| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
|
|
|
|
| |
* PHP-7.2:
Update NEWS
Fix bug #79037 (global buffer-overflow in `mbfl_filt_conv_big5_wchar`)
Fix #79099: OOB read in php_strip_tags_ex
Fix #79091: heap use-after-free in session_create_id()
(cherry picked from commit 25ec7eb3463f34a2be666c6785d1c6b3cc89575e)
|
| |
|
|
|
|
|
|
| |
This reverts commit 17a9f1401aeb35fe1e3657b38102a410d151d42f, because
this commit would break ABI, and also due to bug #79013.
We keep the commit for PHP 7.4+, though.
|
|
|
|
|
| |
If the header string is empty, we pass `NULL` to `php_mail()` to avoid
further checks on the string length.
|
|
|
|
|
| |
We port
<https://github.com/libgd/libgd/commit/9088591eae437358ee5b929adf82865e37e3001e>.
|
|
|
|
|
| |
We port
<https://github.com/libgd/libgd/commit/7a06c1669c563917bc48c464521e3de962ddb4e8>.
|
|
|
|
|
|
|
| |
We implement support for a fifth parameter, which allows to specify the
mapsize. The parameter defaults to zero, in which case the compiled in
default mapsize (usually 1048576) will be used. The mapsize should be
a multiple of the page size of the OS.
|
|
|
|
|
| |
If the descriptor's refcount drops to zero, we have to unmap the
respective file view, to avoid leaking memory.
|
|
|
|
|
|
| |
We check that the given microsecond fraction is in the valid range
[0, 1000000[, and otherwise mark it as invalid. We also drop the
useless do loop; a plain block is sufficient here.
|
|
|
|
|
|
|
| |
We must not use the same shared memory OPcache instance for different
SAPIs, since their memory layout is different. To avoid this, we add
the SAPI name (truncated to at most 20 characters) to the names of the
memory base file, the mutex and the file mapping.
|
| |
|
|
|
|
|
|
| |
We must not set an empty mime structure as `CURLOPT_MIMEPOST`; instead
we set it to `NULL` if `CURLOPT_POSTFIELDS` has been set to an empty
array.
|
|
|
|
|
|
|
|
| |
We backport the fix PHP 7.3, since this branch is affected as well.
(cherry picked from commit b5e004379647bd1ebb75eb2eac8826fb6abdd3d8)
(cherry picked from commit e36daa6927c05d2e687bb77495ef206cde118b33)
(cherry picked from commit 2704ee6844c03348de9d15e74646d09007ef0f7c)
|
|
|
|
| |
Call PQconsumeInput() before PQstatus() to update the status.
|
|
|
|
| |
pgsqlGetNotify() didn't check result of PQconsumeInput().
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Some functions in libmagic (distributed with fileinfo extension) perform this sequence of calls:
func() {
setlocale(LC_TYPE, "C")
.. do some work ..
setlocale(LC_TYPE, "")
}
It effectively resets LC_TYPE if it that was set before the function call.
To avoid manipulations with current locale at all, the problematic functions
were modified to use locale-independent functions.
|
|
|
|
|
| |
An error message can be misleading when a handler
passed to pcntl_signal() is not callable.
|
| |
|
|
|
|
| |
When configured with a path specified.
|
|
|
|
|
| |
It would be better to switch this to use %union and %type annotations,
but not going to do that change for 7.3.
|
| |
|
|\
| |
| |
| |
| | |
* PHP-7.2:
fix release date
|
| | |
|
| |
| |
| |
| |
| |
| |
| | |
Finally blocks in generators may be invoked during shutdown, in
which case we don't have a stack frame. Similar to what
zend_call_function does, we still need to rethrow these exceptions,
otherwise they will be hidden (and leak).
|
| |
| |
| |
| |
| |
| | |
We need to free op2 if the call construction fails.
Also remove a redundant check for !call.
|
| | |
|
|\ \
| |/
| |
| |
| | |
* PHP-7.2:
[ci skip] Update NEWS
|
| | |
|
| | |
|
| | |
|
|\ \
| |/
| |
| |
| |
| | |
* PHP-7.2:
Fix test
Fix bug #78793
|
| | |
|
| | |
|
| | |
|
|\ \
| |/
| |
| |
| |
| |
| |
| |
| | |
* PHP-7.2:
Fixed bug #78910
Fix #78878: Buffer underflow in bc_shift_addsub
Fix test
Fix #78862: link() silently truncates after a null byte on Windows
Fix #78863: DirectoryIterator class silently truncates after a null byte
|
| | |
|
| |
| |
| |
| |
| | |
We must not rely on `isdigit()` to detect digits, since we only support
decimal ASCII digits in the following processing.
|
| | |
|
| |
| |
| |
| |
| | |
Since link() is supposed to accepts paths (i.e. strings without NUL
bytes), we must not accept arbitrary strings.
|
| |
| |
| |
| |
| |
| | |
Since the constructor of DirectoryIterator and friends is supposed to
accepts paths (i.e. strings without NUL bytes), we must not accept
arbitrary strings.
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Since we need `headers_lc` as well as `headers_trim` in the following,
we do not release the former even if they are the same string, to avoid
complicating the release logic even more.
A new test case is not necessary, since we already have
mail_basic_alt2-win32.phpt and others.
|
| |
| |
| |
| |
| | |
By resetting fake_scope during autoloading. We already do the same
when executing destructors.
|
| |
| |
| |
| | |
For now, don't treat FE_FETCH op2 as no-val use. See GH-4982.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Due to former restrictions of the libcurl API, curl multipart/formdata
file uploads supported only proper files. However, as of curl 7.56.0
the new `curl_mime_*()` API is available (and already supported by
PHP[1]), which allows us to support arbitrary *seekable* streams, which
is generally desirable, and particularly resolves issues with the
transparent Unicode and long part support on Windows (see bug #77711).
Note that older curl versions are still supported, but CURLFile is
still restricted to proper files in this case.
[1] <http://git.php.net/?p=php-src.git;a=commit;h=a83b68ba56714bfa06737a61af795460caa4a105>
(cherry picked from commit c68dc6b5e37e74d89e0a387079139c054c8faa81)
|
| |
| |
| |
| |
| |
| |
| | |
As of curl 7.56.0, `curl_formadd()` is deprecated in favor of
`curl_mime_*()`, so we use the latter if available.
(cherry picked from commit a83b68ba56714bfa06737a61af795460caa4a105)
|
| |
| |
| |
| |
| |
| | |
We have to properly initialize `pxl` before using it.
Fix ported from <https://github.com/libgd/libgd/pull/559>.
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The "return" in the for loop should have been a break on the switch,
otherwise the result is just ignored... but because it prevents
evaluation of the other operand, it also violates the invariant that
everything has been constant evaluated, resulting in an assertion
failure.
The for loop isn't correct in any case though, because it's not legal
to determine the result based on just the second operand, as the
first one may have a side-effect that cannot be optimized away.
|
| |
| |
| |
| | |
Fixes oss-fuzz #19109.
|
| |
| |
| |
| |
| |
| |
| | |
https://www.php.net/print_r
> When the return parameter is TRUE, this function will return a string.
> Otherwise, the return value is TRUE.
|