summaryrefslogtreecommitdiff
Commit message (Collapse)AuthorAgeFilesLines
* 5.4.44php-5.4.44PHP-5.4.44Stanislav Malyshev2015-08-043-4/+4
|
* fix testStanislav Malyshev2015-08-041-2/+2
|
* __wakeup doesn't have to be finalStanislav Malyshev2015-08-041-1/+1
|
* fix testStanislav Malyshev2015-08-041-4/+7
|
* update NEWSStanislav Malyshev2015-08-041-2/+30
|
* Merge branch 'PHP-5.4' into PHP-5.4.44Stanislav Malyshev2015-08-044-9/+21
|\ | | | | | | | | | | * PHP-5.4: Fixed bug #69892 Adjust Git-Rules
| * Fixed bug #69892Nikita Popov2015-08-013-3/+15
| |
| * Adjust Git-RulesJulien Pauli2015-07-291-6/+6
| |
* | Fix bug #70019 - limit extracted files to given directoryStanislav Malyshev2015-08-043-4/+68
| |
* | Do not do convert_to_* on unserialize, it messes up referencesStanislav Malyshev2015-08-043-79/+85
| |
* | Fix #69793 - limit what we accept when unserializing exceptionStanislav Malyshev2015-08-013-0/+46
| |
* | Fixed bug #70169 (Use After Free Vulnerability in unserialize() with ↵Stanislav Malyshev2015-08-012-12/+43
| | | | | | | | SplDoublyLinkedList)
* | Fixed bug #70166 - Use After Free Vulnerability in unserialize() with ↵Stanislav Malyshev2015-08-012-0/+32
| | | | | | | | SPLArrayObject
* | ignore signatures for packages tooStanislav Malyshev2015-08-012-3/+22
| |
* | Fix bug #70168 - Use After Free Vulnerability in unserialize() with ↵Stanislav Malyshev2015-08-012-33/+54
| | | | | | | | SplObjectStorage
* | Fix bug #70014 - use RAND_bytes instead of deprecated RAND_pseudo_bytesStanislav Malyshev2015-07-261-4/+2
| |
* | Improved fix for Bug #69441Stanislav Malyshev2015-07-261-5/+8
| |
* | Fix bug #70068 (Dangling pointer in the unserialization of ArrayObject items)Stanislav Malyshev2015-07-262-43/+56
| |
* | Fix bug #70121 (unserialize() could lead to unexpected methods execution / ↵Stanislav Malyshev2015-07-262-8/+18
| | | | | | | | NULL pointer deref)
* | Fix bug #70081: check types for SOAP variablesStanislav Malyshev2015-07-261-10/+13
|/
* 5.4.44 nextStanislav Malyshev2015-07-073-4/+6
|
* Better fix for bug #69958Stanislav Malyshev2015-07-072-9/+15
|
* update newsStanislav Malyshev2015-07-071-1/+10
|
* Fix bug #69669 (mysqlnd is vulnerable to BACKRONYM)Stanislav Malyshev2015-07-071-25/+40
|
* Fix bug #69923 - Buffer overflow and stack smashing error in phar_fix_filepathStanislav Malyshev2015-07-071-2/+8
|
* Fix bug #69958 - Segfault in Phar::convertToData on invalid fileStanislav Malyshev2015-07-073-34/+50
|
* add missing second argument for ucfirst to the protoFerenc Kovacs2015-07-071-1/+1
|
* Merge branch 'pull-request/1350' into PHP-5.4Stanislav Malyshev2015-06-284-3/+90
|\ | | | | | | | | | | * pull-request/1350: Move strlen() check to php_mail_detect_multiple_crlf() Fixed Bug #69874 : Can't set empty additional_headers for mail()
| * Move strlen() check to php_mail_detect_multiple_crlf()Yasuo Ohgaki2015-06-191-2/+2
| |
| * Fixed Bug #69874 : Can't set empty additional_headers for mail()Yasuo Ohgaki2015-06-192-1/+43
| |
* | updated NEWSChristoph M. Becker2015-06-241-0/+3
| |
* | Fixed bug #69768 (escapeshell*() doesn't cater to !)Christoph M. Becker2015-06-243-2/+9
| | | | | | | | | | | | When delayed variable substitution is enabled (can be set in the Registry, for instance), !ENV! works similar to %ENV%, and so ! should be escaped like %.
* | bump API version to 6.8George Wang2015-06-221-1/+1
|/
* Fixed bug #69689 (Align PCRE_MINOR with current version)Lior Kaplan2015-06-181-2/+2
|
* Add CVE to bugs #69545, #69646 and #69667Lior Kaplan2015-06-181-3/+3
|
* 5.4.43 nextStanislav Malyshev2015-06-112-4/+4
|
* add NEWSStanislav Malyshev2015-06-091-1/+7
|
* Fixed bug #68776Yasuo Ohgaki2015-06-092-0/+373
|
* fix testStanislav Malyshev2015-06-091-2/+2
|
* update NEWSStanislav Malyshev2015-06-091-0/+6
|
* Fix bug #69646 OS command injection vulnerability in escapeshellargStanislav Malyshev2015-06-091-0/+8
|
* Fix #69719 - more checks for nulls in pathsStanislav Malyshev2015-06-092-13/+25
|
* fix test descriptionRemi Collet2015-06-091-1/+1
|
* Fixed Buf #68812 Unchecked return value.George Wang2015-06-081-4/+14
|
* NEWS entry for: Upgrade bundled sqlite to 3.8.10.2Lior Kaplan2015-06-081-0/+4
| | | | Includes fixes for CVE-2015-3414, CVE-2015-3415, CVE-2015-3416
* Upgrade bundled sqlite to 3.8.10.2Lior Kaplan2015-06-083-25800/+54438
| | | | Includes fixes for CVE-2015-3414, CVE-2015-3415, CVE-2015-3416 done in 3.8.9
* Add CVE used in PHP 5.4.39, 5.4.40, 5.4.41Lior Kaplan2015-06-081-11/+17
|
* Add CVE to #68598Lior Kaplan2015-06-081-1/+2
|
* improve fix for Bug #69545Stanislav Malyshev2015-05-312-2/+4
|
* Update PCRE version (bug #69689)Stanislav Malyshev2015-05-301-3/+3
|
View Lorry Controller Status