|
1 | 1 | PHP NEWS |
2 | 2 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| |
| 3 | +03 Sep 2015, PHP 7.0.0 RC 2 |
| 4 | + |
| 5 | +- Core: |
| 6 | + . Fixed bug #70398 (SIGSEGV, Segmentation fault zend_ast_destroy_ex). |
| 7 | + (Dmitry, Bob, Laruence) |
| 8 | + . Fixed bug #70332 (Wrong behavior while returning reference on object). |
| 9 | + (Laruence, Dmitry) |
| 10 | + . Fixed bug #70300 (Syntactical inconsistency with new group use syntax). |
| 11 | + (marcio dot web2 at gmail dot com) |
| 12 | + . Fixed bug #70321 (Magic getter breaks reference to array property). |
| 13 | + (Laruence) |
| 14 | + . Fixed bug #70187 (Notice: unserialize(): Unexpected end of serialized data) |
| 15 | + (Dmitry) |
| 16 | + . Fixed bug #70145 (From field incorrectly parsed from headers). (Anatol) |
| 17 | + . Fixed bug #70370 (Bundled libtool.m4 doesn't handle FreeBSD 10 when |
| 18 | + building extensions). (Adam) |
| 19 | + . Fixed bug causing exception traces with anon classes to be truncated. (Bob) |
| 20 | + . Fixed bug #70397 (Segmentation fault when using Closure::call and yield). |
| 21 | + (Bob) |
| 22 | + |
| 23 | +- Curl: |
| 24 | + . Fixed bug #70330 (Segmentation Fault with multiple "curl_copy_handle"). |
| 25 | + (Laruence) |
| 26 | + |
| 27 | +- EXIF: |
| 28 | + . Fixed bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte |
| 29 | + value of 32 bytes). (Stas) |
| 30 | + |
| 31 | +- hash: |
| 32 | + . Fixed bug #70312 (HAVAL gives wrong hashes in specific cases). (letsgolee |
| 33 | + at naver dot com) |
| 34 | + |
| 35 | +- Mysqli: |
| 36 | + . Fixed bug #32490 (constructor of mysqli has wrong name). (cmb) |
| 37 | + |
| 38 | +- Pcntl: |
| 39 | + . Fixed bug #70386 (Can't compile on NetBSD because of missing WCONTINUED |
| 40 | + and WIFCONTINUED). (Matteo) |
| 41 | + |
| 42 | +- PCRE: |
| 43 | + . Fixed bug #70232 (Incorrect bump-along behavior with \K and empty string |
| 44 | + match). (cmb) |
| 45 | + . Fixed bug #70345 (Multiple vulnerabilities related to PCRE functions). |
| 46 | + (Anatol Belski) |
| 47 | + |
| 48 | +- PDO: |
| 49 | + - Fixed bug #70389 (PDO constructor changes unrelated variables). (Laruence) |
| 50 | + |
| 51 | +- PDO_OCI: |
| 52 | + . Fixed bug #70308 (PDO::ATTR_PREFETCH is ignored). (Chris Jones) |
| 53 | + |
| 54 | +- SOAP: |
| 55 | + . Fixed bug #70388 (SOAP serialize_function_call() type confusion / RCE). |
| 56 | + (Stas) |
| 57 | + |
| 58 | +- SPL: |
| 59 | + . Fixed bug #70303 (Incorrect constructor reflection for ArrayObject). (cmb) |
| 60 | + |
| 61 | +- Standard: |
| 62 | + . Fixed bug #70342 (changing configuration with ignore_user_abort(true) isn't |
| 63 | + working). (Laruence) |
| 64 | + . Fixed bug #70295 (Segmentation fault with setrawcookie). (Bob) |
| 65 | + . Fixed bug #67131 (setcookie() conditional for empty values not met). (cmb) |
| 66 | + . Fixed bug #70365 (Use-after-free vulnerability in unserialize() with |
| 67 | + SplObjectStorage). (taoguangchen at icloud dot com) |
| 68 | + . Fixed bug #70366 (Use-after-free vulnerability in unserialize() with |
| 69 | + SplDoublyLinkedList). (taoguangchen at icloud dot com) |
| 70 | + |
| 71 | +- Reflection: |
| 72 | + . Fixed bug causing bogus traces for ReflectionGenerator::getTrace(). (Bob) |
| 73 | + |
| 74 | +- XSLT: |
| 75 | + . Fixed bug #69782 (NULL pointer dereference). (Stas) |
| 76 | + |
| 77 | +- ZIP: |
| 78 | + . Fixed bug #70350 (ZipArchive::extractTo allows for directory traversal when |
| 79 | + creating directories). (neal at fb dot com) |
| 80 | + |
3 | 81 | 20 Aug 2015, PHP 7.0.0 RC 1 |
4 | 82 |
|
5 | 83 | - Core: |
| 84 | + . Fixed bug #70299 (Memleak while assigning object offsetGet result). |
| 85 | + (Laruence) |
6 | 86 | . Fixed bug #70288 (Apache crash related to ZEND_SEND_REF). (Laruence) |
7 | 87 | . Fixed bug #70262 (Accessing array crashes PHP 7.0beta3). |
8 | 88 | (Laruence, Dmitry) |
@@ -128,7 +208,7 @@ PHP NEWS |
128 | 208 |
|
129 | 209 | - Standard: |
130 | 210 | . Fixed bug #70140 (str_ireplace/php_string_tolower - Arbitrary Code |
131 | | - Execution). (Laruence) |
| 211 | + Execution). (CVE-2015-6527) (Laruence) |
132 | 212 | . Implemented FR #70112 (Allow "dirname" to go up various times). (Remi) |
133 | 213 | . Fixed bug #36365 (scandir duplicates file name at every 65535th file). (cmb) |
134 | 214 |
|
@@ -491,7 +571,7 @@ PHP NEWS |
491 | 571 | - pcntl: |
492 | 572 | . Fixed bug #60509 (pcntl_signal doesn't decrease ref-count of old handler |
493 | 573 | when setting SIG_DFL). (Julien) |
494 | | - . Added wifcontinued and wcontinued. (xilon-jul) |
| 574 | + . Request #68505 (Added wifcontinued and wcontinued). (xilon-jul) |
495 | 575 | . Added rusage support to pcntl_wait() and pcntl_waitpid(). (Anton Stepanenko, |
496 | 576 | Tony) |
497 | 577 |
|
|
0 commit comments