Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Newer
Older
100644 7430 lines (6996 sloc) 382.547 kb
f419839 - Getting rid of the BOM.
Derick Rethans authored
1 PHP NEWS
d3e8858 @zsuraski Please add in any changes/bug fixes you've made - we need to keep a deta...
zsuraski authored
2 |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
a213c10 @smalyshev Merge branch 'pull-request/112' into PHP-5.4
smalyshev authored
3 ?? ??? 2012, PHP 5.4.6
4
9c28393 @felipensp - BFN
felipensp authored
5 - Core:
6 . Fixed bug #62565 (Crashes due non-initialized internal properties_table).
7 (Felipe)
8
4323a7a @laruence update NEWS
laruence authored
9 - CURL:
10 . Fixed bug #62499 (curl_setopt($ch, CURLOPT_COOKIEFILE, "") returns false).
11 (r.hampartsumyan@gmail.com, Laruence)
a213c10 @smalyshev Merge branch 'pull-request/112' into PHP-5.4
smalyshev authored
12
e3b9b1e @laruence Fixed Bug #62500 (Segfault in DateInterval class when extended)
laruence authored
13 - DateTime:
14 . Fixed Bug #62500 (Segfault in DateInterval class when extended). (Laruence)
9c28393 @felipensp - BFN
felipensp authored
15
1916bb2 @smalyshev Merge branch 'pull-request/91' into PHP-5.4
smalyshev authored
16 - Fileinfo:
17 . Fixed bug #61964 (finfo_open with directory causes invalid free).
18 (reeze.xia@gmail.com)
19
9c28393 @felipensp - BFN
felipensp authored
20 - Intl:
21 . Fixed bug #62564 (Extending MessageFormatter and adding property causes
22 crash). (Felipe)
e3b9b1e @laruence Fixed Bug #62500 (Segfault in DateInterval class when extended)
laruence authored
23
4323a7a @laruence update NEWS
laruence authored
24 - SimpleXML:
25 . Implemented FR #55218 Get namespaces from current node. (Lonny)
26
55dbd8c @smalyshev update NEWS
smalyshev authored
27 - SPL:
28 . Fixed bug #61527 (ArrayIterator gives misleading notice on next() when
29 moved to the end). (reeze.xia@gmail.com)
30
db1e425 @smalyshev restore NEWS
smalyshev authored
31 ?? ??? 2012, PHP 5.4.5
32
33 - Core:
8992da2 @smalyshev fix NEWS order
smalyshev authored
34 . Fixed bug #62443 (Crypt SHA256/512 Segfaults With Malformed
35 Salt). (Anthony Ferrara)
dfce6bf @smalyshev update NEWS
smalyshev authored
36 . Fixed bug #62432 (ReflectionMethod random corrupt memory on high
37 concurrent). (Johannes)
38 . Fixed bug #62373 (serialize() generates wrong reference to the object).
39 (Moriyoshi)
a44a1dc @laruence Fixed bug #62357 (compile failure: (S) Arguments missing for built-in fu...
laruence authored
40 . Fixed bug #62357 (compile failure: (S) Arguments missing for built-in
41 function __memcmp). (Laruence)
db1e425 @smalyshev restore NEWS
smalyshev authored
42 . Fixed bug #61998 (Using traits with method aliases appears to result in
43 crash during execution). (Dmitry)
c4cc431 @smalyshev rearrange news
smalyshev authored
44 . Fixed bug #51094 (parse_ini_file() with INI_SCANNER_RAW cuts a value that
45 includes a semi-colon). (Pierrick)
f8cc363 @smalyshev add CVE
smalyshev authored
46 . Fixed potential overflow in _php_stream_scandir (CVE-2012-2688).
47 (Jason Powell, Stas)
db1e425 @smalyshev restore NEWS
smalyshev authored
48
49 - EXIF:
50 . Fixed information leak in ext exif (discovered by Martin Noga,
51 Matthew "j00ru" Jurczyk, Gynvael Coldwind)
52
503358c @cataphract Fix bug #62266
cataphract authored
53 - FPM:
db1e425 @smalyshev restore NEWS
smalyshev authored
54 . Fixed bug #62205 (php-fpm segfaults (null passed to strstr)). (fat)
55 . Fixed bug #62160 (Add process.priority to set nice(2) priorities). (fat)
56 . Fixed bug #62153 (when using unix sockets, multiples FPM instances
57 . Fixed bug #62033 (php-fpm exits with status 0 on some failures to start).
58 (fat)
59 . Fixed bug #61839 (Unable to cross-compile PHP with --enable-fpm). (fat)
60 . Fixed bug #61835 (php-fpm is not allowed to run as root). (fat)
61 . Fixed bug #61295 (php-fpm should not fail with commented 'user'
62 . Fixed bug #61218 (FPM drops connection while receiving some binary values
63 in FastCGI requests). (fat)
64 . Fixed bug #61045 (fpm don't send error log to fastcgi clients). (fat)
65 for non-root start). (fat)
66 . Fixed bug #61026 (FPM pools can listen on the same address). (fat)
67 can be launched without errors). (fat)
68
69 - Iconv:
70 . Fix bug #55042 (Erealloc in iconv.c unsafe). (Stas)
71
503358c @cataphract Fix bug #62266
cataphract authored
72 - Intl:
e118a07 @smalyshev merge 5.3 entries
smalyshev authored
73 . Fixed bug #62083 (grapheme_extract() memory leaks). (Gustavo)
db1e425 @smalyshev restore NEWS
smalyshev authored
74 . ResourceBundle constructor now accepts NULL for the first two arguments.
75 (Gustavo)
e118a07 @smalyshev merge 5.3 entries
smalyshev authored
76 . Fixed bug #62081 (IntlDateFormatter constructor leaks memory when called
77 twice). (Gustavo)
78 . Fixed bug #62070 (Collator::getSortKey() returns garbage). (Gustavo)
79 . Fixed bug #62017 (datefmt_create with incorrectly encoded timezone leaks
80 pattern). (Gustavo)
dfce6bf @smalyshev update NEWS
smalyshev authored
81 . Fixed bug #60785 (memory leak in IntlDateFormatter constructor). (Gustavo)
db1e425 @smalyshev restore NEWS
smalyshev authored
82
b741d33 @smalyshev fix bug #61359: json_encode() calls too many reallocs
smalyshev authored
83 - JSON:
84 . Fixed bug #61359 (json_encode() calls too many reallocs). (Stas)
85
503358c @cataphract Fix bug #62266
cataphract authored
86 - libxml:
87 . Fixed bug #62266 (Custom extension segfaults during xmlParseFile with FPM
88 SAPI). (Gustavo)
89
dfce6bf @smalyshev update NEWS
smalyshev authored
90 - Phar:
91 . Fixed bug #62227 (Invalid phar stream path causes crash). (Felipe)
92
db1e425 @smalyshev restore NEWS
smalyshev authored
93 - Readline:
94 . Fixed bug #62186 (readline fails to compile - void function should not
95 return a value). (Johannes)
96
97 - Reflection:
e886272 @felipensp - BFN
felipensp authored
98 . Fixed bug #62384 (Attempting to invoke a Closure more than once causes
99 segfault). (Felipe)
100 . Fixed bug #62202 (ReflectionParameter::getDefaultValue() memory leaks
101 with constant). (Laruence)
db1e425 @smalyshev restore NEWS
smalyshev authored
102
103 - Sockets:
104 . Fixed bug #62025 (__ss_family was changed on AIX 5.3). (Felipe)
105
dfce6bf @smalyshev update NEWS
smalyshev authored
106 - SPL:
be4053c @laruence Fixed bug #62433 (Inconsistent behavior of RecursiveDirectoryIterator to...
laruence authored
107 . Fixed bug #62433 (Inconsistent behavior of RecursiveDirectoryIterator to
108 dot files). (Laruence)
dfce6bf @smalyshev update NEWS
smalyshev authored
109 . Fixed bug #62262 (RecursiveArrayIterator does not implement Countable).
110 (Nikita Popov)
111
db1e425 @smalyshev restore NEWS
smalyshev authored
112 - XML Writer:
113 . Fixed bug #62064 (memory leak in the XML Writer module).
114 (jean-pierre dot lozi at lip6 dot fr)
c467e81 @adoy NEWS File
adoy authored
115
7907dc4 @weltling updated NEWS
weltling authored
116 - Zip:
117 . Upgraded libzip to 0.10.1 (Anatoliy)
db1e425 @smalyshev restore NEWS
smalyshev authored
118
7a0f4cf @smalyshev update NEWS
smalyshev authored
119 14 Jun 2012, PHP 5.4.4
d102030 @adoy Fixed memory leak in substr_replace
adoy authored
120
db1e425 @smalyshev restore NEWS
smalyshev authored
121 - COM:
122 . Fixed bug #62146 com_dotnet cannot be built shared. (Johannes)
123
16748fe @rlerdorf CLI Server was sending "Connection: closed" instead of "Connection: clos...
rlerdorf authored
124 - CLI Server:
1e60d0c @laruence Implemented FR #61977 (Need CLI web-server support for files with .htm &...
laruence authored
125 . Implemented FR #61977 (Need CLI web-server support for files with .htm &
126 svg extensions). (Sixd, Laruence)
cc58373 @laruence Improved performance while sending error page
laruence authored
127 . Improved performance while sending error page, this also fixed
128 bug #61785 (Memory leak when access a non-exists file without router).
129 (Laruence)
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
130 . Fixed bug #61546 (functions related to current script failed when chdir()
131 in cli sapi). (Laruence, reeze.xia@gmail.com)
16748fe @rlerdorf CLI Server was sending "Connection: closed" instead of "Connection: clos...
rlerdorf authored
132
f7cd058 @adoy Fixed bug #61225 (Lexing 0b0*+<NUM> incorectly)
adoy authored
133 - Core:
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
134 . Fixed missing bound check in iptcparse(). (chris at chiappa.net)
db1e425 @smalyshev restore NEWS
smalyshev authored
135 . Fixed CVE-2012-2143. (Solar Designer)
136 . Fixed bug #62097 (fix for for bug #54547). (Gustavo)
3332943 @laruence Fixed Bug #62005 (unexpected behavior when incrementally assigning to a ...
laruence authored
137 . Fixed bug #62005 (unexpected behavior when incrementally assigning to a
138 member of a null object). (Laruence)
f46a064 @felipensp - BFN
felipensp authored
139 . Fixed bug #61978 (Object recursion not detected for classes that implement
140 JsonSerializable). (Felipe)
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
141 . Fixed bug #61991 (long overflow in realpath_cache_get()). (Anatoliy)
72f19e9 @laruence Fixed bug #61922 (ZTS build doesn't accept zend.script_encoding config)
laruence authored
142 . Fixed bug #61922 (ZTS build doesn't accept zend.script_encoding config).
143 (Laruence)
b336af2 @felipensp - BFN
felipensp authored
144 . Fixed bug #61827 (incorrect \e processing on Windows) (Anatoliy)
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
145 . Fixed bug #61782 (__clone/__destruct do not match other methods when checking
146 access controls). (Stas)
dfce6bf @smalyshev update NEWS
smalyshev authored
147 . Fixed bug #61764 ('I' unpacks n as signed if n > 2^31-1 on LP64). (Gustavo)
172aa3c @laruence update NEWS
laruence authored
148 . Fixed bug #61761 ('Overriding' a private static method with a different
149 signature causes crash). (Laruence)
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
150 . Fixed bug #61730 (Segfault from array_walk modifying an array passed by
151 reference). (Laruence)
172aa3c @laruence update NEWS
laruence authored
152 . Fixed bug #61728 (PHP crash when calling ob_start in request_shutdown
153 phase). (Laruence)
dfce6bf @smalyshev update NEWS
smalyshev authored
154 . Fixed bug #61713 (Logic error in charset detection for htmlentities).
155 (Anatoliy)
7ae93a2 @nikic Fix bug #61660: bin2hex(hex2bin($data)) != $data
nikic authored
156 . Fixed bug #61660 (bin2hex(hex2bin($data)) != $data). (Nikita Popov)
014ed76 @laruence Update NEWS
laruence authored
157 . Fixed bug #61650 (ini parser crashes when using ${xxxx} ini variables
158 (without apache2)). (Laruence)
7cccb6b @laruence fix typo
laruence authored
159 . Fixed bug #61605 (header_remove() does not remove all headers). (Laruence)
a72b214 @smalyshev update NEWS/UPGRADING
smalyshev authored
160 . Fixed bug #54547 (wrong equality of string numbers). (Gustavo)
b0e8be8 @smalyshev organize NEWS
smalyshev authored
161 . Fixed bug #54197 ([PATH=] sections incompatibility with user_ini.filename
162 set to null). (Anatoliy)
df2a38e @smalyshev fd fix
smalyshev authored
163 . Changed php://fd to be available only for CLI.
164
dfce6bf @smalyshev update NEWS
smalyshev authored
165 - CURL:
166 . Fixed bug #61948 (CURLOPT_COOKIEFILE '' raises open_basedir restriction).
167 (Laruence)
d1e529c - fix NEWS for bug #61812
Jerome Loyet authored
168
dce2590 - Fixed bug #61045 (fpm don't send error log to fastcgi clients)
Jerome Loyet authored
169 - Fileinfo
b0e8be8 @smalyshev organize NEWS
smalyshev authored
170 . Fixed bug #61812 (Uninitialised value used in libmagic).
171 (Laruence, Gustavo)
e118a07 @smalyshev merge 5.3 entries
smalyshev authored
172 . Fixed bug #61566 failure caused by the posix lseek and read versions
173 under windows in cdf_read(). (Anatoliy)
174 . Fixed bug #61565 where php_stream_open_wrapper_ex tries to open a
175 directory descriptor under windows. (Anatoliy)
b0e8be8 @smalyshev organize NEWS
smalyshev authored
176
92039fe @cataphract Changed ResourceBundle constructor behavior
cataphract authored
177 - Intl
db1e425 @smalyshev restore NEWS
smalyshev authored
178 . Fixed bug #62082 (Memory corruption in internal function
179 get_icu_disp_value_src_php()). (Gustavo)
92039fe @cataphract Changed ResourceBundle constructor behavior
cataphract authored
180
b0e8be8 @smalyshev organize NEWS
smalyshev authored
181 - Libxml:
182 . Fixed bug #61617 (Libxml tests failed(ht is already destroyed)).
183 (Laruence)
184
dfce6bf @smalyshev update NEWS
smalyshev authored
185 - PDO:
186 . Fixed bug #61755 (A parsing bug in the prepared statements can lead to
187 access violations). (Johannes)
188
189 - Phar:
190 . Fixed bug #61065 (Secunia SA44335, CVE-2012-2386). (Rasmus)
191
192 - Pgsql:
193 . Added pg_escape_identifier/pg_escape_literal. (Yasuo Ohgaki)
194
195 - Streams:
196 . Fixed bug #61961 (file_get_contents leaks when access empty file with
197 maxlen set). (Reeze)
198
b0e8be8 @smalyshev organize NEWS
smalyshev authored
199 - Zlib:
200 . Fixed bug #61820 (using ob_gzhandler will complain about headers already
201 sent when no compression). (Mike)
202 . Fixed bug #61443 (can't change zlib.output_compression on the fly). (Mike)
956d745 @m6w6 BFN
m6w6 authored
203 . Fixed bug #60761 (zlib.output_compression fails on refresh). (Mike)
b0e8be8 @smalyshev organize NEWS
smalyshev authored
204
5848220 @smalyshev update NEWS
smalyshev authored
205 08 May 2012, PHP 5.4.3
206
207 - CGI
208 . Re-Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823.
209 (Stas)
210 . Fix bug #61807 - Buffer Overflow in apache_request_headers.
211 (nyt-php at countercultured dot net).
212
213 03 May 2012, PHP 5.4.2
214
215 - Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823. (Rasmus)
216
b0e8be8 @smalyshev organize NEWS
smalyshev authored
217 26 Apr 2012, PHP 5.4.1
218
219 - CLI Server:
220 . Fixed bug #61461 (missing checks around malloc() calls). (Ilia)
221 . Implemented FR #60850 (Built in web server does not set
222 $_SERVER['SCRIPT_FILENAME'] when using router). (Laruence)
223 . "Connection: close" instead of "Connection: closed" (Gustavo)
224
225 - Core:
226 . Fixed crash in ZTS using same class in many threads. (Johannes)
ed98579 @cataphract - Fixed bug #61374: html_entity_decode tries to decode code points that ...
cataphract authored
227 . Fixed bug #61374 (html_entity_decode tries to decode code points that don't
228 exist in ISO-8859-1). (Gustavo)
b7ae5e0 @laruence Fixed bug #61273 (call_user_func_array with more than 16333 arguments le...
laruence authored
229 . Fixed bug #61273 (call_user_func_array with more than 16333 arguments
230 leaks / crashes). (Laruence)
9bfe801 Fixed typo
Ilia Alshanetsky authored
231 . Fixed bug #61225 (Incorrect lexing of 0b00*+<NUM>). (Pierrick)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
232 . Fixed bug #61165 (Segfault - strip_tags()). (Laruence)
233 . Fixed bug #61106 (Segfault when using header_register_callback). (Nikita
234 Popov)
235 . Fixed bug #61087 (Memory leak in parse_ini_file when specifying
236 invalid scanner mode). (Nikic, Laruence)
237 . Fixed bug #61072 (Memory leak when restoring an exception handler).
238 (Nikic, Laruence)
239 . Fixed bug #61058 (array_fill leaks if start index is PHP_INT_MAX).
046e3e3 @laruence MFH: Fixed bug #60573 (type hinting with "self" keyword causes weird err...
laruence authored
240 (Laruence)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
241 . Fixed bug #61052 (Missing error check in trait 'insteadof' clause). (Stefan)
9ddf055 Reorder
Christopher Jones authored
242 . Fixed bug #61011 (Crash when an exception is thrown by __autoload
243 accessing a static property). (Laruence)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
244 . Fixed bug #61000 (Exceeding max nesting level doesn't delete numerical
245 vars). (Laruence)
246 . Fixed bug #60978 (exit code incorrect). (Laruence)
247 . Fixed bug #60911 (Confusing error message when extending traits). (Stefan)
248 . Fixed bug #60801 (strpbrk() mishandles NUL byte). (Adam)
249 . Fixed bug #60717 (Order of traits in use statement can cause a fatal
250 error). (Stefan)
251 . Fixed bug #60573 (type hinting with "self" keyword causes weird errors).
252 (Laruence)
3d9824a Fixed bug #60569 (Nullbyte truncates Exception $message).
Ilia Alshanetsky authored
253 . Fixed bug #60569 (Nullbyte truncates Exception $message). (Ilia)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
254 . Fixed bug #52719 (array_walk_recursive crashes if third param of the
255 function is by reference). (Nikita Popov)
e3dc1d8 @laruence Typo
laruence authored
256 . Improve performance of set_exception_handler while doing reset (Laruence)
d102030 @adoy Fixed memory leak in substr_replace
adoy authored
257
b0e8be8 @smalyshev organize NEWS
smalyshev authored
258 - fileinfo:
259 . Fix fileinfo test problems. (Anatoliy Belsky)
260
edb5781 Fixed bug #61430 (Transposed memset() params in sapi/fpm/fpm/fpm_shm.c).
Ilia Alshanetsky authored
261 - FPM
262 . Fixed bug #61430 (Transposed memset() params in sapi/fpm/fpm/fpm_shm.c).
263 (michaelhood at gmail dot com, Ilia)
264
2dee9ec Fixed bug #60947 (Segmentation fault while executing ibase_db_info)
Ilia Alshanetsky authored
265 - Ibase
266 . Fixed bug #60947 (Segmentation fault while executing ibase_db_info).
267 (Ilia)
268
15cd45e Fixed bug #61172 (Add Apache 2.4 support)
Christopher Jones authored
269 - Installation
270 . Fixed bug #61172 (Add Apache 2.4 support). (Chris Jones)
271
cdfef0a @smalyshev NEWS for bug #61487
smalyshev authored
272 - Intl:
273 . Fixed bug #61487 (Incorrent bounds checking in grapheme_strpos).
274 (Stas)
275
9ddf055 Reorder
Christopher Jones authored
276 - mbstring:
277 . MFH mb_ereg_replace_callback() for security enhancements. (Rui)
278
a845e7b @johannes Fix bug #61003 mysql_stat() require a valid connection
johannes authored
279 - mysqli
280 . Fixed bug #61003 (mysql_stat() require a valid connection). (Johannes).
281
46608a0 @johannes Fix bug #61194 PDO should export compression flag with myslqnd
johannes authored
282 - mysqlnd
e8e6611 @johannes Fix #61704 (Crash apache, phpinfo() threading issue)
johannes authored
283 . Fixed bug #61704 (Crash apache, phpinfo() threading issue). (Johannes)
46608a0 @johannes Fix bug #61194 PDO should export compression flag with myslqnd
johannes authored
284 . Fixed bug #60948 (mysqlnd FTBFS when -Wformat-security is enabled).
285 (Johannes)
286
a32a199 @laruence Fixed bug #61292 (Segfault while calling a method on an overloaded PDO o...
laruence authored
287 - PDO
288 . Fixed bug #61292 (Segfault while calling a method on an overloaded PDO
289 object). (Laruence)
290
46608a0 @johannes Fix bug #61194 PDO should export compression flag with myslqnd
johannes authored
291 - PDO_mysql
bdf6c28 @laruence Re-order them according to README.SVN-RULES
laruence authored
292 . Fixed bug #61207 (PDO::nextRowset() after a multi-statement query doesn't
293 always work). (Johannes)
a3cd950 @laruence Same wrong order here
laruence authored
294 . Fixed bug #61194 (PDO should export compression flag with myslqnd).
295 (Johannes)
46608a0 @johannes Fix bug #61194 PDO should export compression flag with myslqnd
johannes authored
296
0af900f Fixed bug #61212 (PDO ODBC Segfaults on SQL_SUCESS_WITH_INFO).
Ilia Alshanetsky authored
297 - PDO_odbc
298 . Fixed bug #61212 (PDO ODBC Segfaults on SQL_SUCESS_WITH_INFO). (Ilia)
299
d256caf @nikic Merge: Fix bug #61184 Phar::webPhar() generates headers with trailing NU...
nikic authored
300 - Phar
9ddf055 Reorder
Christopher Jones authored
301 . Fixed bug #61184 (Phar::webPhar() generates headers with trailing NUL
302 bytes). (Nikita Popov)
d256caf @nikic Merge: Fix bug #61184 Phar::webPhar() generates headers with trailing NU...
nikic authored
303
dfce6bf @smalyshev update NEWS
smalyshev authored
304 - Readline:
305 . Fixed bug #61088 (Memory leak in readline_callback_handler_install).
306 (Nikic, Laruence)
307
e83f026 @laruence MFH: Fixed bug #60968 (Late static binding doesn't work with ReflectionM...
laruence authored
308 - Reflection:
054f3e3 @reeze Implemented FR #61602 Allow access to name of constant used as default v...
reeze authored
309 . Implemented FR #61602 (Allow access to the name of constant
310 used as function/method parameter's default value). (reeze.xia@gmail.com)
e83f026 @laruence MFH: Fixed bug #60968 (Late static binding doesn't work with ReflectionM...
laruence authored
311 . Fixed bug #60968 (Late static binding doesn't work with
312 ReflectionMethod::invokeArgs()). (Laruence)
313
dfce6bf @smalyshev update NEWS
smalyshev authored
314 - Session
315 . Fixed bug #60634 (Segmentation fault when trying to die() in
316 SessionHandler::write()). (Ilia)
317
318 - SOAP
319 . Fixed bug #61423 (gzip compression fails). (Ilia)
320 . Fixed bug #60887 (SoapClient ignores user_agent option and sends no
321 User-Agent header). (carloschilazo at gmail dot com)
322 . Fixed bug #60842, #51775 (Chunked response parsing error when
323 chunksize length line is > 10 bytes). (Ilia)
324 . Fixed bug #49853 (Soap Client stream context header option ignored).
325 (Dmitry)
326
430486f @laruence Fixed bug #61347 (inconsist isset behavior of Arrayobject)
laruence authored
327 - SPL:
0f00170 @cataphract Fixed bug #61453.
cataphract authored
328 . Fixed bug #61453 (SplObjectStorage does not identify objects correctly).
329 (Gustavo)
4191d5f @laruence Oops, sorry for my poor english
laruence authored
330 . Fixed bug #61347 (inconsistent isset behavior of Arrayobject). (Laruence)
430486f @laruence Fixed bug #61347 (inconsist isset behavior of Arrayobject)
laruence authored
331
9ddf055 Reorder
Christopher Jones authored
332 - Standard:
333 . Fixed memory leak in substr_replace. (Pierrick)
334 . Make max_file_uploads ini directive settable outside of php.ini (Rasmus)
9aec9cc @LawnGnome Fix bug #61409 (Bad formatting on phpinfo()). Patch by Jakub Vrana.
LawnGnome authored
335 . Fixed bug #61409 (Bad formatting on phpinfo()). (Jakub Vrana)
4cccba0 Fixed bug #60222 (time_nanosleep() does validate input params).
Ilia Alshanetsky authored
336 . Fixed bug #60222 (time_nanosleep() does validate input params). (Ilia)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
337 . Fixed bug #60106 (stream_socket_server silently truncates long unix socket
338 paths). (Ilia)
fda8d2f @laruence MFH: Fixed bug #61058 (array_fill leaks if start index is PHP_INT_MAX)
laruence authored
339
0dcff95 @nikic Merge: Fix bug #61097: Memory leak in xmlrpc functions copying zvals
nikic authored
340 - XMLRPC:
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
341 . Fixed bug #61264 (xmlrpc_parse_method_descriptions leaks temporary
342 variable). (Nikita Popov)
343 . Fixed bug #61097 (Memory leak in xmlrpc functions copying zvals). (Nikita
344 Popov)
0dcff95 @nikic Merge: Fix bug #61097: Memory leak in xmlrpc functions copying zvals
nikic authored
345
3748034 @nikic Merge: Fix bug #61139: gzopen leaks when specifying invalid mode
nikic authored
346 - Zlib:
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
347 . Fixed bug #61306 (initialization of global inappropriate for ZTS). (Gustavo)
39d2996 @m6w6 MFH: Fixed bug #61287 (A particular string fails to decompress)
m6w6 authored
348 . Fixed bug #61287 (A particular string fails to decompress). (Mike)
ac6ea3d @cataphract - Updated NEWS with news of bug #61306 having been resolved (see r323988...
cataphract authored
349 . Fixed bug #61139 (gzopen leaks when specifying invalid mode). (Nikita Popov)
3748034 @nikic Merge: Fix bug #61139: gzopen leaks when specifying invalid mode
nikic authored
350
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
351 01 Mar 2012, PHP 5.4.0
d5cab14 @smalyshev split changes between alphas
smalyshev authored
352
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
353 - Installation:
354 . autoconf 2.59+ is now supported (and required) for generating the
355 configure script with ./buildconf. Autoconf 2.60+ is desirable
356 otherwise the configure help order may be incorrect. (Rasmus, Chris Jones)
6e92347 Upgraded bundled PCRE to version 8.02.
Ilia Alshanetsky authored
357
0a6bcd4 @felipensp - Removed allow_call_time_pass_reference (Pierrick)
felipensp authored
358 - Removed legacy features:
7628da9 Removed support for break/continue $var syntax
Dmitry Stogov authored
359 . break/continue $var syntax. (Dmitry)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
360 . Safe mode and all related php.ini options. (Kalle)
361 . register_globals and register_long_arrays php.ini options. (Kalle)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
362 . import_request_variables(). (Kalle)
dd8e59d @KalleZ Removed safe_mode
KalleZ authored
363 . allow_call_time_pass_reference. (Pierrick)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
364 . define_syslog_variables php.ini option and its associated function. (Kalle)
365 . highlight.bg php.ini option. (Kalle)
366 . safe_mode, safe_mode_gid, safe_mode_include_dir,
367 safe_mode_exec_dir, safe_mode_allowed_env_vars and
368 safe_mode_protected_env_vars php.ini options.
369 . zend.ze1_compatibility_mode php.ini option.
d4b0a38 @laruence Fix typo (as tyearl's ask)
laruence authored
370 . Session bug compatibility mode (session.bug_compat_42 and
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
371 session.bug_compat_warn php.ini options). (Kalle)
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
372 . session_is_registered(), session_register() and session_unregister()
0a6bcd4 @felipensp - Removed allow_call_time_pass_reference (Pierrick)
felipensp authored
373 functions. (Kalle)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
374 . y2k_compliance php.ini option. (Kalle)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
375 . magic_quotes_gpc, magic_quotes_runtime and magic_quotes_sybase
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
376 php.ini options. get_magic_quotes_gpc, get_magic_quotes_runtime are kept
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
377 but always return false, set_magic_quotes_runtime raises an
378 E_CORE_ERROR. (Pierrick, Pierre)
379 . Removed support for putenv("TZ=..") for setting the timezone. (Derick)
380 . Removed the timezone guessing algorithm in case the timezone isn't set with
381 date.timezone or date_default_timezone_set(). Instead of a guessed
382 timezone, "UTC" is now used instead. (Derick)
77b2e54 Fixed PDO objects binary incompatibility
Dmitry Stogov authored
383
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
384 - Moved extensions to PECL:
3c4bafc clarify sqlite deprecation
Christopher Jones authored
385 . ext/sqlite. (Note: the ext/sqlite3 and ext/pdo_sqlite extensions are
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
386 not affected) (Johannes)
a8a9314 @johannes Add entry for sqlite
johannes authored
387
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
388 - General improvements:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
389 . Added short array syntax support ([1,2,3]), see UPGRADING guide for full
390 details. (rsky0711 at gmail . com, sebastian.deutsch at 9elements . com,
391 Pierre)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
392 . Added binary number format (0b001010). (Jonah dot Harris at gmail dot com)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
393 . Added support for Class::{expr}() syntax (Pierrick)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
394 . Added multibyte support by default. Previously PHP had to be compiled
395 with --enable-zend-multibyte. Now it can be enabled or disabled through
396 the zend.multibyte directive in php.ini. (Dmitry)
755c2cd Removed compile time dependency from ext/mbstring
Dmitry Stogov authored
397 . Removed compile time dependency from ext/mbstring (Dmitry)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
398 . Added support for Traits. (Stefan, with fixes by Dmitry and Laruence)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
399 . Added closure $this support back. (Stas)
400 . Added array dereferencing support. (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
401 . Added callable typehint. (Hannes)
66ac89a @felipensp - Added indirect method call through array variable (FR Bug #47160)
felipensp authored
402 . Added indirect method call through array. FR #47160. (Felipe)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
403 . Added DTrace support. (David Soria Parra)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
404 . Added class member access on instantiation (e.g. (new foo)->bar()) support.
405 (Felipe)
406 . <?= is now always available regardless of the short_open_tag setting. (Rasmus)
407 . Implemented Zend Signal Handling (configurable option --enable-zend-signals,
408 off by default). (Lucas Nealan, Arnaud Le Blanc, Brian Shire, Ilia)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
409 . Improved output layer, see README.NEW-OUTPUT-API for internals. (Mike)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
410 . Improved UNIX build system to allow building multiple PHP binary SAPIs and
55acfdf @rlerdorf Had the wrong bug number there
rlerdorf authored
411 one SAPI module the same time. FR #53271, FR #52419. (Jani)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
412 . Implemented closure rebinding as parameter to bindTo. (Gustavo Lopes)
413 . Improved the warning message of incompatible arguments. (Laruence)
414 . Improved ternary operator performance when returning arrays. (Arnaud, Dmitry)
415 . Changed error handlers to only generate docref links when the docref_root
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
416 php.ini setting is not empty. (Derick)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
417 . Changed silent conversion of array to string to produce a notice. (Patrick)
79a06bf @rlerdorf Remove reference to "default_charset" here since the it isn't
rlerdorf authored
418 . Changed default encoding from ISO-8859-1 to UTF-8 when not specified in
419 htmlspecialchars and htmlentities. (Rasmus)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
420 . Changed casting of null/''/false into an Object when adding a property
421 from E_STRICT into a warning. (Scott)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
422 . Changed E_ALL to include E_STRICT. (Stas)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
423 . Disabled Windows CRT warning by default, can be enabled again using the
424 php.ini directive windows_show_crt_warnings. (Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
425 . Fixed bug #55378: Binary number literal returns float number though its
426 value is small enough. (Derick)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
427
428 - Improved Zend Engine memory usage: (Dmitry)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
429 . Improved parse error messages. (Felipe)
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
430 . Replaced zend_function.pass_rest_by_reference by
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
431 ZEND_ACC_PASS_REST_BY_REFERENCE in zend_function.fn_flags.
432 . Replaced zend_function.return_reference by ZEND_ACC_RETURN_REFERENCE
433 in zend_function.fn_flags.
434 . Removed zend_arg_info.required_num_args as it was only needed for internal
46ef2ed Some grammar tweaks
Christopher Jones authored
435 functions. Now the first arg_info for internal functions (which has special
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
436 meaning) is represented by the zend_internal_function_info structure.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
437 . Moved zend_op_array.size, size_var, size_literal, current_brk_cont,
438 backpatch_count into CG(context) as they are used only during compilation.
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
439 . Moved zend_op_array.start_op into EG(start_op) as it's used only for
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
440 'interactive' execution of a single top-level op-array.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
441 . Replaced zend_op_array.done_pass_two by ZEND_ACC_DONE_PASS_TWO in
442 zend_op_array.fn_flags.
443 . op_array.vars array is trimmed (reallocated) during pass_two.
444 . Replaced zend_class_entry.constants_updated by ZEND_ACC_CONSTANTS_UPDATED
445 in zend_class_entry.ce_flags.
446 . Reduced the size of zend_class_entry by sharing the same memory space
447 by different information for internal and user classes.
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
448 See zend_class_entry.info union.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
449 . Reduced size of temp_variable.
13342af Prep news file for 5.2
Ilia Alshanetsky authored
450
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
451 - Improved Zend Engine - performance tweaks and optimizations: (Dmitry)
c270347 MFH: Arithmetic speedup. Inlined most probable code-paths for arithmetic...
Dmitry Stogov authored
452 . Inlined most probable code-paths for arithmetic operations directly into
7402853 @johannes - Minor NEWS cleanup
johannes authored
453 executor.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
454 . Eliminated unnecessary iterations during request startup/shutdown.
455 . Changed $GLOBALS into a JIT autoglobal, so it's initialized only if used.
456 (this may affect opcode caches!)
457 . Improved performance of @ (silence) operator.
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
458 . Simplified string offset reading. Given $str="abc" then $str[1][0] is now
459 a legal construct.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
460 . Added caches to eliminate repeatable run-time bindings of functions,
461 classes, constants, methods and properties.
462 . Added concept of interned strings. All strings constants known at compile
463 time are allocated in a single copy and never changed.
464 . ZEND_RECV now always has IS_CV as its result.
465 . ZEND_CATCH now has to be used only with constant class names.
466 . ZEND_FETCH_DIM_? may fetch array and dimension operands in different order.
46ef2ed Some grammar tweaks
Christopher Jones authored
467 . Simplified ZEND_FETCH_*_R operations. They can't be used with the
468 EXT_TYPE_UNUSED flag any more. This is a very rare and useless case.
469 ZEND_FREE might be required after them instead.
470 . Split ZEND_RETURN into two new instructions ZEND_RETURN and
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
471 ZEND_RETURN_BY_REF.
472 . Optimized access to global constants using values with pre-calculated
46ef2ed Some grammar tweaks
Christopher Jones authored
473 hash_values from the literals table.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
474 . Optimized access to static properties using executor specialization.
475 A constant class name may be used as a direct operand of ZEND_FETCH_*
476 instruction without previous ZEND_FETCH_CLASS.
46ef2ed Some grammar tweaks
Christopher Jones authored
477 . zend_stack and zend_ptr_stack allocation is delayed until actual usage.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
478
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
479 - Other improvements to Zend Engine:
480 . Added an optimization which saves memory and emalloc/efree calls for empty
481 HashTables. (Stas, Dmitry)
482 . Added ability to reset user opcode handlers (Yoram).
483 . Changed the structure of op_array.opcodes. The constant values are moved from
484 opcode operands into a separate literal table. (Dmitry)
485 . Fixed (disabled) inline-caching for ZEND_OVERLOADED_FUNCTION methods.
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
486 (Dmitry)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
487
488 - Improved core functions:
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
489 . Enforce an extended class' __construct arguments to match the
490 abstract constructor in the base class.
491 . Disallow reusing superglobal names as parameter names.
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
492 . Added optional argument to debug_backtrace() and debug_print_backtrace()
493 to limit the amount of stack frames returned. (Sebastian, Patrick)
494 . Added hex2bin() function. (Scott)
495 . number_format() no longer truncates multibyte decimal points and thousand
496 separators to the first byte. FR #53457. (Adam)
497 . Added support for object references in recursive serialize() calls.
498 FR #36424. (Mike)
499 . Added support for SORT_NATURAL and SORT_FLAG_CASE in array
500 sort functions (sort, rsort, ksort, krsort, asort, arsort and
501 array_multisort). FR#55158 (Arpad)
502 . Added stream metadata API support and stream_metadata() stream class
503 handler. (Stas)
504 . User wrappers can now define a stream_truncate() method that responds
505 to truncation, e.g. through ftruncate(). FR #53888. (Gustavo)
506 . Improved unserialize() performance.
507 (galaxy dot mipt at gmail dot com, Kalle)
508 . Changed array_combine() to return empty array instead of FALSE when both
509 parameter arrays are empty. FR #34857. (joel.perras@gmail.com)
510 . Fixed bug #61095 (Incorect lexing of 0x00*+<NUM>). (Etienne)
511 . Fixed bug #60965 (Buffer overflow on htmlspecialchars/entities with
512 $double=false). (Gustavo)
513 . Fixed bug #60895 (Possible invalid handler usage in windows random
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
514 functions). (Pierre)
515 . Fixed bug #60879 (unserialize() Does not invoke __wakeup() on object).
516 (Pierre, Steve)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
517 . Fixed bug #60825 (Segfault when running symfony 2 tests).
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
518 (Dmitry, Laruence)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
519 . Fixed bug #60627 (httpd.worker segfault on startup with php_value).
520 . Fixed bug #60613 (Segmentation fault with $cls->{expr}() syntax). (Dmitry)
521 . Fixed bug #60611 (Segmentation fault with Cls::{expr}() syntax). (Laruence)
522 (Laruence)
523 . Fixed bug #60558 (Invalid read and writes). (Laruence)
524 . Fixed bug #60444 (Segmentation fault with include & class extending).
525 (Laruence, Dmitry).
526 . Fixed bug #60362 (non-existent sub-sub keys should not have values).
527 (Laruence, alan_k, Stas)
528 . Fixed bug #60350 (No string escape code for ESC (ascii 27), normally \e).
529 (php at mickweiss dot com)
530 . Fixed bug #60321 (ob_get_status(true) no longer returns an array when
531 buffer is empty). (Pierrick)
532 . Fixed bug #60282 (Segfault when using ob_gzhandler() with open buffers).
533 (Laruence)
534 . Fixed bug #60240 (invalid read/writes when unserializing specially crafted
535 strings). (Mike)
536 . Fixed bug #60227 (header() cannot detect the multi-line header with
537 CR(0x0D)). (rui)
538 . Fixed bug #60174 (Notice when array in method prototype error).
539 (Laruence)
540 . Fixed bug #60169 (Conjunction of ternary and list crashes PHP).
541 (Laruence)
542 . Fixed bug #60038 (SIGALRM cause segfault in php_error_cb). (Laruence)
543 (klightspeed at netspace dot net dot au)
544 . Fixed bug #55871 (Interruption in substr_replace()). (Stas)
545 . Fixed bug #55801 (Behavior of unserialize has changed). (Mike)
546 . Fixed bug #55758 (Digest Authenticate missed in 5.4) . (Laruence)
547 . Fixed bug #55748 (multiple NULL Pointer Dereference with zend_strndup())
548 (CVE-2011-4153). (Stas)
549 . Fixed bug #55124 (recursive mkdir fails with current (dot) directory in path).
550 (Pierre)
551 . Fixed bug #55084 (Function registered by header_register_callback is
552 called only once per process). (Hannes)
553 . Implement FR #54514 (Get php binary path during script execution).
554 (Laruence)
555 . Fixed bug #52211 (iconv() returns part of string on error). (Felipe)
556 . Fixed bug #51860 (Include fails with toplevel symlink to /). (Dmitry)
557
558 - Improved generic SAPI support:
559 . Added $_SERVER['REQUEST_TIME_FLOAT'] to include microsecond precision.
560 (Patrick)
561 . Added header_register_callback() which is invoked immediately
562 prior to the sending of headers and after default headers have
563 been added. (Scott)
564 . Added http_response_code() function. FR #52555. (Paul Dragoonis, Kalle)
565 . Fixed bug #55500 (Corrupted $_FILES indices lead to security concern).
403110f @pierrejoye - add CVE
pierrejoye authored
566 (CVE-2012-1172). (Stas)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
567 . Fixed bug #54374 (Insufficient validating of upload name leading to
403110f @pierrejoye - add CVE
pierrejoye authored
568 corrupted $_FILES indices). (CVE-2012-1172). (Stas, lekensteyn at gmail dot com)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
569
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
570 - Improved CLI SAPI:
571 . Added built-in web server that is intended for testing purpose.
572 (Moriyoshi, Laruence, and fixes by Pierre, Derick, Arpad,
573 chobieee at gmail dot com)
46ef2ed Some grammar tweaks
Christopher Jones authored
574 . Added command line option --rz <name> which shows information of the
2c6b2f6 - Forgot to commit these.
Moriyoshi Koizumi authored
575 named Zend extension. (Johannes)
576 . Interactive readline shell improvements: (Johannes)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
577 . Added "cli.pager" php.ini setting to set a pager for output.
578 . Added "cli.prompt" php.ini setting to configure the shell prompt.
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
579 . Added shortcut #inisetting=value to change php.ini settings at run-time.
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
580 . Changed shell not to terminate on fatal errors.
6c734a6 @johannes - Implement FR#53878 Interactive shell should work with shared readline ...
johannes authored
581 . Interactive shell works with shared readline extension. FR #53878.
13342af Prep news file for 5.2
Ilia Alshanetsky authored
582
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
583 - Improved CGI/FastCGI SAPI: (Dmitry)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
584 . Added apache compatible functions: apache_child_terminate(),
585 getallheaders(), apache_request_headers() and apache_response_headers()
586 . Improved performance of FastCGI request parsing.
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
587 . Fixed reinitialization of SAPI callbacks after php_module_startup().
588 (Dmitry)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
589
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
590 - Improved PHP-FPM SAPI:
591 . Removed EXPERIMENTAL flag. (fat)
592 . Fixed bug #60659 (FPM does not clear auth_user on request accept).
593 (bonbons at linux-vserver dot org)
594
595 - Improved Litespeed SAPI:
596 . Fixed bug #55769 (Make Fails with "Missing Separator" error). (Adam)
597
8ece8ad - Added the + modifier to parseFromFormat to allow trailing text in the
Derick Rethans authored
598 - Improved Date extension:
599 . Added the + modifier to parseFromFormat to allow trailing text in the
600 string to parse without throwing an error. (Stas, Derick)
601
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
602 - Improved DBA extension:
603 . Added Tokyo Cabinet abstract DB support. (Michael Maclean)
604 . Added Berkeley DB 5 support. (Johannes, Chris Jones)
605
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
606 - Improved DOM extension:
607 . Added the ability to pass options to loadHTML (Chregu, fxmulder at gmail dot com)
608
9a1568c @LawnGnome Implemented FR #53407 (make scandir()'s directory sorting optional).
LawnGnome authored
609 - Improved filesystem functions:
610 . scandir() now accepts SCANDIR_SORT_NONE as a possible sorting_order value.
611 FR #53407. (Adam)
612
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
613 - Improved HASH extension:
614 . Added Jenkins's one-at-a-time hash support. (Martin Jansen)
615 . Added FNV-1 hash support. (Michael Maclean)
616 . Made Adler32 algorithm faster. FR #53213. (zavasek at yandex dot ru)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
617 . Removed Salsa10/Salsa20, which are actually stream ciphers (Mike)
618 . Fixed bug #60221 (Tiger hash output byte order) (Mike)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
619
d903948 Add Spoofchecker to intl extension.
Scott MacVicar authored
620 - Improved intl extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
621 . Added Spoofchecker class, allows checking for visibly confusable characters and
d903948 Add Spoofchecker to intl extension.
Scott MacVicar authored
622 other security issues. (Scott)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
623 . Added Transliterator class, allowing transliteration of strings.
624 (Gustavo)
625 . Added support for UTS #46. (Gustavo)
626 . Fixed build on Fedora 15 / Ubuntu 11. (Hannes)
627 . Fixed bug #55562 (grapheme_substr() returns false on big length). (Stas)
d903948 Add Spoofchecker to intl extension.
Scott MacVicar authored
628
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
629 - Improved JSON extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
630 . Added new json_encode() option JSON_UNESCAPED_UNICODE. FR #53946.
631 (Alexander, Gwynne)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
632 . Added JsonSerializable interface. (Sara)
633 . Added JSON_BIGINT_AS_STRING, extended json_decode() sig with $options.
634 (Sara)
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
635 . Added support for JSON_NUMERIC_CHECK option in json_encode() that converts
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
636 numeric strings to integers. (Ilia)
637 . Added new json_encode() option JSON_UNESCAPED_SLASHES. FR #49366. (Adam)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
638 . Added new json_encode() option JSON_PRETTY_PRINT. FR #44331. (Adam)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
639
640 - Improved LDAP extension:
641 . Added paged results support. FR #42060. (ando@OpenLDAP.org,
642 iarenuno@eteo.mondragon.edu, jeanseb@au-fil-du.net, remy.saissy@gmail.com)
b096a5d Fixed bug #37313 (sigemptyset() used without including <signal.h>). (jdo...
Dmitry Stogov authored
643
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
644 - Improved mbstring extension:
645 . Added Shift_JIS/UTF-8 Emoji (pictograms) support. (Rui)
646 . Added JIS X0213:2004 (Shift_JIS-2004, EUC-JP-2004, ISO-2022-JP-2004)
647 support. (Rui)
648 . Ill-formed UTF-8 check for security enhancements. (Rui)
649 . Added MacJapanese (Shift_JIS) and gb18030 encoding support. (Rui)
650 . Added encode/decode in hex format to mb_[en|de]code_numericentity(). (Rui)
651 . Added user JIS X0213:2004 (Shift_JIS-2004, EUC-JP-2004, ISO-2022-JP-2004)
652 support. (Rui)
653 . Added the user defined area for CP936 and CP950 (Rui).
654 . Fixed bug #60306 (Characters lost while converting from cp936 to utf8).
655 (Laruence)
656
bbc898e - Keep extension order alphabetically
Derick Rethans authored
657 - Improved MySQL extensions:
658 . MySQL: Deprecated mysql_list_dbs(). FR #50667. (Andrey)
659 . mysqlnd: Added named pipes support. FR #48082. (Andrey)
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
660 . MySQLi: Added iterator support in MySQLi. mysqli_result implements
bbc898e - Keep extension order alphabetically
Derick Rethans authored
661 Traversable. (Andrey, Johannes)
662 . PDO_mysql: Removed support for linking with MySQL client libraries older
663 than 4.1. (Johannes)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
664 . ext/mysql, mysqli and pdo_mysql now use mysqlnd by default. (Johannes)
665 . Fixed bug #55473 (mysql_pconnect leaks file descriptors on reconnect).
666 (Andrey, Laruence)
667 . Fixed bug #55653 (PS crash with libmysql when binding same variable as
668 param and out). (Laruence)
bbc898e - Keep extension order alphabetically
Derick Rethans authored
669
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
670 - Improved OpenSSL extension:
671 . Added AES support. FR #48632. (yonas dot y at gmail dot com, Pierre)
30f19bd Allow management of your own padding in openssl_encrypt/decrypt.
Scott MacVicar authored
672 . Added no padding option to openssl_encrypt()/openssl_decrypt(). (Scott)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
673 . Use php's implementation for Windows Crypto API in
674 openssl_random_pseudo_bytes. (Pierre)
675 . On error in openssl_random_pseudo_bytes() made sure we set strong result
676 to false. (Scott)
677 . Fixed possible attack in SSL sockets with SSL 3.0 / TLS 1.0.
678 CVE-2011-3389. (Scott)
679 . Fixed bug #61124 (Crash when decoding an invalid base64 encoded string).
680 (me at ktamura dot com, Scott)
e0ded79 Rolling 5.1.0
Ilia Alshanetsky authored
681
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
682 - Improved PDO:
683 . Fixed PDO objects binary incompatibility. (Dmitry)
684
685 - PDO DBlib driver:
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
686 . Added nextRowset support.
687 . Fixed bug #50755 (PDO DBLIB Fails with OOM).
e0ded79 Rolling 5.1.0
Ilia Alshanetsky authored
688
46ff954 Added support for "extra" parameter for PGNotify().
Ilia Alshanetsky authored
689 - Improved PostgreSQL extension:
690 . Added support for "extra" parameter for PGNotify().
691 (r dot i dot k at free dot fr, Ilia)
692
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
693 - Improved PCRE extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
694 . Changed third parameter of preg_match_all() to optional. FR #53238. (Adam)
695
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
696 - Improved Readline extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
697 . Fixed bug #54450 (Enable callback support when built against libedit).
698 (fedora at famillecollet dot com, Hannes)
699
700 - Improved Reflection extension:
701 . Added ReflectionClass::newInstanceWithoutConstructor() to create a new
702 instance of a class without invoking its constructor. FR #55490.
703 (Sebastian)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
704 . Added ReflectionExtension::isTemporary() and
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
705 ReflectionExtension::isPersistent() methods. (Johannes)
706 . Added ReflectionZendExtension class. (Johannes)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
707 . Added ReflectionClass::isCloneable(). (Felipe)
e0ded79 Rolling 5.1.0
Ilia Alshanetsky authored
708
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
709 - Improved Session extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
710 . Expose session status via new function, session_status (FR #52982) (Arpad)
711 . Added support for object-oriented session handlers. (Arpad)
55bb6fd - NEWS cleanup, please do not mess it anymore :)
Jani Taskinen authored
712 . Added support for storing upload progress feedback in session data. (Arnaud)
713 . Changed session.entropy_file to default to /dev/urandom or /dev/arandom if
714 either is present at compile time. (Rasmus)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
715 . Fixed bug #60860 (session.save_handler=user without defined function core
716 dumps). (Felipe)
717 . Implement FR #60551 (session_set_save_handler should support a core's
718 session handler interface). (Arpad)
719 . Fixed bug #60640 (invalid return values). (Arpad)
014a49f @andigutmans - Go with Beta 1
andigutmans authored
720
68c8c34 expand SNMP section
Boris Lytochkin authored
721 - Improved SNMP extension (Boris Lytochkin):
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
722 . Added OO API. FR #53594 (php-snmp rewrite).
5e82e33 Improved SNMP extension. FR #53594
Boris Lytochkin authored
723 . Sanitized return values of existing functions. Now it returns FALSE on
dc781e2 - Improved SNMP extension:
Boris Lytochkin authored
724 failure.
725 . Allow ~infinite OIDs in GET/GETNEXT/SET queries. Autochunk them to max_oids
726 upon request.
727 . Introducing unit tests for extension with ~full coverage.
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
728 . IPv6 support. (FR #42918)
cf7724d fix FR #54502: allow user to change OID value output mode when SNMP_VALU...
Boris Lytochkin authored
729 . Way of representing OID value can now be changed when SNMP_VALUE_OBJECT
730 is used for value output mode. Use or'ed SNMP_VALUE_LIBRARY(default if
731 not specified) or SNMP_VALUE_PLAIN. (FR #54502)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
732 . Fixed bug #60749 (SNMP module should not strip non-standard SNMP port
733 from hostname). (Boris Lytochkin)
734 . Fixed bug #60585 (php build fails with USE flag snmp when IPv6 support
735 is disabled). (Boris Lytochkin)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
736 . Fixed bug #53862 (snmp_set_oid_output_format does not allow returning to default)
737 . Fixed bug #46065 (snmp_set_quick_print() persists between requests)
738 . Fixed bug #45893 (Snmp buffer limited to 2048 char)
739 . Fixed bug #44193 (snmp v3 noAuthNoPriv doesn't work)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
740
741 - Improved SOAP extension:
742 . Added new SoapClient option "keep_alive". FR #60329. (Pierrick)
743 . Fixed basic HTTP authentication for WSDL sub requests. (Dmitry)
744
745 - Improved SPL extension:
746 . Added RegexIterator::getRegex() method. (Joshua Thijssen)
747 . Added SplObjectStorage::getHash() hook. (Etienne)
748 . Added CallbackFilterIterator and RecursiveCallbackFilterIterator. (Arnaud)
749 . Added missing class_uses(..) as pointed out by #55266 (Stefan)
750 . Immediately reject wrong usages of directories under Spl(Temp)FileObject
751 and friends. (Etienne, Pierre)
752 . FilesystemIterator, GlobIterator and (Recursive)DirectoryIterator now use
753 the default stream context. (Hannes)
754 . Fixed bug #60201 (SplFileObject::setCsvControl does not expose third
755 argument via Reflection). (Peter)
756 . Fixed bug #55287 (spl_classes() not includes CallbackFilter classes)
757 (sasezaki at gmail dot com, salathe)
758
759 - Improved Sysvshm extension:
760 . Fixed bug #55750 (memory copy issue in sysvshm extension).
761 (Ilia, jeffhuang9999 at gmail dot com)
762
763 - Improved Tidy extension:
764 . Fixed bug #54682 (Tidy::diagnose() NULL pointer dereference).
765 (Maksymilian Arciemowicz, Felipe)
766
767 - Improved Tokenizer extension:
768 . Fixed bug #54089 (token_get_all with regards to __halt_compiler is
769 not binary safe). (Nikita Popov)
770
771 - Improved XSL extension:
772 . Added XsltProcessor::setSecurityPrefs($options) and getSecurityPrefs() to
773 define forbidden operations within XSLT stylesheets, default is not to
774 enable write operations from XSLT. Bug #54446 (Chregu, Nicolas Gregoire)
775 . XSL doesn't stop transformation anymore, if a PHP function can't be called
776 (Christian)
777
778 - Improved ZLIB extension:
779 . Re-implemented non-file related functionality. (Mike)
780 . Fixed bug #55544 (ob_gzhandler always conflicts with zlib.output_compression).
781 (Mike)
5e82e33 Improved SNMP extension. FR #53594
Boris Lytochkin authored
782
dfce6bf @smalyshev update NEWS
smalyshev authored
783 14 Jun 2012, PHP 5.3.14
784
785 - CLI SAPI:
786 . Fixed bug #61546 (functions related to current script failed when chdir()
787 in cli sapi). (Laruence, reeze.xia@gmail.com)
788
789 - CURL:
790 . Fixed bug #61948 (CURLOPT_COOKIEFILE '' raises open_basedir restriction).
791 (Laruence)
792
793 - COM:
794 . Fixed bug #62146 com_dotnet cannot be built shared. (Johannes)
795
796 - Core:
797 . Fixed CVE-2012-2143. (Solar Designer)
798 . Fixed missing bound check in iptcparse(). (chris at chiappa.net)
799 . Fixed bug #62373 (serialize() generates wrong reference to the object).
800 (Moriyoshi)
801 . Fixed bug #62005 (unexpected behavior when incrementally assigning to a
802 member of a null object). (Laruence)
803 . Fixed bug #61991 (long overflow in realpath_cache_get()). (Anatoliy)
804 . Fixed bug #61764 ('I' unpacks n as signed if n > 2^31-1 on LP64). (Gustavo)
805 . Fixed bug #61730 (Segfault from array_walk modifying an array passed by
806 reference). (Laruence)
807 . Fixed bug #61713 (Logic error in charset detection for htmlentities).
808 (Anatoliy)
809 . Fixed bug #54197 ([PATH=] sections incompatibility with user_ini.filename
810 set to null). (Anatoliy)
811 . Changed php://fd to be available only for CLI.
812
813 - Fileinfo:
814 . Fixed bug #61812 (Uninitialised value used in libmagic).
815 (Laruence, Gustavo)
816
817 - Iconv extension:
818 . Fixed a bug that iconv extension fails to link to the correct library
819 when another extension makes use of a library that links to the iconv
820 library. See https://bugs.gentoo.org/show_bug.cgi?id=364139 for detail.
821 (Moriyoshi)
822
823 - Intl:
824 . Fixed bug #62082 (Memory corruption in internal function
825 get_icu_disp_value_src_php()). (Gustavo)
826
827 - JSON
828 . Fixed bug #61537 (json_encode() incorrectly truncates/discards
829 information). (Adam)
830
831 - PDO:
832 . Fixed bug #61755 (A parsing bug in the prepared statements can lead to
833 access violations). (Johannes)
834
835 - Phar:
836 . Fix bug #61065 (Secunia SA44335). (Rasmus)
837
838 - Streams:
839 . Fixed bug #61961 (file_get_contents leaks when access empty file with
840 maxlen set). (Reeze)
841
e118a07 @smalyshev merge 5.3 entries
smalyshev authored
842 08 May 2012, PHP 5.3.13
843 - CGI
844 . Improve fix for PHP-CGI query string parameter vulnerability, CVE-2012-2311.
845 (Stas)
846
847 03 May 2012, PHP 5.3.12
848 - Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823. (Rasmus)
849
e25eea8 @smalyshev merge 5.3.11 stuff
smalyshev authored
850 26 Apr 2012, PHP 5.3.11
851
852 - Core:
853 . Fixed bug #61605 (header_remove() does not remove all headers).
854 (Laruence)
855 . Fixed bug #61541 (Segfault when using ob_* in output_callback).
856 (reeze.xia@gmail.com)
857 . Fixed bug #61273 (call_user_func_array with more than 16333 arguments
858 leaks / crashes). (Laruence)
859 . Fixed bug #61165 (Segfault - strip_tags()). (Laruence)
860 . Improved max_input_vars directive to check nested variables (Dmitry).
861 . Fixed bug #61095 (Incorect lexing of 0x00*+<NUM>). (Etienne)
862 . Fixed bug #61087 (Memory leak in parse_ini_file when specifying
863 invalid scanner mode). (Nikic, Laruence)
864 . Fixed bug #61072 (Memory leak when restoring an exception handler).
865 (Nikic, Laruence)
866 . Fixed bug #61058 (array_fill leaks if start index is PHP_INT_MAX).
867 (Laruence)
868 . Fixed bug #61043 (Regression in magic_quotes_gpc fix for CVE-2012-0831).
869 (Ondřej Surý)
870 . Fixed bug #61000 (Exceeding max nesting level doesn't delete numerical
871 vars). (Laruence)
872 . Fixed bug #60895 (Possible invalid handler usage in windows random
873 functions). (Pierre)
874 . Fixed bug #60825 (Segfault when running symfony 2 tests).
875 (Dmitry, Laruence)
876 . Fixed bug #60801 (strpbrk() mishandles NUL byte). (Adam)
877 . Fixed bug #60569 (Nullbyte truncates Exception $message). (Ilia)
878 . Fixed bug #60227 (header() cannot detect the multi-line header with CR).
879 (rui, Gustavo)
880 . Fixed bug #60222 (time_nanosleep() does validate input params). (Ilia)
881 . Fixed bug #54374 (Insufficient validating of upload name leading to
882 corrupted $_FILES indices). (CVE-2012-1172). (Stas, lekensteyn at
883 gmail dot com, Pierre)
884 . Fixed bug #52719 (array_walk_recursive crashes if third param of the
885 function is by reference). (Nikita Popov)
886 . Fixed bug #51860 (Include fails with toplevel symlink to /). (Dmitry)
887
888 - DOM
889 . Added debug info handler to DOM objects. (Gustavo, Joey Smith)
890
891 - FPM
892 . Fixed bug #61430 (Transposed memset() params in sapi/fpm/fpm/fpm_shm.c).
893 (michaelhood at gmail dot com, Ilia)
894
895 - Ibase
896 . Fixed bug #60947 (Segmentation fault while executing ibase_db_info).
897 (Ilia)
898
899 - Installation
900 . Fixed bug #61172 (Add Apache 2.4 support). (Chris Jones)
901
902 - Fileinfo
903 . Fixed bug #61173 (Unable to detect error from finfo constructor). (Gustavo)
904
905 - Firebird Database extension (ibase):
906 . Fixed bug #60802 (ibase_trans() gives segfault when passing params).
907
908 - Libxml:
909 . Fixed bug #61617 (Libxml tests failed(ht is already destroyed)).
910 (Laruence)
911 . Fixed bug #61367 (open_basedir bypass using libxml RSHUTDOWN).
912 (Tim Starling)
913
914 - mysqli
915 . Fixed bug #61003 (mysql_stat() require a valid connection). (Johannes).
916
917 - PDO_mysql
918 . Fixed bug #61207 (PDO::nextRowset() after a multi-statement query doesn't
919 always work). (Johannes)
920 . Fixed bug #61194 (PDO should export compression flag with myslqnd).
921 (Johannes)
922
923 - PDO_odbc
924 . Fixed bug #61212 (PDO ODBC Segfaults on SQL_SUCESS_WITH_INFO). (Ilia)
925
926 - PDO_pgsql
927 . Fixed bug #61267 (pdo_pgsql's PDO::exec() returns the number of SELECTed
928 rows on postgresql >= 9). (ben dot pineau at gmail dot com)
929
930 - PDO_Sqlite extension:
931 . Add createCollation support. (Damien)
932
933 - Phar:
934 . Fixed bug #61184 (Phar::webPhar() generates headers with trailing NUL
935 bytes). (Nikic)
936
937 - PHP-FPM SAPI:
938 . Fixed bug #60811 (php-fpm compilation problem). (rasmus)
939
940 - Readline:
941 . Fixed bug #61088 (Memory leak in readline_callback_handler_install).
942 (Nikic, Laruence)
943 . Add open_basedir checks to readline_write_history and readline_read_history.
944 (Rasmus, reported by Mateusz Goik)
945
946 - Reflection:
947 . Fixed bug #61388 (ReflectionObject:getProperties() issues invalid reads
948 when get_properties returns a hash table with (inaccessible) dynamic
949 numeric properties). (Gustavo)
950 . Fixed bug #60968 (Late static binding doesn't work with
951 ReflectionMethod::invokeArgs()). (Laruence)
952
953 - SOAP
954 . Fixed basic HTTP authentication for WSDL sub requests. (Dmitry)
955 . Fixed bug #60887 (SoapClient ignores user_agent option and sends no
956 User-Agent header). (carloschilazo at gmail dot com)
957 . Fixed bug #60842, #51775 (Chunked response parsing error when
958 chunksize length line is > 10 bytes). (Ilia)
959 . Fixed bug #49853 (Soap Client stream context header option ignored).
960 (Dmitry)
961
962 - SPL
963 . Fixed memory leak when calling SplFileInfo's constructor twice. (Felipe)
964 . Fixed bug #61418 (Segmentation fault when DirectoryIterator's or
965 FilesystemIterator's iterators are requested more than once without
966 having had its dtor callback called in between). (Gustavo)
967 . Fixed bug #61347 (inconsistent isset behavior of Arrayobject). (Laruence)
968 . Fixed bug #61326 (ArrayObject comparison). (Gustavo)
969
970 - SQLite3 extension:
971 . Add createCollation() method. (Brad Dewar)
972
973 - Session:
974 . Fixed bug #60860 (session.save_handler=user without defined function core
975 dumps). (Felipe)
976 . Fixed bug #60634 (Segmentation fault when trying to die() in
977 SessionHandler::write()). (Ilia)
978
979 - Streams:
980 . Fixed bug #61371 (stream_context_create() causes memory leaks on use
981 streams_socket_create). (Gustavo)
982 . Fixed bug #61253 (Wrappers opened with errors concurrency problem on ZTS).
983 (Gustavo)
984 . Fixed bug #61115 (stream related segfault on fatal error in
985 php_stream_context_link). (Gustavo)
986 . Fixed bug #60817 (stream_get_line() reads from stream even when there is
987 already sufficient data buffered). stream_get_line() now behaves more like
988 fgets(), as is documented. (Gustavo)
989 . Further fix for bug #60455 (stream_get_line misbehaves if EOF is not
990 detected together with the last read). (Gustavo)
991 . Fixed bug #60106 (stream_socket_server silently truncates long unix
992 socket paths). (Ilia)
993
994 - Tidy:
995 . Fixed bug #54682 (tidy null pointer dereference). (Tony, David Soria Parra)
996
997 - XMLRPC:
998 . Fixed bug #61264 (xmlrpc_parse_method_descriptions leaks temporary
999 variable). (Nikita Popov)
1000 . Fixed bug #61097 (Memory leak in xmlrpc functions copying zvals). (Nikic)
1001
1002 - Zlib:
1003 . Fixed bug #61139 (gzopen leaks when specifying invalid mode). (Nikic)
1004
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1005 02 Feb 2012, PHP 5.3.10
014a49f @andigutmans - Go with Beta 1
andigutmans authored
1006
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1007 - Core:
1008 . Fixed arbitrary remote code execution vulnerability reported by Stefan
1009 Esser, CVE-2012-0830. (Stas, Dmitry)
014a49f @andigutmans - Go with Beta 1
andigutmans authored
1010
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1011 10 Jan 2012, PHP 5.3.9
5956ba8 @smalyshev update NEWS
smalyshev authored
1012
748003b @smalyshev update NEWS
smalyshev authored
1013 - Core:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1014 . Added max_input_vars directive to prevent attacks based on hash collisions
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1015 (CVE-2011-4885) (Dmitry).
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1016 . Fixed bug #60205 (possible integer overflow in content_length). (Laruence)
1017 . Fixed bug #60139 (Anonymous functions create cycles not detected by the
1018 GC). (Dmitry)
1019 . Fixed bug #60138 (GC crash with referenced array in RecursiveArrayIterator)
1020 (Dmitry).
1021 . Fixed bug #60120 (proc_open's streams may hang with stdin/out/err when
1022 the data exceeds or is equal to 2048 bytes). (Pierre, Pascal Borreli)
1023 . Fixed bug #60099 (__halt_compiler() works in braced namespaces). (Felipe)
1024 . Fixed bug #60019 (Function time_nanosleep() is undefined on OS X). (Ilia)
1025 . Fixed bug #55874 (GCC does not provide __sync_fetch_and_add on some archs).
1026 (klightspeed at netspace dot net dot au)
1027 . Fixed bug #55798 (serialize followed by unserialize with numeric object
1028 prop. gives integer prop). (Gustavo)
1029 . Fixed bug #55749 (TOCTOU issue in getenv() on Windows builds). (Pierre)
1030 . Fixed bug #55707 (undefined reference to `__sync_fetch_and_add_4' on Linux
1031 parisc). (Felipe)
1032 . Fixed bug #55674 (fgetcsv & str_getcsv skip empty fields in some
1033 tab-separated records). (Laruence)
1034 . Fixed bug #55649 (Undefined function Bug()). (Laruence)
1035 . Fixed bug #55622 (memory corruption in parse_ini_string). (Pierre)
1036 . Fixed bug #55576 (Cannot conditionally move uploaded file without race
1037 condition). (Gustavo)
748003b @smalyshev update NEWS
smalyshev authored
1038 . Fixed bug #55510: $_FILES 'name' missing first character after upload.
1039 (Arpad)
1040 . Fixed bug #55509 (segfault on x86_64 using more than 2G memory). (Laruence)
1041 . Fixed bug #55504 (Content-Type header is not parsed correctly on
1042 HTTP POST request). (Hannes)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1043 . Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd argument to
1044 is_a and is_subclass_of). (alan_k)
1045 . Fixed bug #52461 (Incomplete doctype and missing xmlns).
748003b @smalyshev update NEWS
smalyshev authored
1046 (virsacer at web dot de, Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1047 . Fixed bug #55366 (keys lost when using substr_replace an array). (Arpad)
1048 . Fixed bug #55273 (base64_decode() with strict rejects whitespace after
1049 pad). (Ilia)
1050 . Fixed bug #52624 (tempnam() by-pass open_basedir with nonnexistent
1051 directory). (Felipe)
1052 . Fixed bug #50982 (incorrect assumption of PAGE_SIZE size). (Dmitry)
1053 . Fixed invalid free in call_user_method() function. (Felipe)
1054 . Fixed bug #43200 (Interface implementation / inheritence not possible in
1055 abstract classes). (Felipe)
1056
748003b @smalyshev update NEWS
smalyshev authored
1057
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1058 - BCmath:
1059 . Fixed bug #60377 (bcscale related crashes on 64bits platforms). (shm)
1060
1061 - Calendar:
1062 . Fixed bug #55797 (Integer overflow in SdnToGregorian leads to segfault (in
1063 optimized builds). (Gustavo)
1064
1065 - cURL:
1066 . Fixed bug #60439 (curl_copy_handle segfault when used with
1067 CURLOPT_PROGRESSFUNCTION). (Pierrick)
748003b @smalyshev update NEWS
smalyshev authored
1068 . Fixed bug #54798 (Segfault when CURLOPT_STDERR file pointer is closed
1069 before calling curl_exec). (Hannes)
1070 . Fixed issues were curl_copy_handle() would sometimes lose copied
1071 preferences. (Hannes)
1072
1073 - DateTime:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1074 . Fixed bug #60373 (Startup errors with log_errors on cause segfault).
1075 (Derick)
1076 . Fixed bug #60236 (TLA timezone dates are not converted properly from
1077 timestamp). (Derick)
1078 . Fixed bug #55253 (DateTime::add() and sub() result -1 hour on objects with
1079 time zone type 2). (Derick)
1080 . Fixed bug #54851 (DateTime::createFromFormat() doesn't interpret "D").
1081 (Derick)
1082 . Fixed bug #53502 (strtotime with timezone memory leak). (Derick)
1083 . Fixed bug #52062 (large timestamps with DateTime::getTimestamp and
1084 DateTime::setTimestamp). (Derick)
1085 . Fixed bug #51994 (date_parse_from_format is parsing invalid date using 'yz'
1086 format). (Derick)
1087 . Fixed bug #52113 (Seg fault while creating (by unserialization)
1088 DatePeriod). (Derick)
748003b @smalyshev update NEWS
smalyshev authored
1089 . Fixed bug #48476 (cloning extended DateTime class without calling
1090 parent::__constr crashed PHP). (Hannes)
1091
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1092 - EXIF:
1093 . Fixed bug #60150 (Integer overflow during the parsing of invalid exif
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1094 header). (CVE-2011-4566) (Stas, flolechaud at gmail dot com)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1095
1096 - Fileinfo:
1097 . Fixed bug #60094 (C++ comment fails in c89). (Laruence)
1098 . Fixed possible memory leak in finfo_open(). (Felipe)
1099 . Fixed memory leak when calling the Finfo constructor twice. (Felipe)
1100
1101 - Filter:
1102 . Fixed Bug #55478 (FILTER_VALIDATE_EMAIL fails with internationalized
1103 domain name addresses containing >1 -). (Ilia)
1104
1105 - FTP:
1106 . Fixed bug #60183 (out of sync ftp responses). (bram at ebskamp dot me,
1107 rasmus)
1108
1109 - Gd:
1110 . Fixed bug #60160 (imagefill() doesn't work correctly
1111 for small images). (Florian)
1112
1113 - Intl:
1114 . Fixed bug #60192 (SegFault when Collator not constructed
1115 properly). (Florian)
1116 . Fixed memory leak in several Intl locale functions. (Felipe)
1117
1118 - Json:
1119 . Fixed bug #55543 (json_encode() with JSON_NUMERIC_CHECK fails on objects
1120 with numeric string properties). (Ilia, dchurch at sciencelogic dot com)
1121
1122 - Mbstring:
1123 . Fixed possible crash in mb_ereg_search_init() using empty pattern. (Felipe)
1124
1125 - MS SQL:
1126 . Fixed bug #60267 (Compile failure with freetds 0.91). (Felipe)
1127
748003b @smalyshev update NEWS
smalyshev authored
1128 - MySQL:
1129 . Fixed bug #55550 (mysql.trace_mode miscounts result sets). (Johannes)
1130
1131 - MySQLi extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1132 . Fixed bug #55859 (mysqli->stat property access gives error). (Andrey)
748003b @smalyshev update NEWS
smalyshev authored
1133 . Fixed bug #55582 (mysqli_num_rows() returns always 0 for unbuffered, when
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1134 mysqlnd is used). (Andrey)
1135 . Fixed bug #55703 (PHP crash when calling mysqli_fetch_fields).
1136 (eran at zend dot com, Laruence)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1137
748003b @smalyshev update NEWS
smalyshev authored
1138 - mysqlnd
1139 . Fixed bug #55609 (mysqlnd cannot be built shared). (Johannes)
1140 . Fixed bug #55067 (MySQL doesn't support compression - wrong config option).
1141 (Andrey)
5956ba8 @smalyshev update NEWS
smalyshev authored
1142
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1143 - NSAPI SAPI:
1144 . Don't set $_SERVER['HTTPS'] on unsecure connection (bug #55403). (Uwe
1145 Schindler)
1146
1147 - OpenSSL:
1148 . Fixed bug #60279 (Fixed NULL pointer dereference in
1149 stream_socket_enable_crypto, case when ssl_handle of session_stream is not
1150 initialized.) (shm)
1151 . Fix segfault with older versions of OpenSSL. (Scott)
1152
1153 - Oracle Database extension (OCI8):
1154 . Fixed bug #59985 (show normal warning text for OCI_NO_DATA).
1155 (Chris Jones)
1156 . Increased maximum Oracle error message buffer length for new 11.2.0.3 size.
1157 (Chris Jones)
1158 . Improve internal initalization failure error messages. (Chris Jones)
1159
1160 - PDO
1161 . Fixed bug #55776 (PDORow to session bug). (Johannes)
1162
1163 - PDO Firebird:
1164 . Fixed bug #48877 ("bindValue" and "bindParam" do not work for PDO Firebird).
1165 (Mariuz)
1166 . Fixed bug #47415 (PDO_Firebird segfaults when passing lowercased column name to bindColumn).
1167 . Fixed bug #53280 (PDO_Firebird segfaults if query column count less than param count).
1168 (Mariuz)
1169
748003b @smalyshev update NEWS
smalyshev authored
1170 - PDO MySQL driver:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1171 . Fixed bug #60155 (pdo_mysql.default_socket ignored). (Johannes)
1172 . Fixed bug #55870 (PDO ignores all SSL parameters when used with mysql
1173 native driver). (Pierre)
1174 . Fixed bug #54158 (MYSQLND+PDO MySQL requires #define
1175 MYSQL_OPT_LOCAL_INFILE). (Andrey)
1176
1177 - PDO OCI driver:
1178 . Fixed bug #55768 (PDO_OCI can't resume Oracle session after it's been
1179 killed). (mikhail dot v dot gavrilov at gmail dot com, Chris Jones, Tony)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1180
748003b @smalyshev update NEWS
smalyshev authored
1181 - Phar:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1182 . Fixed bug #60261 (NULL pointer dereference in phar). (Felipe)
1183 . Fixed bug #60164 (Stubs of a specific length break phar_open_from_fp
1184 scanning for __HALT_COMPILER). (Ralph Schindler)
1185 . Fixed bug #53872 (internal corruption of phar). (Hannes)
1186 . Fixed bug #52013 (Unable to decompress files in a compressed phar). (Hannes)
1187
1188 - PHP-FPM SAPI:
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1189 . Dropped restriction of not setting the same value multiple times, the last
1190 one holds. (giovanni at giacobbi dot net, fat)
1191 . Added .phar to default authorized extensions. (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1192 . Fixed bug #60659 (FPM does not clear auth_user on request accept).
1193 (bonbons at linux-vserver dot org)
1194 . Fixed bug #60629 (memory corruption when web server closed the fcgi fd).
1195 (fat)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1196 . Enhance error log when the primary script can't be open. FR #60199. (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1197 . Fixed bug #60179 (php_flag and php_value does not work properly). (fat)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1198 . Fixed bug #55577 (status.html does not install). (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1199 . Fixed bug #55533 (The -d parameter doesn't work). (fat)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1200 . Fixed bug #55526 (Heartbeat causes a lot of unnecessary events). (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1201 . Fixed bug #55486 (status show BIG processes number). (fat)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1202 . Enhanced security by limiting access to user defined extensions.
1203 FR #55181. (fat)
1204 . Added process.max to control the number of process FPM can fork. FR #55166.
1205 (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1206 . Implemented FR #54577 (Enhanced status page with full status and details
1207 about each processes. Also provide a web page (status.html) for
1208 real-time FPM status. (fat)
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1209 . Lowered default value for Process Manager. FR #54098. (fat)
1210 . Implemented FR #52569 (Add the "ondemand" process-manager
1211 to allow zero children). (fat)
1212 . Added partial syslog support (on error_log only). FR #52052. (fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1213
1214 - Postgres:
1215 . Fixed bug #60244 (pg_fetch_* functions do not validate that row param
1216 is >0). (Ilia)
d6394e6 @yohgaki Add NEWS
yohgaki authored
1217 . Added PGSQL_LIBPQ_VERSION/PGSQL_LIBPQ_VERSION_STR constants. (Yasuo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1218
1219 - Reflection:
1220 . Fixed bug #60367 (Reflection and Late Static Binding). (Laruence)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1221
748003b @smalyshev update NEWS
smalyshev authored
1222 - Session:
1223 . Fixed bug #55267 (session_regenerate_id fails after header sent). (Hannes)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1224
748003b @smalyshev update NEWS
smalyshev authored
1225 - SimpleXML:
1226 . Reverted the SimpleXML->query() behaviour to returning empty arrays
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1227 instead of false when no nodes are found as it was since 5.3.3
748003b @smalyshev update NEWS
smalyshev authored
1228 (bug #48601). (chregu, rrichards)
622412d @smalyshev implement the solution for isset/string offsets, fix bug #60362
smalyshev authored
1229
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1230 - SOAP
1231 . Fixed bug #54911 (Access to a undefined member in inherit SoapClient may
1232 cause Segmentation Fault). (Dmitry)
1233 . Fixed bug #48216 (PHP Fatal error: SOAP-ERROR: Parsing WSDL:
1234 Extra content at the end of the doc, when server uses chunked transfer
1235 encoding with spaces after chunk size). (Dmitry)
1236 . Fixed bug #44686 (SOAP-ERROR: Parsing WSDL with references). (Dmitry)
1237
1238 - Sockets:
1239 . Fixed bug #60048 (sa_len a #define on IRIX). (china at thewrittenword dot
1240 com)
1241
1242 - SPL:
1243 . Fixed bug #60082 (Crash in ArrayObject() when using recursive references).
1244 (Tony)
1245 . Fixed bug #55807 (Wrong value for splFileObject::SKIP_EMPTY).
1246 (jgotti at modedemploi dot fr, Hannes)
1247 . Fixed bug #54304 (RegexIterator::accept() doesn't work with scalar values).
1248 (Hannes)
1249
1250 - Streams:
1251 . Fixed bug #60455 (stream_get_line misbehaves if EOF is not detected together
1252 with the last read). (Gustavo)
1253
1254 - Tidy:
1255 . Fixed bug #54682 (Tidy::diagnose() NULL pointer dereference).
1256 (Maksymilian Arciemowicz, Felipe)
1257
1258 - XSL:
1259 . Added xsl.security_prefs ini option to define forbidden operations within
1260 XSLT stylesheets, default is not to enable write operations. This option
1261 won't be in 5.4, since there's a new method. Fixes Bug #54446. (Chregu,
1262 Nicolas Gregoire)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1263
748003b @smalyshev update NEWS
smalyshev authored
1264 23 Aug 2011, PHP 5.3.8
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1265
748003b @smalyshev update NEWS
smalyshev authored
1266 - Core:
1267 . Fixed bug #55439 (crypt() returns only the salt for MD5). (Stas)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1268
748003b @smalyshev update NEWS
smalyshev authored
1269 - OpenSSL:
1270 . Reverted a change in timeout handling restoring PHP 5.3.6 behavior,
1271 as the new behavior caused mysqlnd SSL connections to hang (#55283).
1272 (Pierre, Andrey, Johannes)
1273
1274 18 Aug 2011, PHP 5.3.7
1275 - Upgraded bundled SQLite to version 3.7.7.1. (Scott)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1276 - Upgraded bundled PCRE to version 8.12. (Scott)
014a49f @andigutmans - Go with Beta 1
andigutmans authored
1277
de52547 @smalyshev Integrate NEWS
smalyshev authored
1278 - Zend Engine:
748003b @smalyshev update NEWS
smalyshev authored
1279 . Fixed bug #55156 (ReflectionClass::getDocComment() returns comment even
1280 though the class has none). (Felipe)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1281 . Fixed bug #55007 (compiler fail after previous fail). (Felipe)
1282 . Fixed bug #54910 (Crash when calling call_user_func with unknown function
1283 name). (Dmitry)
1284 . Fixed bug #54804 (__halt_compiler and imported namespaces).
1285 (Pierrick, Felipe)
1286 . Fixed bug #54624 (class_alias and type hint). (Felipe)
1287 . Fixed bug #54585 (track_errors causes segfault). (Dmitry)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1288 . Fixed bug #54423 (classes from dl()'ed extensions are not destroyed).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1289 (Tony, Dmitry)
1290 . Fixed bug #54372 (Crash accessing global object itself returned from its
1291 __get() handle). (Dmitry)
1292 . Fixed bug #54367 (Use of closure causes problem in ArrayAccess). (Dmitry)
748003b @smalyshev update NEWS
smalyshev authored
1293 . Fixed bug #54358 (Closure, use and reference). (Dmitry)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1294 . Fixed bug #54262 (Crash when assigning value to a dimension in a non-array).
1295 (Dmitry)
748003b @smalyshev update NEWS
smalyshev authored
1296 . Fixed bug #54039 (use() of static variables in lambda functions can break
1297 staticness). (Dmitry)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1298
748003b @smalyshev update NEWS
smalyshev authored
1299 - Core
1300 . Updated crypt_blowfish to 1.2. ((CVE-2011-2483) (Solar Designer)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1301 . Removed warning when argument of is_a() or is_subclass_of() is not
748003b @smalyshev update NEWS
smalyshev authored
1302 a known class. (Stas)
1303 . Fixed crash in error_log(). (Felipe) Reported by Mateusz Kocielski.
de52547 @smalyshev Integrate NEWS
smalyshev authored
1304 . Added PHP_MANDIR constant telling where the manpages were installed into,
1305 and an --man-dir argument to php-config. (Hannes)
1306 . Fixed a crash inside dtor for error handling. (Ilia)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1307 . Fixed buffer overflow on overlog salt in crypt(). (Clément LECIGNE, Stas)
748003b @smalyshev update NEWS
smalyshev authored
1308 . Implemented FR #54459 (Range function accuracy). (Adam)
1309
1310 . Fixed bug #55399 (parse_url() incorrectly treats ':' as a valid path).
1311 (Ilia)
1312 . Fixed bug #55339 (Segfault with allow_call_time_pass_reference = Off).
1313 (Dmitry)
1314 . Fixed bug #55295 [NEW]: popen_ex on windows, fixed possible heap overflow
1315 (Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1316 . Fixed bug #55258 (Windows Version Detecting Error).
748003b @smalyshev update NEWS
smalyshev authored
1317 ( xiaomao5 at live dot com, Pierre)
1318 . Fixed bug #55187 (readlink returns weird characters when false result).
1319 (Pierre)
1320 . Fixed bug #55082 (var_export() doesn't escape properties properly).
1321 (Gustavo)
1322 . Fixed bug #55014 (Compile failure due to improper use of ctime_r()). (Ilia)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1323 . Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload
1324 filename). (Felipe) Reported by Krzysztof Kotowicz. (CVE-2011-2202)
1325 . Fixed bug #54935 php_win_err can lead to crash. (Pierre)
1326 . Fixed bug #54924 (assert.* is not being reset upon request shutdown). (Ilia)
1327 . Fixed bug #54895 (Fix compiling with older gcc version without need for
1328 membar_producer macro). (mhei at heimpold dot de)
748003b @smalyshev update NEWS
smalyshev authored
1329 . Fixed bug #54866 (incorrect accounting for realpath_cache_size).
1330 (Dustin Ward)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1331 . Fixed bug #54723 (getimagesize() doesn't check the full ico signature).
1332 (Scott)
748003b @smalyshev update NEWS
smalyshev authored
1333 . Fixed bug #54721 (Different Hashes on Windows, BSD and Linux on wrong Salt
1334 size). (Pierre, os at irj dot ru)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1335 . Fixed bug #54580 (get_browser() segmentation fault when browscap ini
1336 directive is set through php_admin_value). (Gustavo)
748003b @smalyshev update NEWS
smalyshev authored
1337 . Fixed bug #54332 (Crash in zend_mm_check_ptr // Heap corruption). (Dmitry)
1338 . Fixed bug #54305 (Crash in gc_remove_zval_from_buffer). (Dmitry)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1339 . Fixed bug #54238 (use-after-free in substr_replace()). (Stas)
1340 (CVE-2011-1148)
748003b @smalyshev update NEWS
smalyshev authored
1341 . Fixed bug #54204 (Can't set a value with a PATH section in php.ini).
1342 (Pierre)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1343 . Fixed bug #54180 (parse_url() incorrectly parses path when ? in fragment).
1344 (tomas dot brastavicius at quantum dot lt, Pierrick)
1345 . Fixed bug #54137 (file_get_contents POST request sends additional line
1346 break). (maurice-php at mertinkat dot net, Ilia)
1347 . Fixed bug #53848 (fgetcsv() ignores spaces at beginnings of fields). (Ilia)
1348 . Alternative fix for bug #52550, as applied to the round() function (signed
1349 overflow), as the old fix impacted the algorithm for numbers with magnitude
1350 smaller than 0. (Gustavo)
748003b @smalyshev update NEWS
smalyshev authored
1351 . Fixed bug #53727 (Inconsistent behavior of is_subclass_of with interfaces)
1352 (Ralph Schindler, Dmitry)
1353 . Fixed bug #52935 (call exit in user_error_handler cause stream relate
1354 core). (Gustavo)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1355 . Fixed bug #51997 (SEEK_CUR with 0 value, returns a warning). (Ilia)
748003b @smalyshev update NEWS
smalyshev authored
1356 . Fixed bug #50816 (Using class constants in array definition fails).
1357 (Pierrick, Dmitry)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1358 . Fixed bug #50363 (Invalid parsing in convert.quoted-printable-decode
1359 filter). (slusarz at curecanti dot org)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1360 . Fixed bug #48465 (sys_get_temp_dir() possibly inconsistent when using
de52547 @smalyshev Integrate NEWS
smalyshev authored
1361 TMPDIR on Windows). (Pierre)
1362
1363 - Apache2 Handler SAPI:
1364 . Fixed bug #54529 (SAPI crashes on apache_config.c:197).
1365 (hebergement at riastudio dot fr)
1366
1367 - CLI SAPI:
1368 . Fixed bug #52496 (Zero exit code on option parsing failure). (Ilia)
1369
748003b @smalyshev update NEWS
smalyshev authored
1370 - cURL extension:
de52547 @smalyshev Integrate NEWS
smalyshev authored
1371 . Added ini option curl.cainfo (support for custom cert db). (Pierre)
1372 . Added CURLINFO_REDIRECT_URL support. (Daniel Stenberg, Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1373 . Added support for CURLOPT_MAX_RECV_SPEED_LARGE and
de52547 @smalyshev Integrate NEWS
smalyshev authored
1374 CURLOPT_MAX_SEND_SPEED_LARGE. FR #51815. (Pierrick)
1375
1376 - DateTime extension:
748003b @smalyshev update NEWS
smalyshev authored
1377 . Fixed bug where the DateTime object got changed while using date_diff().
1378 (Derick)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1379 . Fixed bug #54340 (DateTime::add() method bug). (Adam)
1380 . Fixed bug #54316 (DateTime::createFromFormat does not handle trailing '|'
1381 correctly). (Adam)
1382 . Fixed bug #54283 (new DatePeriod(NULL) causes crash). (Felipe)
1383 . Fixed bug #51819 (Case discrepancy in timezone names cause Uncaught
1384 exception and fatal error). (Hannes)
1385
1386 - DBA extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1387 . Supress warning on non-existent file open with Berkeley DB 5.2. (Chris Jones)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1388 . Fixed bug #54242 (dba_insert returns true if key already exists). (Felipe)
1389
1390 - Exif extesion:
1391 . Fixed bug #54121 (error message format string typo). (Ilia)
1392
1393 - Fileinfo extension:
1394 . Fixed bug #54934 (Unresolved symbol strtoull in HP-UX 11.11). (Felipe)
1395
1396 - Filter extension:
1397 . Added 3rd parameter to filter_var_array() and filter_input_array()
1398 functions that allows disabling addition of empty elements. (Ilia)
1399 . Fixed bug #53037 (FILTER_FLAG_EMPTY_STRING_NULL is not implemented). (Ilia)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1400
de52547 @smalyshev Integrate NEWS
smalyshev authored
1401 - Interbase extension:
1402 . Fixed bug #54269 (Short exception message buffer causes crash). (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1403
de52547 @smalyshev Integrate NEWS
smalyshev authored
1404 - intl extension:
748003b @smalyshev update NEWS
smalyshev authored
1405 . Implemented FR #54561 (Expose ICU version info). (David Zuelke, Ilia)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1406 . Implemented FR #54540 (Allow loading of arbitrary resource bundles when
1407 fallback is disabled). (David Zuelke, Stas)
748003b @smalyshev update NEWS
smalyshev authored
1408
1409 - Imap extension:
1410 . Fixed bug #55313 (Number of retries not set when params specified).
1411 (kevin at kevinlocke dot name)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1412
1413 - json extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1414 . Fixed bug #54484 (Empty string in json_decode doesn't reset
de52547 @smalyshev Integrate NEWS
smalyshev authored
1415 json_last_error()). (Ilia)
1416
1417 - LDAP extension:
1418 . Fixed bug #53339 (Fails to build when compilng with gcc 4.5 and DSO
1419 libraries). (Clint Byrum, Raphael)
1420
1421 - libxml extension:
1422 . Fixed bug #54601 (Removing the doctype node segfaults). (Hannes)
1423 . Fixed bug #54440 (libxml extension ignores default context). (Gustavo)
1424
1425 - mbstring extension:
1426 . Fixed bug #54494 (mb_substr() mishandles UTF-32LE and UCS-2LE). (Gustavo)
1427
748003b @smalyshev update NEWS
smalyshev authored
1428 - MCrypt extension:
1429 . Change E_ERROR to E_WARNING in mcrypt_create_iv when not enough data
1430 has been fetched (Windows). (Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1431 . Fixed bug #55169 (mcrypt_create_iv always fails to gather sufficient random
748003b @smalyshev update NEWS
smalyshev authored
1432 data on Windows). (Pierre)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1433
1434 - mysqlnd
1435 . Fixed crash when using more than 28,000 bound parameters. Workaround is to
1436 set mysqlnd.net_cmd_buffer_size to at least 9000. (Andrey)
1437 . Fixed bug #54674 mysqlnd valid_sjis_(head|tail) is using invalid operator
1438 and range). (nihen at megabbs dot com, Andrey)
1439
748003b @smalyshev update NEWS
smalyshev authored
1440 - MySQLi extension:
1441 . Fixed bug #55283 (SSL options set by mysqli_ssl_set ignored for MySQLi
1442 persistent connections). (Andrey)
1443 . Fixed Bug #54221 (mysqli::get_warnings segfault when used in multi queries).
1444 (Andrey)
1445
1446 - OpenSSL extension:
1447 . openssl_encrypt()/openssl_decrypt() truncated keys of variable length
1448 ciphers to the OpenSSL default for the algorithm. (Scott)
1449 . On blocking SSL sockets respect the timeout option where possible.
1450 (Scott)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1451 . Fixed bug #54992 (Stream not closed and error not returned when SSL
1452 CN_match fails). (Gustavo, laird_ngrps at dodo dot com dot au)
1453
1454 - Oracle Database extension (OCI8):
1455 . Added oci_client_version() returning the runtime Oracle client library
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1456 version. (Chris Jones)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1457
748003b @smalyshev update NEWS
smalyshev authored
1458 . PCRE extension:
1459 . Increased the backtrack limit from 100000 to 1000000 (Rasmus)
1460
de52547 @smalyshev Integrate NEWS
smalyshev authored
1461 - PDO extension:
1462 . Fixed bug #54929 (Parse error with single quote in sql comment). (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1463 . Fixed bug #52104 (bindColumn creates Warning regardless of ATTR_ERRMODE
de52547 @smalyshev Integrate NEWS
smalyshev authored
1464 settings). (Ilia)
748003b @smalyshev update NEWS
smalyshev authored
1465
de52547 @smalyshev Integrate NEWS
smalyshev authored
1466 - PDO DBlib driver:
748003b @smalyshev update NEWS
smalyshev authored
1467 . Fixed bug #54329 (MSSql extension memory leak).
1468 (dotslashpok at gmail dot com)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1469 . Fixed bug #54167 (PDO_DBLIB returns null on SQLUNIQUE field).
1470 (mjh at hodginsmedia dot com, Felipe)
1471
748003b @smalyshev update NEWS
smalyshev authored
1472 - PDO ODBC driver:
1473 . Fixed data type usage in 64bit. (leocsilva at gmail dot com)
1474
de52547 @smalyshev Integrate NEWS
smalyshev authored
1475 - PDO MySQL driver:
1476 . Fixed bug #54644 (wrong pathes in php_pdo_mysql_int.h). (Tony, Johannes)
1477 . Fixed bug #53782 (foreach throws irrelevant exception). (Johannes, Andrey)
1478 . Implemented FR #48587 (MySQL PDO driver doesn't support SSL connections).
1479 (Rob)
1480
1481 - PDO PostgreSQL driver:
1482 . Fixed bug #54318 (Non-portable grep option used in PDO pgsql
1483 configuration). (bwalton at artsci dot utoronto dot ca)
1484
1485 - PDO Oracle driver:
1486 . Fixed bug #44989 (64bit Oracle RPMs still not supported by pdo-oci).
1487 (jbnance at tresgeek dot net)
1488
1489 - Phar extension:
1490 . Fixed bug #54395 (Phar::mount() crashes when calling with wrong parameters).
1491 (Felipe)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1492
1493 - PHP-FPM SAPI:
748003b @smalyshev update NEWS
smalyshev authored
1494 . Implemented FR #54499 (FPM ping and status_path should handle HEAD request). (fat)
1495 . Implemented FR #54172 (Overriding the pid file location of php-fpm). (fat)
1496 . Fixed missing Expires and Cache-Control headers for ping and status pages.
1497 (fat)
1498 . Fixed memory leak. (fat) Reported and fixed by Giovanni Giacobbi.
1499 . Fixed wrong value of log_level when invoking fpm with -tt. (fat)
61940e4 @smalyshev integrate 5.3 NEWS
smalyshev authored
1500 . Added xml format to the status page. (fat)
1501 . Removed timestamp in logs written by children processes. (fat)
1502 . Fixed exit at FPM startup on fpm_resources_prepare() errors. (fat)
1503 . Added master rlimit_files and rlimit_core in the global configuration
1504 settings. (fat)
1505 . Removed pid in debug logs written by chrildren processes. (fat)
1506 . Added custom access log (also added per request %CPU and memory
1507 mesurement). (fat)
1508 . Added a real scoreboard and several improvements to the status page. (fat)
1509
de52547 @smalyshev Integrate NEWS
smalyshev authored
1510 - Reflection extension:
1511 . Fixed bug #54347 (reflection_extension does not lowercase module function
1512 name). (Felipe, laruence at yahoo dot com dot cn)
1513
1514 - SOAP extension:
748003b @smalyshev update NEWS
smalyshev authored
1515 . Fixed bug #55323 (SoapClient segmentation fault when XSD_TYPEKIND_EXTENSION
1516 contains itself). (Dmitry)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1517 . Fixed bug #54312 (soap_version logic bug). (tom at samplonius dot org)
1518
1519 - Sockets extension:
1520 . Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
1521 Found by Mateusz Kocielski, Marek Kroemeke and Filip Palian. (Felipe)
1522 . Changed socket_set_block() and socket_set_nonblock() so they emit warnings
1523 on error. (Gustavo)
1524 . Fixed bug #51958 (socket_accept() fails on IPv6 server sockets). (Gustavo)
1525
1526 - SPL extension:
748003b @smalyshev update NEWS
smalyshev authored
1527 . Fixed bug #54971 (Wrong result when using iterator_to_array with use_keys
1528 on true). (Pierrick)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1529 . Fixed bug #54970 (SplFixedArray::setSize() isn't resizing). (Felipe)
1530 . Fixed bug #54609 (Certain implementation(s) of SplFixedArray cause hard
1531 crash). (Felipe)
1532 . Fixed bug #54384 (Dual iterators, GlobIterator, SplFileObject and
1533 SplTempFileObject crash when user-space classes don't call the paren
1534 constructor). (Gustavo)
1535 . Fixed bug #54292 (Wrong parameter causes crash in
1536 SplFileObject::__construct()). (Felipe)
1537 . Fixed bug #54291 (Crash iterating DirectoryIterator for dir name starting
1538 with \0). (Gustavo)
1539 . Fixed bug #54281 (Crash in non-initialized RecursiveIteratorIterator).
1540 (Felipe)
1541
1542 - Streams:
1543 . Fixed bug #54946 (stream_get_contents infinite loop). (Hannes)
3f3ae34 @LawnGnome Fix bug #55066 (Missing linebreak in NEWS).
LawnGnome authored
1544 . Fixed bug #54623 (Segfault when writing to a persistent socket after
1545 closing a copy of the socket). (Gustavo)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1546 . Fixed bug #54681 (addGlob() crashes on invalid flags). (Felipe)
1547
748003b @smalyshev update NEWS
smalyshev authored
1548
de52547 @smalyshev Integrate NEWS
smalyshev authored
1549 17 Mar 2011, PHP 5.3.6
1550 - Upgraded bundled Sqlite3 to version 3.7.4. (Ilia)
1551 - Upgraded bundled PCRE to version 8.11. (Ilia)
1552
1553 - Zend Engine:
1554 . Indirect reference to $this fails to resolve if direct $this is never used
1555 in method. (Scott)
1556 . Added options to debug backtrace functions. (Stas)
1557 . Fixed bug numerous crashes due to setlocale (crash on error, pcre, mysql
1558 etc.) on Windows in thread safe mode. (Pierre)
1559 . Fixed Bug #53971 (isset() and empty() produce apparently spurious runtime
1560 error). (Dmitry)
1561 . Fixed Bug #53958 (Closures can't 'use' shared variables by value and by
1562 reference). (Dmitry)
1563 . Fixed Bug #53629 (memory leak inside highlight_string()). (Hannes, Ilia)
1564 . Fixed Bug #51458 (Lack of error context with nested exceptions). (Stas)
1565 . Fixed Bug #47143 (Throwing an exception in a destructor causes a fatal
1566 error). (Stas)
1567 . Fixed bug #43512 (same parameter name can be used multiple times in
1568 method/function definition). (Felipe)
1569
1570 - Core:
1571 . Added ability to connect to HTTPS sites through proxy with basic
1572 authentication using stream_context/http/header/Proxy-Authorization (Dmitry)
1573 . Changed default value of ini directive serialize_precision from 100 to 17.
1574 (Gustavo)
1575 . Fixed bug #54055 (buffer overrun with high values for precision ini
1576 setting). (Gustavo)
1577 . Fixed bug #53959 (reflection data for fgetcsv out-of-date). (Richard)
1578 . Fixed bug #53577 (Regression introduced in 5.3.4 in open_basedir with a
1579 trailing forward slash). (lekensteyn at gmail dot com, Pierre)
1580 . Fixed bug #53682 (Fix compile on the VAX). (Rasmus, jklos)
1581 . Fixed bug #48484 (array_product() always returns 0 for an empty array).
1582 (Ilia)
1583 . Fixed bug #48607 (fwrite() doesn't check reply from ftp server before
1584 exiting). (Ilia)
1585
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1586
de52547 @smalyshev Integrate NEWS
smalyshev authored
1587 - Calendar extension:
1588 . Fixed bug #53574 (Integer overflow in SdnToJulian, sometimes leading to
1589 segfault). (Gustavo)
1590
1591 - DOM extension:
1592 . Implemented FR #39771 (Made DOMDocument::saveHTML accept an optional DOMNode
1593 like DOMDocument::saveXML). (Gustavo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1594
de52547 @smalyshev Integrate NEWS
smalyshev authored
1595 - DateTime extension:
1596 . Fixed a bug in DateTime->modify() where absolute date/time statements had
1597 no effect. (Derick)
1598 . Fixed bug #53729 (DatePeriod fails to initialize recurrences on 64bit
1599 big-endian systems). (Derick, rein@basefarm.no)
1600 . Fixed bug #52808 (Segfault when specifying interval as two dates). (Stas)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1601 . Fixed bug #52738 (Can't use new properties in class extended from
de52547 @smalyshev Integrate NEWS
smalyshev authored
1602 DateInterval). (Stas)
1603 . Fixed bug #52290 (setDate, setISODate, setTime works wrong when DateTime
1604 created from timestamp). (Stas)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1605 . Fixed bug #52063 (DateTime constructor's second argument doesn't have a
de52547 @smalyshev Integrate NEWS
smalyshev authored
1606 null default value). (Gustavo, Stas)
1607
1608 - Exif extension:
1609 . Fixed bug #54002 (crash on crafted tag, reported by Luca Carettoni).
1610 (Pierre) (CVE-2011-0708)
1611
1612 - Filter extension:
1613 . Fixed bug #53924 (FILTER_VALIDATE_URL doesn't validate port number).
1614 (Ilia, Gustavo)
1615 . Fixed bug #53150 (FILTER_FLAG_NO_RES_RANGE is missing some IP ranges).
1616 (Ilia)
1617 . Fixed bug #52209 (INPUT_ENV returns NULL for set variables (CLI)). (Ilia)
1618 . Fixed bug #47435 (FILTER_FLAG_NO_RES_RANGE don't work with ipv6).
1619 (Ilia, valli at icsurselva dot ch)
1620
1621 - Fileinfo extension:
1622 . Fixed bug #54016 (finfo_file() Cannot determine filetype in archives).
1623 (Hannes)
1624
1625 - Gettext
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1626 . Fixed bug #53837 (_() crashes on Windows when no LANG or LANGUAGE
de52547 @smalyshev Integrate NEWS
smalyshev authored
1627 environment variable are set). (Pierre)
1628
1629 - IMAP extension:
1630 . Implemented FR #53812 (get MIME headers of the part of the email). (Stas)
1631 . Fixed bug #53377 (imap_mime_header_decode() doesn't ignore \t during long
1632 MIME header unfolding). (Adam)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1633
de52547 @smalyshev Integrate NEWS
smalyshev authored
1634 - Intl extension:
1635 . Fixed bug #53612 (Segmentation fault when using cloned several intl
1636 objects). (Gustavo)
1637 . Fixed bug #53512 (NumberFormatter::setSymbol crash on bogus $attr values).
1638 (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1639 . Implemented clone functionality for number, date & message formatters.
de52547 @smalyshev Integrate NEWS
smalyshev authored
1640 (Stas).
1641
1642 - JSON extension:
1643 . Fixed bug #53963 (Ensure error_code is always set during some failed
1644 decodings). (Scott)
1645
1646 - mysqlnd
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1647 . Fixed problem with always returning 0 as num_rows for unbuffered sets.
de52547 @smalyshev Integrate NEWS
smalyshev authored
1648 (Andrey, Ulf)
1649
1650 - MySQL Improved extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1651 . Added 'db' and 'catalog' keys to the field fetching functions (FR #39847).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1652 (Kalle)
1653 . Fixed buggy counting of affected rows when using the text protocol. The
1654 collected statistics were wrong when multi_query was used with mysqlnd
1655 (Andrey)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1656 . Fixed bug #53795 (Connect Error from MySqli (mysqlnd) when using SSL).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1657 (Kalle)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1658 . Fixed bug #53503 (mysqli::query returns false after successful LOAD DATA
de52547 @smalyshev Integrate NEWS
smalyshev authored
1659 query). (Kalle, Andrey)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1660 . Fixed bug #53425 (mysqli_real_connect() ignores client flags when built to
de52547 @smalyshev Integrate NEWS
smalyshev authored
1661 call libmysql). (Kalle, tre-php-net at crushedhat dot com)
1662
1663 - OpenSSL extension:
1664 . Fixed stream_socket_enable_crypto() not honoring the socket timeout in
1665 server mode. (Gustavo)
1666 . Fixed bug #54060 (Memory leaks when openssl_encrypt). (Pierre)
1667 . Fixed bug #54061 (Memory leaks when openssl_decrypt). (Pierre)
1668 . Fixed bug #53592 (stream_socket_enable_crypto() busy-waits in client mode).
1669 (Gustavo)
1670 . Implemented FR #53447 (Cannot disable SessionTicket extension for servers
1671 that do not support it) by adding a no_ticket SSL context option. (Adam,
1672 Tony)
1673
1674 - PDO MySQL driver:
1675 . Fixed bug #53551 (PDOStatement execute segfaults for pdo_mysql driver).
1676 (Johannes)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1677 . Implemented FR #47802 (Support for setting character sets in DSN strings).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1678 (Kalle)
1679
1680 - PDO Oracle driver:
1681 . Fixed bug #39199 (Cannot load Lob data with more than 4000 bytes on
1682 ORACLE 10). (spatar at mail dot nnov dot ru)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1683
de52547 @smalyshev Integrate NEWS
smalyshev authored
1684 - PDO PostgreSQL driver:
1685 . Fixed bug #53517 (segfault in pgsql_stmt_execute() when postgres is down).
1686 (gyp at balabit dot hu)
1687
1688 - Phar extension:
1689 . Fixed bug #54247 (format-string vulnerability on Phar). (Felipe)
1690 (CVE-2011-1153)
1691 . Fixed bug #53541 (format string bug in ext/phar).
1692 (crrodriguez at opensuse dot org, Ilia)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1693 . Fixed bug #53898 (PHAR reports invalid error message, when the directory
de52547 @smalyshev Integrate NEWS
smalyshev authored
1694 does not exist). (Ilia)
1695
1696 - PHP-FPM SAPI:
1697 . Enforce security in the fastcgi protocol parsing.
1698 (ef-lists at email dotde)
1699 . Fixed bug #53777 (php-fpm log format now match php_error log format). (fat)
1700 . Fixed bug #53527 (php-fpm --test doesn't set a valuable return value). (fat)
1701 . Fixed bug #53434 (php-fpm slowlog now also logs the original request). (fat)
1702
1703 - Readline extension:
1704 . Fixed bug #53630 (Fixed parameter handling inside readline() function).
1705 (jo at feuersee dot de, Ilia)
1706
1707 - Reflection extension:
1708 . Fixed bug #53915 (ReflectionClass::getConstant(s) emits fatal error on
1709 constants with self::). (Gustavo)
1710
1711 - Shmop extension:
1712 . Fixed bug #54193 (Integer overflow in shmop_read()). (Felipe)
1713 Reported by Jose Carlos Norte <jose at eyeos dot org> (CVE-2011-1092)
1714
1715 - SNMP extension:
1716 . Fixed bug #51336 (snmprealwalk (snmp v1) does not handle end of OID tree
1717 correctly). (Boris Lytochkin)
1718
1719 - SOAP extension:
1720 . Fixed possible crash introduced by the NULL poisoning patch.
1721 (Mateusz Kocielski, Pierre)
1722
1723 - SPL extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1724 . Fixed memory leak in DirectoryIterator::getExtension() and
de52547 @smalyshev Integrate NEWS
smalyshev authored
1725 SplFileInfo::getExtension(). (Felipe)
1726 . Fixed bug #53914 (SPL assumes HAVE_GLOB is defined). (Chris Jones)
1727 . Fixed bug #53515 (property_exists incorrect on ArrayObject null and 0
1728 values). (Felipe)
1729 . Fixed bug #49608 (Using CachingIterator on DirectoryIterator instance
1730 segfaults). (Felipe)
1731
1732 . Added SplFileInfo::getExtension(). FR #48767. (Peter Cowburn)
1733
1734 - SQLite3 extension:
1735 . Fixed memory leaked introduced by the NULL poisoning patch.
1736 (Mateusz Kocielski, Pierre)
1737 . Fixed memory leak on SQLite3Result and SQLite3Stmt when assigning to a
1738 reference. (Felipe)
1739 . Add SQlite3_Stmt::readonly() for checking if a statement is read only.
1740 (Scott)
1741 . Implemented FR #53466 (SQLite3Result::columnType() should return false after
1742 all of the rows have been fetched). (Scott)
1743
1744 - Streams:
1745 . Fixed bug #54092 (Segmentation fault when using HTTP proxy with the FTP
1746 wrapper). (Gustavo)
1747 . Fixed bug #53913 (Streams functions assume HAVE_GLOB is defined). (Chris
1748 Jones)
1749 . Fixed bug #53903 (userspace stream stat callback does not separate the
1750 elements of the returned array before converting them). (Gustavo)
1751 . Implemented FR #26158 (open arbitrary file descriptor with fopen). (Gustavo)
1752
1753 - Tokenizer Extension
1754 . Fixed bug #54089 (token_get_all() does not stop after __halt_compiler).
bdc4a1c Tidy up PHP 5.4.0 section, incuding removing most (?) bugs in new
Christopher Jones authored
1755 (Nikita Popov, Ilia)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1756
1757 - XSL extension:
1758 . Fixed memory leaked introduced by the NULL poisoning patch.
1759 (Mateusz Kocielski, Pierre)
1760
1761 - Zip extension:
1762 . Added the filename into the return value of stream_get_meta_data(). (Hannes)
1763 . Fixed bug #53923 (Zip functions assume HAVE_GLOB is defined). (Adam)
1764 . Fixed bug #53893 (Wrong return value for ZipArchive::extractTo()). (Pierre)
1765 . Fixed bug #53885 (ZipArchive segfault with FL_UNCHANGED on empty archive).
1766 (Stas, Maksymilian Arciemowicz). (CVE-2011-0421)
1767 . Fixed bug #53854 (Missing constants for compression type). (Richard, Adam)
1768 . Fixed bug #53603 (ZipArchive should quiet stat errors). (brad dot froehle at
1769 gmail dot com, Gustavo)
1770 . Fixed bug #53579 (stream_get_contents() segfaults on ziparchive streams).
1771 (Hannes)
1772 . Fixed bug #53568 (swapped memset arguments in struct initialization).
1773 (crrodriguez at opensuse dot org)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1774 . Fixed bug #53166 (Missing parameters in docs and reflection definition).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1775 (Richard)
1776 . Fixed bug #49072 (feof never returns true for damaged file in zip).
1777 (Gustavo, Richard Quadling)
1778
1779 06 Jan 2011, PHP 5.3.5
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1780 - Fixed Bug #53632 (infinite loop with x87 fpu). (CVE-2010-4645) (Scott,
de52547 @smalyshev Integrate NEWS
smalyshev authored
1781 Rasmus)
1782
1783 09 Dec 2010, PHP 5.3.4
1784 - Upgraded bundled Sqlite3 to version 3.7.3. (Ilia)
1785 - Upgraded bundled PCRE to version 8.10. (Ilia)
1786
1787 - Security enhancements:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1788 . Fixed crash in zip extract method (possible CWE-170).
de52547 @smalyshev Integrate NEWS
smalyshev authored
1789 (Maksymilian Arciemowicz, Pierre)
1790 . Paths with NULL in them (foo\0bar.txt) are now considered as invalid.
1791 (Rasmus)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1792 . Fixed a possible double free in imap extension (Identified by Mateusz
de52547 @smalyshev Integrate NEWS
smalyshev authored
1793 Kocielski). (CVE-2010-4150). (Ilia)
1794 . Fixed NULL pointer dereference in ZipArchive::getArchiveComment.
1795 (CVE-2010-3709). (Maksymilian Arciemowicz)
1796 . Fixed possible flaw in open_basedir (CVE-2010-3436). (Pierre)
1797 . Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950). (Pierre)
1798 . Fixed symbolic resolution support when the target is a DFS share. (Pierre)
1799 . Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with
1800 large amount of data) (CVE-2010-3710). (Adam)
1801
1802 - General improvements:
1803 . Added stat support for zip stream. (Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1804 . Added follow_location (enabled by default) option for the http stream
de52547 @smalyshev Integrate NEWS
smalyshev authored
1805 support. (Pierre)
1806 . Improved support for is_link and related functions on Windows. (Pierre)
1807 . Added a 3rd parameter to get_html_translation_table. It now takes a charset
1808 hint, like htmlentities et al. (Gustavo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1809
de52547 @smalyshev Integrate NEWS
smalyshev authored
1810 - Implemented feature requests:
1811 . Implemented FR #52348, added new constant ZEND_MULTIBYTE to detect
1812 zend multibyte at runtime. (Kalle)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1813 . Implemented FR #52173, added functions pcntl_get_last_error() and
de52547 @smalyshev Integrate NEWS
smalyshev authored
1814 pcntl_strerror(). (nick dot telford at gmail dot com, Arnaud)
1815 . Implemented symbolic links support for open_basedir checks. (Pierre)
1816 . Implemented FR #51804, SplFileInfo::getLinkTarget on Windows. (Pierre)
1817 . Implemented FR #50692, not uploaded files don't count towards
1818 max_file_uploads limit. As a side improvement, temporary files are not
1819 opened for empty uploads and, in debug mode, 0-length uploads. (Gustavo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1820
de52547 @smalyshev Integrate NEWS
smalyshev authored
1821 - Improved MySQLnd:
1822 . Added new character sets to mysqlnd, which are available in MySQL 5.5
1823 (Andrey)
1824
1825 - Improved PHP-FPM SAPI:
1826 . Added '-p/--prefix' to php-fpm to use a custom prefix and run multiple
1827 instances. (fat)
1828 . Added custom process title for FPM. (fat)
1829 . Added '-t/--test' to php-fpm to check and validate FPM conf file. (fat)
1830 . Added statistics about listening socket queue length for FPM.
1831 (andrei dot nigmatulin at gmail dot com, fat)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1832
de52547 @smalyshev Integrate NEWS
smalyshev authored
1833 - Core:
1834 . Fixed extract() to do not overwrite $GLOBALS and $this when using
1835 EXTR_OVERWRITE. (jorto at redhat dot com)
1836 . Fixed bug in the Windows implementation of dns_get_record, where the two
1837 last parameters wouldn't be filled unless the type were DNS_ANY (Gustavo).
1838 . Changed the $context parameter on copy() to actually have an effect. (Kalle)
1839 . Fixed htmlentities/htmlspecialchars accepting certain ill-formed UTF-8
1840 sequences. (Gustavo)
1841 . Fixed bug #53409 (sleep() returns NULL on Windows). (Pierre)
1842 . Fixed bug #53319 (strip_tags() may strip '<br />' incorrectly). (Felipe)
1843 . Fixed bug #53304 (quot_print_decode does not handle lower-case hex digits).
1844 (Ilia, daniel dot mueller at inexio dot net)
1845 . Fixed bug #53248 (rawurlencode RFC 3986 EBCDIC support misses tilde char).
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1846 (Justin Martin)
de52547 @smalyshev Integrate NEWS
smalyshev authored
1847 . Fixed bug #53226 (file_exists fails on big filenames). (Adam)
1848 . Fixed bug #53198 (changing INI setting "from" with ini_set did not have any
1849 effect). (Gustavo)
1850 . Fixed bug #53180 (post_max_size=0 not disabling the limit when the content
1851 type is application/x-www-form-urlencoded or is not registered with PHP).
1852 (gm at tlink dot de, Gustavo)
1853 . Fixed bug #53141 (autoload misbehaves if called from closing session).
1854 (ladislav at marek dot su)
1855 . Fixed bug #53021 (In html_entity_decode, failure to convert numeric entities
1856 with ENT_NOQUOTES and ISO-8859-1). Fixed and extended the fix of
1857 ENT_NOQUOTES in html_entity_decode that had introduced the bug (rev
1858 #185591) to other encodings. Additionaly, html_entity_decode() now doesn't
1859 decode &#34; if ENT_NOQUOTES is given. (Gustavo)
1860 . Fixed bug #52931 (strripos not overloaded with function overloading
1861 enabled). (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1862 . Fixed bug #52772 (var_dump() doesn't check for the existence of
de52547 @smalyshev Integrate NEWS
smalyshev authored
1863 get_class_name before calling it). (Kalle, Gustavo)
1864 . Fixed bug #52534 (var_export array with negative key). (Felipe)
1865 . Fixed bug #52327 (base64_decode() improper handling of leading padding in
1866 strict mode). (Ilia)
1867 . Fixed bug #52260 (dns_get_record fails with non-existing domain on Windows).
1868 (a_jelly_doughnut at phpbb dot com, Pierre)
1869 . Fixed bug #50953 (socket will not connect to IPv4 address when the host has
1870 both IPv4 and IPv6 addresses, on Windows). (Gustavo, Pierre)
1871 . Fixed bug #50524 (proc_open on Windows does not respect cwd as it does on
1872 other platforms). (Pierre)
1873 . Fixed bug #49687 (utf8_decode vulnerabilities and deficiencies in the number
1874 of reported malformed sequences). (CVE-2010-3870) (Gustavo)
1875 . Fixed bug #49407 (get_html_translation_table doesn't handle UTF-8).
1876 (Gustavo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1877 . Fixed bug #48831 (php -i has different output to php --ini). (Richard,
de52547 @smalyshev Integrate NEWS
smalyshev authored
1878 Pierre)
1879 . Fixed bug #47643 (array_diff() takes over 3000 times longer than php 5.2.4).
1880 (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1881 . Fixed bug #47168 (printf of floating point variable prints maximum of 40
de52547 @smalyshev Integrate NEWS
smalyshev authored
1882 decimal places). (Ilia)
1883 . Fixed bug #46587 (mt_rand() does not check that max is greater than min).
1884 (Ilia)
1885 . Fixed bug #29085 (bad default include_path on Windows). (Pierre)
1886 . Fixed bug #25927 (get_html_translation_table calls the ' &#39; instead of
1887 &#039;). (Gustavo)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1888
de52547 @smalyshev Integrate NEWS
smalyshev authored
1889 - Zend engine:
1890 . Reverted fix for bug #51176 (Static calling in non-static method behaves
1891 like $this->). (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1892 . Changed deprecated ini options on startup from E_WARNING to E_DEPRECATED.
de52547 @smalyshev Integrate NEWS
smalyshev authored
1893 (Kalle)
1894 . Fixed NULL dereference in lex_scan on zend multibyte builds where the script
1895 had a flex incompatible encoding and there was no converter. (Gustavo)
1896 . Fixed covariance of return-by-ref constraints. (Etienne)
1897 . Fixed bug #53305 (E_NOTICE when defining a constant starts with
1898 __COMPILER_HALT_OFFSET__). (Felipe)
1899 . Fixed bug #52939 (zend_call_function does not respect ZEND_SEND_PREFER_REF).
1900 (Dmitry)
1901 . Fixed bug #52879 (Objects unreferenced in __get, __set, __isset or __unset
1902 can be freed too early). (mail_ben_schmidt at yahoo dot com dot au, Dmitry)
1903 . Fixed bug #52786 (PHP should reset section to [PHP] after ini sections).
1904 (Fedora at famillecollet dot com)
1905 . Fixed bug #52508 (newline problem with parse_ini_file+INI_SCANNER_RAW).
1906 (Felipe)
1907 . Fixed bug #52484 (__set() ignores setting properties with empty names).
1908 (Felipe)
1909 . Fixed bug #52361 (Throwing an exception in a destructor causes invalid
1910 catching). (Dmitry)
1911 . Fixed bug #51008 (Zend/tests/bug45877.phpt fails). (Dmitry)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1912
de52547 @smalyshev Integrate NEWS
smalyshev authored
1913 - Build issues:
1914 . Fixed bug #52436 (Compile error if systems do not have stdint.h)
1915 (Sriram Natarajan)
1916 . Fixed bug #50345 (nanosleep not detected properly on some solaris versions).
1917 (Ulf, Tony)
1918 . Fixed bug #49215 (make fails on glob_wrapper). (Felipe)
1919
1920 - Calendar extension:
1921 . Fixed bug #52744 (cal_days_in_month incorrect for December 1 BCE).
1922 (gpap at internet dot gr, Adam)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1923
de52547 @smalyshev Integrate NEWS
smalyshev authored
1924 - cURL extension:
1925 . Fixed bug #52828 (curl_setopt does not accept persistent streams).
1926 (Gustavo, Ilia)
1927 . Fixed bug #52827 (cURL leaks handle and causes assertion error
1928 (CURLOPT_STDERR)). (Gustavo)
1929 . Fixed bug #52202 (CURLOPT_PRIVATE gets corrupted). (Ilia)
1930 . Fixed bug #50410 (curl extension slows down PHP on Windows). (Pierre)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1931
de52547 @smalyshev Integrate NEWS
smalyshev authored
1932 - DateTime extension:
1933 . Fixed bug #53297 (gettimeofday implementation in php/win32/time.c can return
1934 1 million microsecs). (ped at 7gods dot org)
1935 . Fixed bug #52668 (Iterating over a dateperiod twice is broken). (Derick)
1936 . Fixed bug #52454 (Relative dates and getTimestamp increments by one day).
1937 (Derick)
1938 . Fixed bug #52430 (date_parse parse 24:xx:xx as valid time). (Derick)
1939 . Added support for the ( and ) delimiters/separators to
1940 DateTime::createFromFormat(). (Derick)
1941
1942 - DBA extension:
1943 . Added Berkeley DB 5.1 support to the DBA extension. (Oracle Corp.)
1944
1945 - DOM extension:
1946 . Fixed bug #52656 (DOMCdataSection does not work with splitText). (Ilia)
1947
1948 - Filter extension:
1949 . Fixed the filter extension accepting IPv4 octets with a leading 0 as that
1950 belongs to the unsupported "dotted octal" representation. (Gustavo)
1951 . Fixed bug #53236 (problems in the validation of IPv6 addresses with leading
1952 and trailing :: in the filter extension). (Gustavo)
1953 . Fixed bug #50117 (problems in the validation of IPv6 addresses with IPv4
1954 addresses and ::). (Gustavo)
1955
1956 - GD extension:
1957 . Fixed bug #53492 (fix crash if anti-aliasing steps are invalid). (Pierre)
1958
1959 - GMP extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1960 . Fixed bug #52906 (gmp_mod returns negative result when non-negative is
de52547 @smalyshev Integrate NEWS
smalyshev authored
1961 expected). (Stas)
1962 . Fixed bug #52849 (GNU MP invalid version match). (Adam)
1963
1964 - Hash extension:
1965 . Fixed bug #51003 (unaligned memory access in ext/hash/hash_tiger.c).
1966 (Mike, Ilia)
1967
1968 - Iconv extension:
1969 . Fixed bug #52941 (The 'iconv_mime_decode_headers' function is skipping
1970 headers). (Adam)
1971 . Fixed bug #52599 (iconv output handler outputs incorrect content type
1972 when flags are used). (Ilia)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1973 . Fixed bug #51250 (iconv_mime_decode() does not ignore malformed Q-encoded
de52547 @smalyshev Integrate NEWS
smalyshev authored
1974 words). (Ilia)
1975
1976 - Intl extension:
1977 . Fixed crashes on invalid parameters in intl extension. (CVE-2010-4409).
1978 (Stas, Maksymilian Arciemowicz)
1979 . Added support for formatting the timestamp stored in a DateTime object.
1980 (Stas)
1981 . Fixed bug #50590 (IntlDateFormatter::parse result is limited to the integer
1982 range). (Stas)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1983
de52547 @smalyshev Integrate NEWS
smalyshev authored
1984 - Mbstring extension:
1985 . Fixed bug #53273 (mb_strcut() returns garbage with the excessive length
1986 parameter). (CVE-2010-4156) (Mateusz Kocielski, Pierre, Moriyoshi)
1987 . Fixed bug #52981 (Unicode casing table was out-of-date. Updated with
1988 UnicodeData-6.0.0d7.txt and included the source of the generator program
1989 with the distribution) (Gustavo).
1990 . Fixed bug #52681 (mb_send_mail() appends an extra MIME-Version header).
1991 (Adam)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1992
de52547 @smalyshev Integrate NEWS
smalyshev authored
1993 - MSSQL extension:
1994 . Fixed possible crash in mssql_fetch_batch(). (Kalle)
1995 . Fixed bug #52843 (Segfault when optional parameters are not passed in to
1996 mssql_connect). (Felipe)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1997
de52547 @smalyshev Integrate NEWS
smalyshev authored
1998 - MySQL extension:
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
1999 . Fixed bug #52636 (php_mysql_fetch_hash writes long value into int).
de52547 @smalyshev Integrate NEWS
smalyshev authored
2000 (Kalle, rein at basefarm dot no)
5dd23ae @smalyshev prepare NEWS for 5.4.0
smalyshev authored
2001
de52547