diff options
author | Stanislav Malyshev <stas@php.net> | 2016-07-19 22:49:07 -0700 |
---|---|---|
committer | Stanislav Malyshev <stas@php.net> | 2016-07-19 22:49:07 -0700 |
commit | d4d8fb1b25c31fdc89c06824344f5c63fe36018c (patch) | |
tree | a44ddec3b7a251785cac8c46dc21262b032fab65 | |
parent | 8ebdb1f5fd19cb15dd6ac7700c781ede5dcbba95 (diff) | |
download | php-git-d4d8fb1b25c31fdc89c06824344f5c63fe36018c.tar.gz |
Update NEWS
-rw-r--r-- | NEWS | 41 |
1 files changed, 39 insertions, 2 deletions
@@ -4,12 +4,49 @@ PHP NEWS ?? ?? 2016, PHP 5.5.38 -Core: +- BZip2: + . Fixed bug #72613 (Inadequate error handling in bzread()). (Stas) + +- Core: . Fixed bug #70480 (php_url_parse_ex() buffer overflow read). (Stas) + . Fixed bug #72513 (Stack-based buffer overflow vulnerability in + virtual_file_ex). (loianhtuan at gmail dot com) + . Fixed bug #72562 (Use After Free in unserialize() with Unexpected Session + Deserialization). (taoguangchen at icloud dot com) + . Fixed bug #72573 (HTTP_PROXY is improperly trusted by some PHP libraries and + applications). (CVE-2016-5385) (Stas) + +- EXIF: + . Fixed bug #72603 (Out of bound read in exif_process_IFD_in_MAKERNOTE). + (Stas) + . Fixed bug #72618 (NULL Pointer Dereference in exif_process_user_comment). + (Stas) + +- GD: + . Fixed bug #72512 (gdImageTrueColorToPaletteBody allows arbitrary write/read + access). (Pierre) + . Fixed bug #72519 (imagegif/output out-of-bounds access). (Pierre) + . Fixed bug #72558 (Integer overflow error within _gdContributionsAlloc()). + (CVE-2016-6207) (Pierre) + +- Intl: + . Fixed bug #72533 (locale_accept_from_http out-of-bounds access). (Stas) -ODBC: +- ODBC: . Fixed bug #69975 (PHP segfaults when accessing nvarchar(max) defined columns) +- SNMP: + . Fixed bug #72479 (Use After Free Vulnerability in SNMP with GC and + unserialize()). (taoguangchen at icloud dot com) + +- Xmlrpc: + . Fixed bug #72606 (heap-buffer-overflow (write) simplestring_addn simplestring.c). + (Stas) + +- Zip: + . Fixed bug #72520 (Stack-based buffer overflow vulnerability in + php_stream_zip_opener). (loianhtuan at gmail dot com) + 23 Jun 2016, PHP 5.5.37 - Core: |