
Das PHP-Team hat heute die neuen Versionen 7.1.30, 7.2.19 und 7.3.6 als Bugfix und Security Release veröffentlicht.
PHP 7.3.6 Release Notes
- cURL:
- Implemented FR #72189 (Add missing CURL_VERSION_* constants).
- EXIF:
- Fixed bug #77988 (heap-buffer-overflow on php_jpg_get16).
- FPM:
- GD:
- Iconv:
- Fixed bug #78069 (Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow).
- JSON:
- Fixed bug #77843 (Use after free with json serializer).
- Opcache:
- Fixed possible crashes, because of inconsistent PCRE cache and opcache SHM reset.
- PDO_MySQL:
- Fixed bug #77944 (Wrong meta pdo_type for bigint on LLP64).
- Reflection:
- Fixed bug #75186 (Inconsistent reflection of Closure:::__invoke()).
- Session:
- Fixed bug #77911 (Wrong warning for session.sid_bits_per_character).
- SOAP:
- Fixed bug #77945 (Segmentation fault when constructing SoapClient with WSDL_CACHE_BOTH).
- SPL:
- Fixed bug #77024 (SplFileObject::__toString() may return array).
- SQLite:
- Fixed bug #77967 (Bypassing open_basedir restrictions via file uris).
- Standard:
PHP 7.2.19 Release Notes
- EXIF:
- Fixed bug #77988 (heap-buffer-overflow on php_jpg_get16).
- FPM:
- GD:
- Iconv:
- Fixed bug #78069 (Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow).
- JSON:
- Fixed bug #77843 (Use after free with json serializer).
- Opcache:
- Fixed possible crashes, because of inconsistent PCRE cache and opcache SHM reset.
- PDO_MySQL:
- Fixed bug #77944 (Wrong meta pdo_type for bigint on LLP64).
- Reflection:
- Fixed bug #75186 (Inconsistent reflection of Closure:::__invoke()).
- Session:
- Fixed bug #77911 (Wrong warning for session.sid_bits_per_character).
- SPL:
- Fixed bug #77024 (SplFileObject::__toString() may return array).
- SQLite:
- Fixed bug #77967 (Bypassing open_basedir restrictions via file uris).
PHP 7.1.30 Release Notes
- EXIF:
- Fixed bug #77988 (heap-buffer-overflow on php_jpg_get16).
- GD:
- Fixed bug #77973 (Uninitialized read in gdImageCreateFromXbm).
- Iconv:
- Fixed bug #78069 (Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow).
- SQLite:
- Fixed bug #77967 (Bypassing open_basedir restrictions via file uris).