August 29, 2024
Community Fixes
PHP version 8.3.11 fixes
-
Core
- Fixed bug GH-15020: Memory leak in
Zend/Optimizer/escape_analysis.c
- Fixed bug GH-15023: Memory leak in
Zend/zend_ini.c
- Fixed bug GH-13330: Append
-Wno-implicit-fallthrough
flag conditionally - Fix uninitialized memory in
network.c
- Fixed bug GH-15108: Segfault when destroying generator during shutdown
- Fixed bug GH-15275: Crash during GC of suspended generator delegate
- Fixed bug GH-15020: Memory leak in
-
Curl
- Fixed case when
curl_error
returns an empty string
- Fixed case when
-
DOM
- Fix UAF when removing
doctype
and usingforeach
iteration
- Fix UAF when removing
-
FFI
- Fixed bug GH-14286: ffi enum type (when enum has no name) make memory leak
-
Hash
- Fix crash when converting array data for array in shm in xxh3
-
Intl
- Fixed bug GH-15087:
IntlChar::foldCase()
's$option
is not optional
- Fixed bug GH-15087:
-
Opcache
- Fixed bug GH-13817: Segmentation fault for enabled observers after pass 4
- Fixed bug GH-13775: Memory leak possibly related to opcache SHM placement
-
Output
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in
ext/standard/url_scanner_ex.re
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in
-
PDO_Firebird
- Fix bogus fallthrough path in
firebird_handle_get_attribute()
- Fix bogus fallthrough path in
-
PHPDBG
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with
libedit/readline
- Fixed bug GH-15268: heap buffer overflow in phpdbg (
zend_hash_num_elements()
Zend/zend_hash.h
) - Fixed bug GH-15210: use-after-free on watchpoint allocations
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with
-
Random
- Fixed part of bug GH-15381, checking
getrandom
availability on solaris
- Fixed part of bug GH-15381, checking
-
Soap
- Fixed bug #55639: Digest autentication dont work
- Fix SoapFault property destruction
- Fixed bug GH-15252: SOAP XML broken since PHP 8.3.9 when using
classmap
constructor option
-
Standard
- Fix passing non-finite timeout values in stream functions
- Fixed GH-14780:
p(f)sockopen
timeout overflow
-
Streams
- Fixed bug GH-15028: Memory leak in
ext/phar/stream.c
- Fixed bug GH-15034: Integer overflow on
stream_notification_callback
byte_max
parameter with files bigger than 2GB - Reverted fix for GH-14930: Custom stream wrapper
dir_readdir
output truncated to 255 characters
- Fixed bug GH-15028: Memory leak in
-
Tidy
- Fix memory leaks in ext/tidy basedir restriction code
PHP version 8.2.23 fixes
-
Core
- Fixed bug GH-15020: Memory leak in
Zend/Optimizer/escape_analysis.c
- Fixed bug GH-15023: Memory leak in
Zend/zend_ini.c
- Fixed bug GH-13330: Append
-Wno-implicit-fallthrough
flag conditionally - Fix uninitialized memory in
network.c
- Fixed bug GH-15108: Segfault when destroying generator during shutdown
- Fixed bug GH-15275: Crash during GC of suspended generator delegate
- Fixed bug GH-15020: Memory leak in
-
Curl
- Fixed case when
curl_error
returns an empty string
- Fixed case when
-
DOM
- Fix UAF when removing
doctype
and usingforeach
iteration
- Fix UAF when removing
-
FFI
- Fixed bug GH-14286: ffi enum type (when enum has no name) make memory leak
-
Hash
- Fix crash when converting array data for array in shm in xxh3
-
Intl
- Fixed bug GH-15087:
IntlChar::foldCase()
's$option
is not optional
- Fixed bug GH-15087:
-
Opcache
- Fixed bug GH-13817: Segmentation fault for enabled observers after pass 4
- Fixed bug GH-13775: Memory leak possibly related to opcache SHM placement
-
Output
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in
ext/standard/url_scanner_ex.re
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in
-
PDO_Firebird
- Fix bogus fallthrough path in
firebird_handle_get_attribute()
- Fix bogus fallthrough path in
-
PHPDBG
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with
libedit/readline
- Fixed bug GH-15268: heap buffer overflow in phpdbg (
zend_hash_num_elements()
Zend/zend_hash.h
) - Fixed bug GH-15210: use-after-free on watchpoint allocations
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with
-
Random
- Fixed part of bug GH-15381, checking
getrandom
availability on solaris
- Fixed part of bug GH-15381, checking
-
Soap
- Fixed bug #55639: Digest autentication dont work
- Fix SoapFault property destruction
- Fixed bug GH-15252: SOAP XML broken since PHP 8.3.9 when using
classmap
constructor option
-
Standard
- Fix passing non-finite timeout values in stream functions
- Fixed GH-14780:
p(f)sockopen
timeout overflow
-
Streams
- Fixed bug GH-15028: Memory leak in
ext/phar/stream.c
- Fixed bug GH-15034: Integer overflow on
stream_notification_callback
byte_max
parameter with files bigger than 2GB
- Fixed bug GH-15028: Memory leak in
-
Tidy
- Fix memory leaks in ext/tidy basedir restriction code
August 5, 2024
Community Fixes
PHP version 8.3.10 fixes
-
Core
- Fixed bug GH-13922: Fixed support for systems with
sysconf(_SC_GETPW_R_SIZE_MAX) == -1
. - Fixed bug GH-14626: Fix
is_zend_ptr()
for huge blocks. - Fixed bug GH-14590: Memory leak in FPM test
gh13563-conf-bool-env.phpt
. - Fixed OSS-Fuzz #69765.
- Fixed bug GH-14741: Segmentation fault in
Zend/zend_types.h
. - Fixed bug GH-14969: Use-after-free in property coercion with
__toString()
. - Fixed bug GH-14961: Comment between
->
andkeyword
results in parse error.
- Fixed bug GH-13922: Fixed support for systems with
-
Dom
- Fixed bug GH-14702:
DOMDocument::xinclude()
crash.
- Fixed bug GH-14702:
-
Fileinfo
- Fixed bug GH-14888:
README.REDIST.BINS
refers to non-existingLICENSE
.
- Fixed bug GH-14888:
-
Gd
- ext/gd/tests/gh10614.phpt: skip if no PNG support.
- restored warning instead of fata error.
-
LibXML
- Fixed bug GH-14563: Build failure with libxml2 v2.13.0.
-
Opcache
- Fixed bug GH-14550: No warning message when Zend
DTrace
is enabled thatopcache.jit
is implictly disabled.
- Fixed bug GH-14550: No warning message when Zend
-
Output
- Fixed bug GH-14808: Unexpected null pointer in
Zend/zend_string.h
with empty output buffer.
- Fixed bug GH-14808: Unexpected null pointer in
-
PDO
- Fixed bug GH-14712: Crash with PDORow access to null property.
-
Phar
- Fixed bug GH-14603: null string from zip entry.
-
PHPDBG
- Fixed bug GH-14596: crashes with
ASAN
andZEND_RC_DEBUG=1
. - Fixed bug GH-14553: echo output trimmed at NULL byte.
- Fixed bug GH-14596: crashes with
-
Shmop
- Fixed bug GH-14537: shmop Windows 11 crashes the process.
-
SPL
- Fixed bug GH-14639: Member access within null pointer in
ext/spl/spl_observer.c
.
- Fixed bug GH-14639: Member access within null pointer in
-
Standard
- Fix 32-bit wordwrap test failures.
- Fixed bug GH-14774:
time_sleep_until
overflow. - Fixed bug GH-14775: range function overflow with negative step argument.
-
Streams
- Fixed bug GH-14930: Custom stream wrapper
dir_readdir
output truncated to 255 characters in PHP 8.3.
- Fixed bug GH-14930: Custom stream wrapper
-
Tidy
- Fix memory leak in
tidy_repair_file()
.
- Fix memory leak in
-
Treewide
- Fix compatibility with libxml2 2.13.2.
-
XML
- Move away from to-be-deprecated libxml fields.
- Fixed bug GH-14834: Error installing PHP when
--with-pear
is used.
PHP version 8.2.22 fixes
-
SimpleXML
- Fixed bug GH-14638: null dereference after XML parsing failure.
-
Core
- Fixed bug GH-13922: Fixed support for systems with
sysconf(_SC_GETPW_R_SIZE_MAX) == -1
. - Fixed bug GH-14626: Fix
is_zend_ptr()
for huge blocks. - Fixed bug GH-14590: Memory leak in FPM test
gh13563-conf-bool-env.phpt
. - Fixed OSS-Fuzz #69765.
- Fixed bug GH-14741: Segmentation fault in
Zend/zend_types.h
. - Fixed bug GH-14969: Use-after-free in property coercion with
__toString()
. - Fixed bug GH-14961: Comment between
->
andkeyword
results in parse error.
- Fixed bug GH-13922: Fixed support for systems with
-
Dom
- Fixed bug GH-14702:
DOMDocument::xinclude()
crash.
- Fixed bug GH-14702:
-
Gd
- ext/gd/tests/gh10614.phpt: skip if no PNG support.
- restored warning instead of fata error.
-
LibXML
- Fixed bug GH-14563: Build failure with libxml2 v2.13.0.
-
Opcache
- Fixed bug GH-14550: No warning message when Zend
DTrace
is enabled thatopcache.jit
is implictly disabled.
- Fixed bug GH-14550: No warning message when Zend
-
Output
- Fixed bug GH-14808: Unexpected null pointer in
Zend/zend_string.h
with empty output buffer.
- Fixed bug GH-14808: Unexpected null pointer in
-
PDO
- Fixed bug GH-14712: Crash with PDORow access to null property.
-
Phar
- Fixed bug GH-14603: null string from zip entry.
-
PHPDBG
- Fixed bug GH-14596: crashes with
ASAN
andZEND_RC_DEBUG=1
. - Fixed bug GH-14553: echo output trimmed at NULL byte.
- Fixed bug GH-14596: crashes with
-
Shmop
- Fixed bug GH-14537: shmop Windows 11 crashes the process.
-
SPL
- Fixed bug GH-14639: Member access within null pointer in
ext/spl/spl_observer.c
.
- Fixed bug GH-14639: Member access within null pointer in
-
Standard
- Fix 32-bit wordwrap test failures.
- Fixed bug GH-14774:
time_sleep_until
overflow.
-
Tidy
- Fix memory leak in
tidy_repair_file()
.
- Fix memory leak in
-
Treewide
- Fix compatibility with libxml2 2.13.2.
-
XML
- Move away from to-be-deprecated libxml fields.
- Fixed bug GH-14834: Error installing PHP when
--with-pear
is used.