August 29, 2024

Community Fixes

  • PHP version 8.3.11 fixes

    • Streams
      • Reverted fix for GH-14930: Custom stream wrapper dir_readdir output truncated to 255 characters
  • PHP version 8.3.11, 8.2.23 fixes

    • Core

      • Fixed bug GH-15020: Memory leak in Zend/Optimizer/escape_analysis.c
      • Fixed bug GH-15023: Memory leak in Zend/zend_ini.c
      • Fixed bug GH-13330: Append -Wno-implicit-fallthrough flag conditionally
      • Fix uninitialized memory in network.c
      • Fixed bug GH-15108: Segfault when destroying generator during shutdown
      • Fixed bug GH-15275: Crash during GC of suspended generator delegate
    • Curl

      • Fixed case when curl_error returns an empty string
    • DOM

      • Fix UAF when removing doctype and using foreach iteration
    • FFI

      • Fixed bug GH-14286: ffi enum type (when enum has no name) make memory leak
    • Hash

      • Fix crash when converting array data for array in shm in xxh3
    • Intl

      • Fixed bug GH-15087: IntlChar::foldCase()'s $option is not optional
    • Opcache

      • Fixed bug GH-13817: Segmentation fault for enabled observers after pass 4
      • Fixed bug GH-13775: Memory leak possibly related to opcache SHM placement
    • Output

      • Fixed bug GH-15179: Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re
    • PDO_Firebird

      • Fix bogus fallthrough path in firebird_handle_get_attribute()
    • PHPDBG

      • Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with libedit/readline
      • Fixed bug GH-15268: heap buffer overflow in phpdbg (zend_hash_num_elements()Zend/zend_hash.h)
      • Fixed bug GH-15210: use-after-free on watchpoint allocations
    • Random

      • Fixed part of bug GH-15381, checking getrandom availability on solaris
    • Soap

      • Fixed bug #55639: Digest autentication dont work
      • Fix SoapFault property destruction
      • Fixed bug GH-15252: SOAP XML broken since PHP 8.3.9 when using classmap constructor option
    • Standard

      • Fix passing non-finite timeout values in stream functions
      • Fixed GH-14780: p(f)sockopen timeout overflow
    • Streams

      • Fixed bug GH-15028: Memory leak in ext/phar/stream.c
      • Fixed bug GH-15034: Integer overflow on stream_notification_callbackbyte_max parameter with files bigger than 2GB
    • Tidy

      • Fix memory leaks in ext/tidy basedir restriction code

August 5, 2024

Community Fixes

  • PHP version 8.3.10 fixes

    • Fileinfo

      • Fixed bug GH-14888: README.REDIST.BINS refers to non-existing LICENSE.
    • Standard

      • Fixed bug GH-14775: range function overflow with negative step argument.
    • Streams

      • Fixed bug GH-14930: Custom stream wrapper dir_readdir output truncated to 255 characters in PHP 8.3.
  • PHP version 8.2.22 fixes

    • SimpleXML
      • Fixed bug GH-14638: null dereference after XML parsing failure.
  • PHP version 8.3.10, 8.2.22 fixes

    • Core

      • Fixed bug GH-13922: Fixed support for systems with sysconf(_SC_GETPW_R_SIZE_MAX) == -1.
      • Fixed bug GH-14626: Fix is_zend_ptr() for huge blocks.
      • Fixed bug GH-14590: Memory leak in FPM test gh13563-conf-bool-env.phpt.
      • Fixed OSS-Fuzz #69765.
      • Fixed bug GH-14741: Segmentation fault in Zend/zend_types.h.
      • Fixed bug GH-14969: Use-after-free in property coercion with __toString().
      • Fixed bug GH-14961: Comment between -> and keyword results in parse error.
    • Dom

      • Fixed bug GH-14702: DOMDocument::xinclude() crash.
    • Gd

      • ext/gd/tests/gh10614.phpt: skip if no PNG support.
      • restored warning instead of fata error.
    • LibXML

      • Fixed bug GH-14563: Build failure with libxml2 v2.13.0.
    • Opcache

      • Fixed bug GH-14550: No warning message when Zend DTrace is enabled that opcache.jit is implictly disabled.
    • Output

      • Fixed bug GH-14808: Unexpected null pointer in Zend/zend_string.h with empty output buffer.
    • PDO

      • Fixed bug GH-14712: Crash with PDORow access to null property.
    • Phar

      • Fixed bug GH-14603: null string from zip entry.
    • PHPDBG

      • Fixed bug GH-14596: crashes with ASAN and ZEND_RC_DEBUG=1.
      • Fixed bug GH-14553: echo output trimmed at NULL byte.
    • Shmop

      • Fixed bug GH-14537: shmop Windows 11 crashes the process.
    • SPL

      • Fixed bug GH-14639: Member access within null pointer in ext/spl/spl_observer.c.
    • Standard

      • Fix 32-bit wordwrap test failures.
      • Fixed bug GH-14774: time_sleep_until overflow.
    • Tidy

      • Fix memory leak in tidy_repair_file().
    • Treewide

      • Fix compatibility with libxml2 2.13.2.
    • XML

      • Move away from to-be-deprecated libxml fields.
      • Fixed bug GH-14834: Error installing PHP when --with-pear is used.