Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Set versionsphp-7.0.30PHP-7.0.30 | Anatol Belski | 2018-04-24 | 3 | -4/+4 |
| | |||||
* | [ci skip] Update NEWS | Anatol Belski | 2018-04-24 | 1 | -0/+12 |
| | |||||
* | Merge branch 'PHP-5.6' into PHP-7.0 | Anatol Belski | 2018-04-24 | 1 | -2/+4 |
|\ | | | | | | | | | * PHP-5.6: Fix test portability | ||||
| * | Fix test portability | Anatol Belski | 2018-04-24 | 1 | -2/+4 |
| | | |||||
* | | Merge branch 'PHP-5.6' into PHP-7.0 | Stanislav Malyshev | 2018-04-23 | 21 | -18/+101 |
|\ \ | |/ | | | | | | | | | | | | | | | | | | | * PHP-5.6: Fix tsrm_ls Fix #76129 - remove more potential unfiltered outputs for phar Fix test Fix bug #76248 - Malicious LDAP-Server Response causes Crash Fix bug #76249 - fail on invalid sequences Fix #76130: Heap Buffer Overflow (READ: 1786) in exif_iif_add_value Fix bug #75981: prevent reading beyond buffer start | ||||
| * | Fix tsrm_ls | Stanislav Malyshev | 2018-04-23 | 1 | -1/+1 |
| | | |||||
| * | Merge remote-tracking branch 'security/bug76249' into PHP-5.6 | Stanislav Malyshev | 2018-04-23 | 2 | -0/+21 |
| |\ | | | | | | | | | | | | | | | | * security/bug76249: Fix test Fix bug #76249 - fail on invalid sequences | ||||
| | * | Fix test | Stanislav Malyshev | 2018-04-22 | 1 | -2/+4 |
| | | | |||||
| | * | Fix bug #76249 - fail on invalid sequences | Stanislav Malyshev | 2018-04-22 | 2 | -0/+19 |
| | | | |||||
| * | | Merge remote-tracking branch 'security/bug76248' into PHP-5.6 | Stanislav Malyshev | 2018-04-23 | 2 | -1/+45 |
| |\ \ | | | | | | | | | | | | | | | | | * security/bug76248: Fix bug #76248 - Malicious LDAP-Server Response causes Crash | ||||
| | * | | Fix bug #76248 - Malicious LDAP-Server Response causes Crash | Stanislav Malyshev | 2018-04-22 | 2 | -1/+45 |
| | |/ | |||||
| * | | Fix #76129 - remove more potential unfiltered outputs for phar | Stanislav Malyshev | 2018-04-23 | 13 | -16/+14 |
| | | | |||||
| * | | Merge remote-tracking branch 'security/PHP-5.6' into PHP-5.6 | Stanislav Malyshev | 2018-04-23 | 4 | -1/+21 |
| |\ \ | | |/ | |/| | | | | | | | | | | * security/PHP-5.6: Fix #76130: Heap Buffer Overflow (READ: 1786) in exif_iif_add_value Fix bug #75981: prevent reading beyond buffer start | ||||
| | * | Fix #76130: Heap Buffer Overflow (READ: 1786) in exif_iif_add_value | Christoph M. Becker | 2018-04-22 | 4 | -1/+21 |
| | | | | | | | | | | | | | | | | | | The MakerNote is not necessarily null-terminated, so we must not use `strlen()` to avoid OOB reads. Instead `php_strnlen()` is the proper way to handle this. | ||||
| | * | Fix bug #75981: prevent reading beyond buffer start | Stanislav Malyshev | 2018-02-20 | 2 | -2/+34 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Ferenc Kovacs | 2018-03-28 | 0 | -0/+0 |
|\ \ \ | |/ / | |||||
| * | | [ci skip] 5.6.36 will be next | Ferenc Kovacs | 2018-03-28 | 3 | -5/+7 |
| | | | |||||
* | | | [ci skip] Fix release date | Anatol Belski | 2018-03-27 | 1 | -1/+1 |
| | | | |||||
* | | | 7.0.30 next | Anatol Belski | 2018-03-27 | 3 | -5/+9 |
| | | | |||||
* | | | [ci skip] Update NEWS | Anatol Belski | 2018-03-27 | 1 | -1/+3 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Anatol Belski | 2018-03-27 | 0 | -0/+0 |
|\ \ \ | |/ / | | | | | | | | | | * PHP-5.6: [ci skip] Update NEWS | ||||
| * | | [ci skip] Update NEWS | Anatol Belski | 2018-03-27 | 1 | -0/+4 |
| | | | |||||
* | | | Do not set PR_SET_DUMPABLE by default | Jakub Zelenka | 2018-03-27 | 4 | -1/+11 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Anatol Belski | 2018-03-27 | 0 | -0/+0 |
|\ \ \ | |/ / | | | | | | | | | | * PHP-5.6: Do not set PR_SET_DUMPABLE by default | ||||
| * | | Do not set PR_SET_DUMPABLE by default | Jakub Zelenka | 2018-03-27 | 4 | -1/+11 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Ferenc Kovacs | 2018-02-28 | 0 | -0/+0 |
|\ \ \ | |/ / | |||||
| * | | 5.6.35 is next | Ferenc Kovacs | 2018-02-27 | 3 | -5/+7 |
| | | | |||||
* | | | 7.0.29 next | Anatol Belski | 2018-02-27 | 3 | -5/+9 |
| | | | |||||
* | | | [ci skip] Update NEWS | Anatol Belski | 2018-02-27 | 1 | -0/+3 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Anatol Belski | 2018-02-27 | 0 | -0/+0 |
|\ \ \ | |/ / | | | | | | | | | | * PHP-5.6: [ci skip] Update NEWS | ||||
| * | | [ci skip] Update NEWS | Anatol Belski | 2018-02-27 | 1 | -0/+3 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Stanislav Malyshev | 2018-02-26 | 2 | -2/+34 |
|\ \ \ | |/ / | | | | | | | | | | * PHP-5.6: Fix bug #75981: prevent reading beyond buffer start | ||||
| * | | Fix bug #75981: prevent reading beyond buffer start | Stanislav Malyshev | 2018-02-26 | 2 | -2/+34 |
| | | | |||||
* | | | Merge branch 'PHP-5.6' into PHP-7.0 | Stanislav Malyshev | 2018-02-23 | 1 | -1/+1 |
|\ \ \ | |/ / | | | | | | | | | | * PHP-5.6: [ci skip] Set FPM maintainership | ||||
| * | | [ci skip] Set FPM maintainership | Stanislav Malyshev | 2018-02-23 | 1 | -1/+1 |
| |/ | | | | | | | | | As per http://news.php.net/php.internals/101897, Jakub is officially annointed as new FPM maintainer. | ||||
* | | Use Z_EXPECTED_LONG to initialize FAST_ZPP parsing loop | Sara Golemon | 2018-01-23 | 1 | -1/+1 |
| | | |||||
* | | Merge branch 'PHP-5.6' into PHP-7.0 | Remi Collet | 2018-01-03 | 0 | -0/+0 |
|\ \ | |/ | | | | | | | * PHP-5.6: 2018 | ||||
| * | 2018 | Remi Collet | 2018-01-03 | 1 | -2/+2 |
| | | |||||
* | | 2018 | Remi Collet | 2018-01-03 | 1 | -2/+2 |
| | | |||||
* | | Merge branch 'PHP-5.6' into PHP-7.0 | Ferenc Kovacs | 2018-01-03 | 0 | -0/+0 |
|\ \ | |/ | |||||
| * | php 5.6.34 is next | Ferenc Kovacs | 2018-01-03 | 3 | -5/+7 |
| | | |||||
* | | [ci skip] update NEWS | Anatol Belski | 2018-01-02 | 1 | -0/+6 |
| | | |||||
* | | Merge branch 'PHP-5.6' into PHP-7.0 | Stanislav Malyshev | 2018-01-01 | 17 | -50/+65 |
|\ \ | |/ | | | | | | | | | | | * PHP-5.6: Update NEWS Fixed bug #75571: Potential infinite loop in gdImageCreateFromGifCtx Fix bug #74782: remove file name from output to avoid XSS | ||||
| * | Update NEWS | Stanislav Malyshev | 2018-01-01 | 1 | -1/+7 |
| | | |||||
| * | Fixed bug #75571: Potential infinite loop in gdImageCreateFromGifCtx | Christoph M. Becker | 2018-01-01 | 3 | -5/+20 |
| | | | | | | | | | | | | | | Due to a signedness confusion in `GetCode_` a corrupt GIF file can trigger an infinite loop. Furthermore we make sure that a GIF without any palette entries is treated as invalid *after* open palette entries have been removed. | ||||
| * | Fix bug #74782: remove file name from output to avoid XSS | Stanislav Malyshev | 2018-01-01 | 14 | -45/+45 |
| | | |||||
* | | [ci skip] update NEWS | Anatol Belski | 2017-12-22 | 1 | -4/+4 |
| | | |||||
* | | Fixed bug #75579 (Interned strings buffer overflow may cause crash) | Dmitry Stogov | 2017-12-22 | 2 | -3/+33 |
| | | | | | | | | (cherry picked from commit 37bf8bdc1494abb2ce5cac40e0be80e23682f851) | ||||
* | | 7.0.28 is next | Anatol Belski | 2017-12-05 | 3 | -5/+9 |
| | | |||||
* | | [ci skip] update NEWS | Anatol Belski | 2017-12-05 | 1 | -0/+1 |
| | |