PHP Bugfix und Security Release – 7.2.2 – 7.1.14 – 7.0.27 – 5.6.33

PHP Bugfix und Security Release – 7.2.2 – 7.1.14 – 7.0.27 – 5.6.33

Die Skriptsprache PHP wurde in den Zweigen

  • 5.6.
  • 7.0
  • 7.1und
  • 7.2

vor ein paar Tagen als Bugfix und Security Release aktualisiert. Nachfolgend die Release Notes

PHP 5.6.33 Release Notes

  • GD:
    • Fixed bug #75571 (Potential infinite loop in gdImageCreateFromGifCtx). (CVE-2018-5711)
  • Phar:
    • Fixed bug #74782 (Reflected XSS in .phar 404 page). (CVE-2018-5712)

PHP 7.0.27 Release Notes

  • CLI Server:
    • Fixed bug #60471 (Random “Invalid request (unexpected EOF)” using a router script).
  • Core:
    • Fixed bug #75384 (PHP seems incompatible with OneDrive files on demand).
    • Fixed bug #75573 (Segmentation fault in 7.1.12 and 7.0.26).
  • FPM:
    • Fixed bug #64938 (libxml_disable_entity_loader setting is shared between requests).
  • GD:
    • Fixed bug #75571 (Potential infinite loop in gdImageCreateFromGifCtx). (CVE-2018-5711)
  • Opcache:
    • Fixed bug #75579 (Interned strings buffer overflow may cause crash).
  • PCRE:
    • Fixed bug #74183 (preg_last_error not returning error code after error).
  • Phar:
    • Fixed bug #74782 (Reflected XSS in .phar 404 page). (CVE-2018-5712)
  • Standard:
    • Fixed bug #75535 (Inappropriately parsing HTTP response leads to PHP segment fault).
    • Fixed bug #75409 (accept EFAULT in addition to ENOSYS as indicator that getrandom() is missing).
  • Zip:
    • Fixed bug #75540 (Segfault with libzip 1.3.1).

PHP 7.1.14 Release Notes

  • Core:
    • Fixed bug #75679 (Path 260 character problem).
    • Fixed bug #75786 (segfault when using spread operator on generator passed by reference).
    • Fixed bug #75799 (arg of get_defined_functions is optional).
    • Fixed bug #75396 (Exit inside generator finally results in fatal error).
    • Fixed bug #75079 (self keyword leads to incorrectly generated TypeError when in closure in trait).
  • FCGI:
    • Fixed bug #75794 (getenv() crashes on Windows 7.2.1 when second parameter is false).
  • IMAP:
    • Fixed bug #75774 (imap_append HeapCorruction).
  • Opcache:
    • Fixed bug #75720 (File cache not populated after SHM runs full).
    • Fixed bug #75579 (Interned strings buffer overflow may cause crash).
  • PGSQL:
    • Fixed bug #75671 (pg_version() crashes when called on a connection to cockroach).
  • Readline:
    • Fixed bug #75775 (readline_read_history segfaults with empty file).
  • SAPI:
    • Fixed bug #75735 (Segmentation fault in sapi_register_post_entry).
  • SOAP:
    • Fixed bug #70469 (SoapClient generates E_ERROR even if exceptions=1 is used).
    • Fixed bug #75502 (Segmentation fault in zend_string_release).
  • SPL:
    • Fixed bug #75717 (RecursiveArrayIterator does not traverse arrays by reference).
    • Fixed bug #75242 (RecursiveArrayIterator doesn’t have constants from parent class).
    • Fixed bug #73209 (RecursiveArrayIterator does not iterate object properties).
  • Standard:
    • Fixed bug #75781 (substr_count incorrect result).

PHP 7.2.2 Release Notes

  • Core:
    • Fixed bug #75742 (potential memleak in internal classes’s static members).
    • Fixed bug #75679 (Path 260 character problem).
    • Fixed bug #75614 (Some non-portable == in shell scripts).
    • Fixed bug #75786 (segfault when using spread operator on generator passed by reference).
    • Fixed bug #75799 (arg of get_defined_functions is optional).
    • Fixed bug #75396 (Exit inside generator finally results in fatal error).
  • FCGI:
    • Fixed bug #75794 (getenv() crashes on Windows 7.2.1 when second parameter is false).
  • IMAP:
    • Fixed bug #75774 (imap_append HeapCorruction).
  • Opcache:
    • Fixed bug #75720 (File cache not populated after SHM runs full).
    • Fixed bug #75687 (var 8 (TMP) has array key type but not value type).
    • Fixed bug #75698 (Using @ crashes php7.2-fpm).
    • Fixed bug #75579 (Interned strings buffer overflow may cause crash).
  • PDO:
    • Fixed bug #75616 (PDO extension doesn’t allow to be built shared on Darwin).
  • PDO MySQL:
    • Fixed bug #75615 (PDO Mysql module can’t be built as module).
  • PGSQL:
    • Fixed bug #75671 (pg_version() crashes when called on a connection to cockroach).
  • Readline:
    • Fixed bug #75775 (readline_read_history segfaults with empty file).
  • SAPI:
    • Fixed bug #75735 (Segmentation fault in sapi_register_post_entry).
  • SOAP:
    • Fixed bug #70469 (SoapClient generates E_ERROR even if exceptions=1 is used).
    • Fixed bug #75502 (Segmentation fault in zend_string_release).
  • SPL:
    • Fixed bug #75717 (RecursiveArrayIterator does not traverse arrays by reference).
    • Fixed bug #75242 (RecursiveArrayIterator doesn’t have constants from parent class).
    • Fixed bug #73209 (RecursiveArrayIterator does not iterate object properties).
  • Standard:
    • Fixed bug #75781 (substr_count incorrect result).
    • Fixed bug #75653 (array_values don’t work on empty array).
  • Zip:
    • Display headers (buildtime) and library (runtime) versions in phpinfo (with libzip >= 1.3.1).

Schreibe einen Kommentar

Diese Website verwendet Akismet, um Spam zu reduzieren. Erfahre mehr darüber, wie deine Kommentardaten verarbeitet werden.