summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* update NEWSphp-5.4.37PHP-5.4.37Stanislav Malyshev2015-01-201-1/+1
|
* add CVEStanislav Malyshev2015-01-201-1/+2
|
* 5.4.37Stanislav Malyshev2015-01-203-4/+4
|
* add protection against nullsStanislav Malyshev2015-01-201-0/+5
|
* Merge branch 'bug68710' into PHP-5.4Stanislav Malyshev2015-01-204-3/+32
|\ | | | | | | | | * bug68710: Fix for bug #68710 (Use After Free Vulnerability in PHP's unserialize())
| * Fix for bug #68710 (Use After Free Vulnerability in PHP's unserialize())Stanislav Malyshev2015-01-014-3/+32
| |
* | Merge branch 'bug68799' into PHP-5.4Stanislav Malyshev2015-01-204-2/+68
|\ \ | | | | | | | | | | | | * bug68799: Fix bug #68799: Free called on unitialized pointer
| * | Fix bug #68799: Free called on unitialized pointerStanislav Malyshev2015-01-113-1/+64
| |/
* | Update NEWSDaniel Lowrey2015-01-141-0/+3
| |
* | Fixed bug #55618 (use case-insensitive cert name matching)Daniel Lowrey2015-01-141-2/+2
| |
* | updated libmagic.patch in 5.4Anatol Belski2015-01-041-315/+139
| |
* | Fixed bug #68735 fileinfo out-of-bounds memory accessAnatol Belski2015-01-044-2/+28
| |
* | removed dead codeRemi Collet2015-01-045-1544/+2
|/
* FIx bug #68618 (out of bounds read crashes php-cgi)Stanislav Malyshev2014-12-302-2/+7
|
* add missing NEWS entryFerenc Kovacs2014-12-171-0/+3
|
* 5.4.37Stanislav Malyshev2014-12-163-5/+7
|
* add CVEStanislav Malyshev2014-12-161-1/+1
|
* add missing test fileStanislav Malyshev2014-12-161-0/+7
|
* Fix bug #68594 - Use after free vulnerability in unserialize()Stanislav Malyshev2014-12-164-32/+64
|
* Fix undefined behaviour in strnatcmpAndrea Faulds2014-12-131-2/+2
|
* update NEWSStanislav Malyshev2014-12-111-0/+1
|
* move the test to the right placeAnatol Belski2014-12-111-0/+0
|
* Fixed bug #68545 NULL pointer dereference in unserialize.cAnatol Belski2014-12-113-33/+56
|
* Fixed possible read after end of buffer and use after free.Dmitry Stogov2014-12-081-2/+6
|
* Revert unintentional docblock changeChris Christoff2014-12-051-1/+1
| | | | | | | | Revert unintentional docblock change It looks like commit dd8e59da8f5aafd9d77a0f1f17e5e272d09f643f introduced an unintended docbloc change. I have reverted this change in this commit.
* make sure that we don't truncate the stack trace and cause false test ↵Ferenc Kovacs2014-12-021-0/+1
| | | | failures when the test is executed in a directory with long path
* update newsStanislav Malyshev2014-11-302-5/+8
|
* Apply error-code-salt fix to Windows tooLeigh2014-11-300-0/+0
| | | | | Conflicts: ext/standard/crypt.c
* Bug fixes in light of failing bcrypt testsLeigh2014-11-302-1/+3
| | | | | Conflicts: ext/standard/crypt.c
* Add tests from 1.3. Add missing tests.Leigh2014-11-301-2/+31
| | | | 3 of the missing tests fail. // TODO
* Upgrade crypt_blowfish to version 1.3Leigh2014-11-301-19/+24
|
* update for LiteSpeedStanislav Malyshev2014-11-231-0/+3
|
* Revert "made lsapi_main.c compatible with PHP7/phpng ."Stanislav Malyshev2014-11-221-92/+26
| | | | | This reverts commit 9fb816f45ad9baa46b91514e70f755eb88539e85. Not a security-related fix.
* made lsapi_main.c compatible with PHP7/phpng .George Wang2014-11-201-26/+92
|
* 5.4.36-devStanislav Malyshev2014-11-113-4/+6
|
* Fixed bug #66584 Segmentation fault on statement deallocationMatteo Beccati2014-11-113-2/+71
|
* update NEWSFerenc Kovacs2014-11-121-0/+4
|
* Partial fix for bug #68365 (zend_mm_heap corrupted after memory overflow in ↵Dmitry Stogov2014-11-071-1/+1
| | | | zend_hash_copy)
* update NEWSStanislav Malyshev2014-11-031-0/+4
|
* Fix bug #63595 GMP memory management conflicts with other libraries using GMPRemi Collet2014-11-031-26/+0
| | | | | | | | | | | | | | | | | | Drop use of php memory allocators as this raise various conflicts with other extensions and libraries which use libgmp. No other solution found. We cannot for ensure correct use of allocator with shared lib. Some memory can allocated before php init Some memory can be freed after php shutdown Known broken run cases - php + curl + gnutls + gmp - mod_gnutls + mod_php + gnutls + gmp - php + freetds + gnutls + gmp - php + odbc + freetds + gnutls + gmp - php + php-mapi (zarafa) + gnutls + gmp
* Initialize the offset table - PCRE may sometimes miss offsetsStanislav Malyshev2014-11-031-1/+1
|
* set default response code to 200George Wang2014-11-031-2/+2
|
* fix NEWS & versionStanislav Malyshev2014-10-223-5/+5
|
* NEWSRemi Collet2014-10-221-0/+6
|
* Fix bug #68283: fileinfo: out-of-bounds read in elf note headersRemi Collet2014-10-221-0/+7
| | | | | | | Upstream commit https://github.com/file/file/commit/39c7ac1106be844a5296d3eb5971946cc09ffda0 CVE -2014-3710
* Fix bug #68113 (Heap corruption in exif_thumbnail())Stanislav Malyshev2014-10-134-3/+24
|
* Fix bug #68089 - do not accept options with embedded \0Stanislav Malyshev2014-10-133-0/+27
| | | | | Conflicts: ext/curl/interface.c
* Fixed bug #68044: Integer overflow in unserialize() (32-bits only)Stanislav Malyshev2014-10-134-4/+19
|
* Fix bug #68027 - fix date parsing in XMLRPC libStanislav Malyshev2014-10-133-6/+56
|
* update NEWSArd Biesheuvel2014-10-101-0/+3
| | | | Signed-off-by: Ard Biesheuvel <ard.biesheuvel@linaro.org>
View Lorry Controller Status