diff options
author | Lior Kaplan <kaplanlior@gmail.com> | 2015-08-10 11:52:23 +0300 |
---|---|---|
committer | Lior Kaplan <kaplanlior@gmail.com> | 2015-08-10 11:52:23 +0300 |
commit | eaf5beabf4280d1ffc49956b932528a5b991a427 (patch) | |
tree | 5b35644597de24a3a8dc4d1640ab4470e689aa1d | |
parent | c1127c4de354f587e3c0e8a384a16814dd665ca5 (diff) | |
download | php-git-eaf5beabf4280d1ffc49956b932528a5b991a427.tar.gz |
Align NEWS with 5.6.12
-rw-r--r-- | NEWS | 29 |
1 files changed, 28 insertions, 1 deletions
@@ -4,7 +4,6 @@ PHP NEWS - Core: . Fixed bug #69900 (Too long timeout on pipes). (Anatol) - . Fixed bug #70002 (TS issues with temporary dir handling). (Anatol) - CLI server: . Fixed bug #66606 (Sets HTTP_CONTENT_TYPE but not CONTENT_TYPE). @@ -18,6 +17,13 @@ PHP NEWS - Core: . Fixed bug #70012 (Exception lost with nested finally block). (Laruence) + . Fixed bug #70002 (TS issues with temporary dir handling). (Anatol) + . Fixed bug #69793 (Remotely triggerable stack exhaustion via recursive + method calls). (Stas) + . Fixed bug #69892 (Different arrays compare indentical due to integer key + truncation). (Nikita) + . Fixed bug #70121 (unserialize() could lead to unexpected methods execution + / NULL pointer deref). (Stas) - CLI server: . Fixed bug #69655 (php -S changes MKCALENDAR request method to MKCOL). (cmb) @@ -44,6 +50,27 @@ PHP NEWS - OpenSSL: . Fixed bug #69882 (OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra cert). (Tomasz Sawicki) + . Fixed bug #70014 (openssl_random_pseudo_bytes() is not cryptographically + secure). (Stas) + +- Phar: + . Improved fix for bug #69441. (Anatol Belski) + . Fixed bug #70019 (Files extracted from archive may be placed outside of + destination directory). (Anatol Belski) + +- SOAP: + . Fixed bug #70081 (SoapClient info leak / null pointer dereference via + multiple type confusions). (Stas) + +- SPL: + . Fixed bug #70068 (Dangling pointer in the unserialization of ArrayObject + items). (sean.heelan) + . Fixed bug #70166 (Use After Free Vulnerability in unserialize() with + SPLArrayObject). (taoguangchen at icloud dot com) + . Fixed bug #70168 (Use After Free Vulnerability in unserialize() with + SplObjectStorage). (taoguangchen at icloud dot com) + . Fixed bug #70169 (Use After Free Vulnerability in unserialize() with + SplDoublyLinkedList). (taoguangchen at icloud dot com) - Standard: . Fixed bug #70096 (Repeated iptcembed() adds superfluous FF bytes). (cmb) |