PHP NEWS
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
10 Jan 2019, PHP 5.6.40
- GD:
. Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to
use-after-free). (cmb)
. Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). (cmb)
- Mbstring:
. Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). (Stas)
. Fixed bug #77371 (heap buffer overflow in mb regex functions
- compile_string_node). (Stas)
. Fixed bug #77381 (heap buffer overflow in multibyte match_at). (Stas)
. Fixed bug #77382 (heap buffer overflow due to incorrect length in
expand_case_fold_string). (Stas)
. Fixed bug #77385 (buffer overflow in fetch_token). (Stas)
. Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). (Stas)
. Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). (Stas)
- Phar:
. Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). (Stas)
- Xmlrpc:
. Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). (cmb)
. Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). (Stas)
06 Dec 2018, PHP 5.6.39
- Core:
. Fixed bug #77231 (Segfault when using convert.quoted-printable-encode
filter). (Stas)
- IMAP:
. Fixed bug #77020 (null pointer dereference in imap_mail). (cmb)
. Fixed bug #77153 (imap_open allows to run arbitrary shell commands via
mailbox parameter). (Stas)
- Phar:
. Fixed bug #77022 (PharData always creates new files with mode 0666). (Stas)
. Fixed bug #77143 (Heap Buffer Overflow (READ: 4) in phar_parse_pharfile).
(Stas)
13 Sep 2018, PHP 5.6.38
- Apache2
. Fixed bug #76582 (XSS due to the header Transfer-Encoding: chunked). (Stas)
19 Jul 2018, PHP 5.6.37
- Exif:
. Fixed bug #76423 (Int Overflow lead to Heap OverFlow in
exif_thumbnail_extract of exif.c). (Stas)
. Fixed bug #76557 (heap-buffer-overflow (READ of size 48) while reading exif
data). (Stas)
- Win32:
. Fixed bug #76459 (windows linkinfo lacks openbasedir check). (Anatol)
26 Apr 2018 PHP 5.6.36
- Exif:
. Fixed bug #76130 (Heap Buffer Overflow (READ: 1786) in exif_iif_add_value).
(Stas)
- iconv:
. Fixed bug #76249 (stream filter convert.iconv leads to infinite loop on
invalid sequence). (Stas)
- LDAP:
. Fixed bug #76248 (Malicious LDAP-Server Response causes Crash). (Stas)
- Phar:
. Fixed bug #76129 (fix for CVE-2018-5712 may not be complete). (Stas)
29 Mar 2018, PHP 5.6.35
- FPM:
. Fixed bug #75605 (Dumpable FPM child processes allow bypassing opcache
access controls). (Jakub Zelenka)
01 Mar 2018, PHP 5.6.34
- Standard:
. Fixed bug #75981 (stack-buffer-overflow while parsing HTTP response). (Stas)
04 Jan 2018, PHP 5.6.33
- GD:
. Fixed bug #75571 (Potential infinite loop in gdImageCreateFromGifCtx). (cmb)
- Phar:
. Fixed bug #74782 (Reflected XSS in .phar 404 page). (Stas)
26 Sep 2017, PHP 5.6.32
- Date:
. Fixed bug #75055 (Out-Of-Bounds Read in timelib_meridian()). (Derick)
- mcrypt:
. Fixed bug #72535 (arcfour encryption stream filter crashes php). (Leigh)
- PCRE:
. Fixed bug #75207 (applied upstream patch for CVE-2016-1283). (Anatol)
06 Jul 2017, PHP 5.6.31
- Core:
. Fixed bug #73807 (Performance problem with processing post request over
2000000 chars). (Nikita)
. Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from
unserialize). (Nikita)
. Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability).
(Stas)
. Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via
php_parse_date()). (Derick)
- GD:
. Fixed bug #74435 (Buffer over-read into uninitialized memory). (cmb)
- mbstring:
. Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227,
CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA)
- OpenSSL:
. Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()).
(Stas)
- PCRE:
. Fixed bug #74087 (Segmentation fault in PHP7.1.1(compiled using the bundled PCRE library)).
(Stas)
- WDDX:
. Fixed bug #74145 (wddx parsing empty boolean tag leads to SIGSEGV). (Stas)
19 Jan 2017, PHP 5.6.30
- EXIF:
. Fixed bug #73737 (FPE when parsing a tag format). (Stas)
- GD:
. Fixed bug #73549 (Use after free when stream is passed to imagepng). (cmb)
. Fixed bug #73868 (DOS vulnerability in gdImageCreateFromGd2Ctx()). (cmb)
. Fixed bug #73869 (Signed Integer Overflow gd_io.c). (cmb)
- Intl:
. Fixed bug #68447 (grapheme_extract take an extra trailing character).
(SATŌ Kentarō)
- Phar:
. Fixed bug #73764 (Crash while loading hostile phar archive). (Stas)
. Fixed bug #73768 (Memory corruption when loading hostile phar). (Stas)
. Fixed bug #73773 (Seg fault when loading hostile phar). (Stas)
- SQLite3:
. Reverted fix for bug #73530 (Unsetting result set may reset other result
set). (cmb)
- Standard:
. Fixed bug #70213 (Unserialize context shared on double class lookup).
(Taoguang Chen)
. Fixed bug #73825 (Heap out of bounds read on unserialize in
finish_nested_data()). (Stas)
08 Dec 2016, PHP 5.6.29
- Mbstring:
. Fixed bug #73505 (string length overflow in mbfl_memory_device_output
function). (Stas)
- Mysqlnd:
. Fixed bug #64526 (Add missing mysqlnd.* parameters to php.ini-*). (cmb)
- Opcache:
. Fixed bug #73402 (Opcache segfault when using class constant to call a
method). (Laruence)
. Fixed bug #69090 (check cached files permissions)
- OpenSSL
. Fixed bug #72776 (Invalid parameter in memcpy function trough
openssl_pbkdf2). (Jakub Zelenka)
- Postgres:
. Fixed bug #73498 (Incorrect SQL generated for pg_copy_to()). (Craig Duncan)
- SOAP:
. Fixed bug #73452 (Segfault (Regression for #69152)). (Dmitry)
- SQLite3:
. Fixed bug #73530 (Unsetting result set may reset other result set). (cmb)
- Standard:
. Fixed bug #73297 (HTTP stream wrapper should ignore HTTP 100 Continue).
(rowan dot collins at gmail dot com)
- WDDX:
. Fixed bug #73631 (Memory leak due to invalid wddx stack processing).
(bughunter at fosec dot vn).
10 Nov 2016, PHP 5.6.28
- Core:
. Fixed bug #73337 (try/catch not working with two exceptions inside a same
operation). (Dmitry)
- Bz2:
. Fixed bug #73356 (crash in bzcompress function). (Stas)
-GD:
. Fixed bug #73213 (Integer overflow in imageline() with antialiasing). (cmb)
. Fixed bug #73272 (imagescale() is not affected by, but affects
imagesetinterpolation()). (cmb)
. Fixed bug #73279 (Integer overflow in gdImageScaleBilinearPalette()). (cmb)
. Fixed bug #73280 (Stack Buffer Overflow in GD dynamicGetbuf). (cmb)
. Fixed bug #72482 (Illegal write/read access caused by gdImageAALine overflow).
(cmb)
. Fixed bug #72696 (imagefilltoborder stackoverflow on truecolor images). (cmb)
- Imap:
. Fixed bug #73418 (Integer Overflow in "_php_imap_mail" leads Heap Overflow).
(Anatol)
- SPL:
. Fixed bug #73144 (Use-after-free in ArrayObject Deserialization). (Stas)
- SOAP:
. Fixed bug #73037 (SoapServer reports Bad Request when gzipped). (Anatol)
- SQLite3:
. Fixed bug #73333 (2147483647 is fetched as string). (cmb)
- Standard:
. Fixed bug #73203 (passing additional_parameters causes mail to fail). (cmb)
. Fixed bug #73188 (use after free in userspace streams). (Sara)
. Fixed bug #73192 (parse_url return wrong hostname). (Nikita)
- Wddx:
. Fixed bug #73331 (NULL Pointer Dereference in WDDX Packet Deserialization
with PDORow). (Stas)
13 Oct 2016, PHP 5.6.27
- Core:
. Fixed bug #73025 (Heap Buffer Overflow in virtual_popen of
zend_virtual_cwd.c). (cmb)
. Fixed bug #
没有合适的资源?快使用搜索试试~ 我知道了~
温馨提示
版权归phpStudy所有 为方便用户本地测试PHP程序,特花时间整理集成所有PHP环境版本。支持php 5.2~8.1 压缩包解压后,请放到D盘下,为了防止跟当前系统端口冲突,apache端口用800,mysql端口用33060,可自行到【其他选项菜单】->【phpStudy 设置】->【端口常规设置】修改端口。 数据库管理phpmyadmin 访问网址:http://127.0.0.1:800/phpMyAdmin/ 如果mysql端口不是33060了,更改 WWW/phpmyadmin/config.inc.php 文件里32行 33060 改为实际端口号 php程序放到 WWW/目录下,访问网址:http://127.0.0.1:800/ 比如:WWW/目录下放otcms程序目录,访问网址:http://127.0.0.1:800/otcms/ 如果要连接ACCESS或者MSSQL数据库,亲测用PHP 7.0.12环境版本可正常使用,其他版本未测试。
资源详情
资源评论
资源推荐
收起资源包目录
phpStudy集成PHP+MySQL运行环境,支持PHP 5.2~8.1.3目前所有PHP版本,适合本地测试各PHP版本 (3633个子文件)
RELEASE-DATE-4.4.15.10 29B
make.bat 6KB
verifybins.bat 3KB
port.bat 872B
php52b.bat 258B
iisdel2.bat 256B
php52a.bat 227B
B.bat 208B
setpath.bat 168B
清空临时文件.bat 130B
iisdel.bat 60B
composer.bat 57B
copy.bat 49B
copyssl.bat 46B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 43B
phar.phar.bat 39B
phar.phar.bat 39B
go-pear.bat 34B
restart.bat 33B
.buildinfo 230B
test.bz2 49B
ChangeLog 26KB
manual.chm 34KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 11KB
openssl.cnf 9KB
httpd.conf 19KB
httpd-ssl.conf 10KB
httpd-sni.conf 7KB
httpd-languages.conf 5KB
nginx.conf 4KB
httpd-proxy-html.conf 3KB
httpd-autoindex.conf 3KB
httpd-default.conf 2KB
httpd-multilang-errordoc.conf 2KB
httpd-vhosts.conf 2KB
httpd-dav.conf 2KB
httpd-mpm.conf 1KB
httpd-info.conf 1KB
fastcgi.conf 1KB
httpd-manual.conf 916B
httpd-userdir.conf 849B
httpd-deflate.conf 843B
nconfig.conf 629B
example.conf 483B
httpd-php.conf 270B
vhosts.conf 263B
httpd-fcgid.conf 260B
httpd-isapi.conf 76B
vhosts.conf 0B
charset.conv 2KB
ca-bundle.crt 52KB
serverone.crt 1009B
servertwo.crt 1009B
server.crt 944B
slow_log.CSM 35B
general_log.CSM 35B
jquery-ui-1.11.2.css 34KB
jquery-ui-1.11.2.css 34KB
styles.css 11KB
basic.css 10KB
style.css 8KB
classic.css 4KB
pygments.css 4KB
firebug.css 3KB
print.css 1KB
ie6-style.css 165B
google.css 143B
default.css 28B
framedCloud.css 0B
db_test.csv 57B
db_test_ldi.csv 57B
general_log.CSV 0B
slow_log.CSV 0B
DCO 2KB
phpunit.xml.dist 2KB
icudt70.dll 28.1MB
icudt68.dll 27.25MB
icudt66.dll 26.74MB
icudt64.dll 26.26MB
icudt64.dll 26.26MB
icudt57.dll 24.48MB
icudt57.dll 24.48MB
icudt57.dll 24.48MB
共 3633 条
- 1
- 2
- 3
- 4
- 5
- 6
- 37
网钛科技
- 粉丝: 0
- 资源: 4
上传资源 快速赚钱
- 我的内容管理 展开
- 我的资源 快来上传第一个资源
- 我的收益 登录查看自己的收益
- 我的积分 登录查看自己的积分
- 我的C币 登录后查看C币余额
- 我的收藏
- 我的下载
- 下载帮助
安全验证
文档复制为VIP权益,开通VIP直接复制
信息提交成功
评论0