Stanislav Malyshev
d3eb58332a
Add more locale length checks, due to ICU bugs.
2016-10-04 21:28:40 -07:00
Ilia Alshanetsky
a10d03ac16
Fixed test
2016-10-04 21:20:38 -07:00
Ilia Alshanetsky
085dfca02b
Added validation to parse_url() to prohibit restricted characters inside login/pass components based on RFC3986
2016-10-04 21:20:31 -07:00
Stanislav Malyshev
8ea01d5f19
Apparently negative wordwrap is a thing and should work as length = 0.
...
I'll leave it as is for now.
2016-10-03 19:17:42 -07:00
Stanislav Malyshev
631173aa5c
Really fix bug #73017
2016-10-03 18:07:21 -07:00
Stanislav Malyshev
ef801b9bf9
Fix bug #73208 - another missing length check
2016-10-03 00:12:14 -07:00
Stanislav Malyshev
40e7baab3c
Fix bug #73190 : memcpy negative parameter _bc_new_num_ex
2016-10-03 00:09:02 -07:00
Nikita Popov
f9d4b1a3f1
Fix leak in zend_exception_error
...
Only occurs if a non-fatal severity level is used, e.g. when using
interactive mode.
2016-10-01 19:04:31 +02:00
Christoph M. Becker
9acfb1a3a5
Fix #73213 : Integer overflow in imageline() with antialiasing
...
We port the respective fixes <https://github.com/libgd/libgd/commit/eca37d620 >
and <https://github.com/libgd/libgd/commit/837b7327 > to our bundled libgd.
2016-09-30 23:38:13 +02:00
Derick Rethans
c0219b323e
Fixed tests due to changes in underlaying data
2016-09-30 20:49:44 +01:00
Derick Rethans
91fd4bf000
Fixed parsing of AM/PM without all the expected dots in place
2016-09-30 20:21:48 +01:00
Christoph M. Becker
e72165bb86
Fix #73203 : passing additional_parameters causes mail to fail
...
We make sure that there's no unsigned underflow, which happened for `y==0`.
2016-09-30 11:38:09 +02:00
Stanislav Malyshev
da7e89cde8
Fix bug #73189 - Memcpy negative size parameter php_resolve_path
2016-09-28 23:30:48 -07:00
Stanislav Malyshev
29e2a204fb
Fixed bug #73174 - heap overflow in php_pcre_replace_impl
2016-09-28 22:29:59 -07:00
Ferenc Kovacs
703c247c7d
5.6.28 is next
2016-09-29 00:55:36 +02:00
Derick Rethans
6a544f2d1e
Updated to version 2016.7 (2016g)
2016-09-28 23:30:26 +01:00
Nikita Popov
1f5412982c
Handle resource keys in constexpr arrays
2016-09-28 23:11:02 +02:00
Nikita Popov
40b8105cca
Fix the constant array case as well
2016-09-28 23:05:21 +02:00
Nikita Popov
99bf19c177
Check next_index_insert failure in ADD_ARRAY_ELEMENT
2016-09-28 22:35:27 +02:00
Christoph M. Becker
4f0960a800
Fix #53745 : cgi.discard_path option is missing from php.ini
...
Also cgi.check_shebang_line has been missing.
2016-09-26 18:41:09 +02:00
Anatol Belski
66baefec44
update libs_versions.txt
2016-09-26 15:39:01 +02:00
Stanislav Malyshev
1c0e9126fb
Fix bug #73150 : missing NULL check in dom_document_save_html
2016-09-25 21:25:01 -07:00
Stanislav Malyshev
0e6fe3a4c9
Fix bug #73147 : Use After Free in PHP7 unserialize()
2016-09-25 19:53:59 -07:00
Stanislav Malyshev
e1709b7e58
Fix bug #73082
2016-09-25 16:07:14 -07:00
Christoph M. Becker
c696bc8cfa
Fix test_image_equals_file() wrt. palette images
...
The recently introduced test_image_equals_file() doesn't properly work for
palette images, because in this case only the palette indexes are compared,
what can lead to false positives and negatives as shown in the added test.
To fix that we convert palette images to truecolor, what is supposed to be
faster than calling imagecolorsforindex() for each pixel.
We furthermore rely on PHP's refcounting to free unused images; after all,
this is not C.
2016-09-25 10:34:03 +02:00
Christoph M. Becker
c596b02a5b
Merge branch 'pull-request/2120' into PHP-5.6
2016-09-24 17:52:15 +02:00
Christoph M. Becker
8f5eda4bf6
Fix #73161 : imagecreatefromgd2() may leak memory
2016-09-24 12:36:54 +02:00
Christoph M. Becker
709731797c
Fix #73159 : imagegd2(): unrecognized formats may result in corrupted files
...
We must not apply the format correction twice for truecolor images.
2016-09-24 11:28:20 +02:00
Christoph M. Becker
c7936ead8f
Fix #73155 : imagegd2() writes wrong chunk sizes on boundaries
2016-09-24 10:33:49 +02:00
Christoph M. Becker
1da79a6c6e
Fix #73157 (again): imagegd2() ignores 3rd param if 4 are given
...
Obviously, there was a bad merge.
2016-09-24 00:35:24 +02:00
Anatol Belski
075aa911ff
Revert "Fixed bug #73037 SoapServer reports Bad Request when gzipped"
...
This reverts commit f9a699f6c3
.
2016-09-23 18:45:03 +02:00
Anatol Belski
28887fe41b
skip this test for now as it seems to have issues running dev server
2016-09-23 18:07:08 +02:00
Anatol Belski
f9a699f6c3
Fixed bug #73037 SoapServer reports Bad Request when gzipped
...
(cherry picked from commit 410c68788a
)
2016-09-23 18:06:12 +02:00
Christoph M. Becker
9a2a45c1df
Update NEWS
2016-09-23 16:23:58 +02:00
Julien Pauli
a22175b06f
Formatting. Fix possible memory corruption in FPM SHM management
2016-09-23 13:52:58 +02:00
tom916
807004a446
fix every work call mmap
...
fix fpm_scoreboard_free
2016-09-23 13:52:58 +02:00
Christoph M. Becker
726c5999eb
Rework FreeType related tests
...
Firstly, there is no fundamental difference between running the tests on
freetype before and after 2.4.10, so we re-join the respective test cases.
Secondly, there are some minor differences in the results depending on
architecture, freetype versions and config options, so we cater to that
by allowing small deviations from the expectations.
2016-09-23 12:00:41 +02:00
Anatol Belski
49c3fa43ad
update libs versions
2016-09-22 17:01:02 +02:00
Márcio Almada
4397306b32
fix bug related to #865
...
In case USE_KEY flag is active, RegexIterator->accept() should keep it's
old behavior which is to accept keys mapping arrays.
This broke after PHP 5.5 but was not noticed due to lack of tests for USE_KEY.
2016-09-22 12:46:19 +02:00
Stanislav Malyshev
33a8af0510
Fix bug #73073 - CachingIterator null dereference when convert to string
2016-09-20 22:59:12 -07:00
Dmitry Stogov
4dd70b6e2f
Fixed inconsistent meaning of zend_startup_module_ex() return value used in zend_hash_apply()
2016-09-20 12:29:57 +03:00
Christoph M. Becker
fc2cadca2d
Merge branch 'pull-request/1845' into PHP-5.6
2016-09-20 01:05:57 +02:00
George Wang
56fa36b0a8
Fix wrong year in previous commit.
2016-09-19 10:46:46 -04:00
Julien Pauli
1ed4b13fb6
Do not wrap user exception in case of custom JSON serialization
2016-09-19 16:06:12 +02:00
Christoph M. Becker
6682673070
Fix #73100 : session_destroy null dereference in ps_files_path_create
2016-09-16 23:41:10 +02:00
Xinchen Hui
01c7c6b152
Updte NEWS
2016-09-16 20:55:37 +08:00
Xinchen Hui
ac07008bb7
Fixed bug #72505 (readfile() mangles files larger than 2G)
2016-09-16 20:53:51 +08:00
Christoph M. Becker
46df064261
Fix #73003 : Integer Overflow in gdImageWebpCtx of gd_webp.c
...
We add the missing integer overflow check to avoid potential buffer overflows.
2016-09-16 11:37:18 +02:00
Remi Collet
3c117d4136
fix test (32bits)
2016-09-15 15:32:39 +02:00
Remi Collet
55237fe153
fix ZTS build
2016-09-15 13:27:20 +02:00