charron
e03d19a00e
Remove unused variables
2011-08-07 06:37:22 +00:00
Pierre Joye
894a746a80
- fix build
2011-07-14 11:12:33 +00:00
Christian Stocker
6be6c2d62d
Added XsltProcessor::setSecurityPrefs($options) and getSecurityPrefs()
...
to define forbidden operations within XSLT stylesheets, default is not to
enable any write operations from XSLT anymore. Bug #54446
(second iteration of the code for trunk, first commit for 5.4 branch)
2011-07-12 04:58:38 +00:00
Felipe Pena
32b5f8a1a3
- Added new parameter parsing option (p - for valid path (string without null byte in the middle))
...
# The tests will be fixed in the next commits
2011-06-06 21:28:16 +00:00
Felipe Pena
0203cc3d44
- Year++
2011-01-01 02:17:06 +00:00
Dmitry Stogov
94dd83722b
Changed the structure of op_array.opcodes. The constant values are moved from opcode operands into a separate literal table
2010-04-20 10:57:45 +00:00
Sebastian Bergmann
9ba1e81665
sed -i "s#1997-2009#1997-2010#g" **/*.c **/*.h **/*.php
2010-01-03 09:23:27 +00:00
Ilia Alshanetsky
556dde6a34
Fixed return value to comply with tests
2009-09-02 13:07:44 +00:00
Matt Wilmas
1fa3b21c15
MFH: Fixed error message grammar:
...
- "cannot" instead of "can not" (meaning "also can")
- "than" instead of "then" (Hint: "then" should hardly be needed;
you're not telling the order in which to do something)
... plus removed a couple ending. dots
2009-06-06 02:40:49 +00:00
Felipe Pena
424c018991
- Fix error message
2009-05-23 14:26:47 +00:00
David Coallier
0204349438
- Removed the RETURN_TRUE to keep consistency with documentation. This function
...
is supposed to be "void registerPHPFunctions"
2009-05-10 19:59:47 +00:00
Felipe Pena
680bc45ba5
- MFH: Fixed bug #48221 (memory leak when passing invalid xslt parameter)
2009-05-10 15:13:05 +00:00
Sebastian Bergmann
08659c2dcd
MFH: Bump copyright year, 3 of 3.
2008-12-31 11:15:49 +00:00
Rob Richards
64a1f04f17
MFH: fix arginfo - these also accept SimpleXMLElement
2008-12-05 18:35:43 +00:00
Dmitry Stogov
7d4fd3fd38
Fixed bug #46409 (__invoke method called outside of object context when using array_map)
2008-11-27 19:01:23 +00:00
Felipe Pena
fc2fb50d09
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-11-17 11:28:01 +00:00
Felipe Pena
7a37fa2d6b
- Revert ZEND_BEGIN_ARG_INFO change
2008-11-02 21:19:39 +00:00
Felipe Pena
df10005563
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-10-24 14:35:40 +00:00
Rob Richards
24e9b91193
MFH: fix bug #46099 (Xsltprocessor::setProfiling - memory leak)
2008-09-18 11:47:59 +00:00
Rob Richards
87922550b0
MFH: fix bug #44891 Memory leak using registerPHPFunctions and XSLT Variable
2008-05-04 15:14:23 +00:00
Sebastian Bergmann
9d86113b20
MFH: Fix arginfo and prototype.
2008-01-29 21:21:20 +00:00
Sebastian Bergmann
98527ad549
MFH: Add Reflection API metadata for XSLTProcessor.
2008-01-29 07:51:43 +00:00
Sebastian Bergmann
d1dded8751
MFH: Bump copyright year, 2 of 2.
2007-12-31 07:17:19 +00:00
Yiduo (David) Wang
4b4d634cb9
MFH: Added macros for managing zval refcounts and is_ref statuses
2007-10-07 05:22:07 +00:00
Antony Dovgal
ca4c55ad3a
MFH: fix ws & folding, nuke unused vars
2007-10-06 21:28:50 +00:00
Christian Stocker
5b0f4647b6
- Added xsl->setProfiling() for profiling stylesheets.
2007-10-02 06:31:18 +00:00
Dmitry Stogov
6c810b0d4c
Improved memory usage by movig constants to read only memory. (Dmitry, Pierre)
2007-09-27 18:00:48 +00:00
Rob Richards
b96718ba20
allow user specified class to be returned from transformToDoc
2007-07-30 16:33:22 +00:00
Sebastian Bergmann
4223aa4d5e
MFH: Bump year.
2007-01-01 09:36:18 +00:00
Ilia Alshanetsky
7f376183f8
C++ comment
2006-12-30 02:28:15 +00:00
Antony Dovgal
9c2b6efb77
MFH
2006-12-25 22:27:24 +00:00
Rob Richards
865f4d75be
fix bug #39625 (Apache crashes on importStylesheet call)
2006-12-05 12:04:34 +00:00
Christian Stocker
88dfe8cfd9
return false instead of null, if it's an invalid document
2006-07-31 13:05:35 +00:00
Christian Stocker
e53c538151
return true, if xsl import did work
2006-07-31 12:50:42 +00:00