Die Open-Source Skriptsprache PHP (Hypertext Preprocessor ehmals Personal Home Page Tools) wurde am 13.10.2016 aktualisiert. Die neue Version 5.6.27 behebt 38 Fehler im u.a. Core im Opcache, der Session und OpenSSL.
PHP 5.6.27 Release Notes
- Core:
- Fixed bug #73025 (Heap Buffer Overflow in virtual_popen of zend_virtual_cwd.c).
- Fixed bug #73058 (crypt broken when salt is ‘too’ long).
- Fixed bug #72703 (Out of bounds global memory read in BF_crypt triggered by password_verify).
- Fixed bug #73189 (Memcpy negative size parameter php_resolve_path).
- Fixed bug #73147 (Use After Free in unserialize()).
- BCmath:
- Fixed bug #73190 (memcpy negative parameter _bc_new_num_ex).
- DOM:
- Fixed bug #73150 (missing NULL check in dom_document_save_html).
- Ereg:
- Fixed bug #73284 (heap overflow in php_ereg_replace function).
- Filter:
- GD:
- Fixed bug #67325 (imagetruecolortopalette: white is duplicated in palette).
- Fixed bug #50194 (imagettftext broken on transparent background w/o alphablending).
- Fixed bug #73003 (Integer Overflow in gdImageWebpCtx of gd_webp.c).
- Fixed bug #53504 (imagettfbbox gives incorrect values for bounding box).
- Fixed bug #73157 (imagegd2() ignores 3rd param if 4 are given).
- Fixed bug #73155 (imagegd2() writes wrong chunk sizes on boundaries).
- Fixed bug #73159 (imagegd2(): unrecognized formats may result in corrupted files).
- Fixed bug #73161 (imagecreatefromgd2() may leak memory).
- Intl:
- Fixed bug #73218 (add mitigation for ICU int overflow).
- Imap:
- Fixed bug #73208 (integer overflow in imap_8bit caused heap corruption).
- Mbstring:
- PCRE:
- Fixed bug #73174 (heap overflow in php_pcre_replace_impl).
- Opcache:
- Fixed bug #72590 (Opcache restart with kill_all_lockers does not work).
- OpenSSL:
- Session:
- SimpleXML:
- Fixed bug #73293 (NULL pointer dereference in SimpleXMLElement::asXML()).
- SPL:
- Fixed bug #73073 (CachingIterator null dereference when convert to string).
- Standard:
- Stream:
- Fixed bug #73069 (readfile() mangles files larger than 2G).
- Zip:
- Fixed bug #70752 (Depacking with wrong password leaves 0 length files).
Quelle: https://secure.php.net/ChangeLog-5.php#5.6.27
Loading...