Skip to content
Commits on Jun 27, 2016
  1. @smalyshev

    Merge branch 'PHP-5.5' into PHP-5.6

    * PHP-5.5:
      Fix the fix for #72403 on nl2br
      5.5.38 now
    
    Conflicts:
    	configure.in
    	main/php_version.h
    smalyshev committed Jun 27, 2016
  2. @smalyshev
  3. Update NEWS

    Christoph M. Becker committed Jun 27, 2016
  4. Fix #70628: Clearing bindings on an SQLite3 statement doesn't work

    Obiously, it isn't sufficient to call sqlite3_clear_bindings() alone, but
    also the bound_params of the php_sqlite3_stmt have to be cleared.
    Christoph M. Becker committed Jun 27, 2016
Commits on Jun 25, 2016
  1. @kaplanlior

    Add CVE info for PHP 5.6.22

    kaplanlior committed Jun 25, 2016
  2. @kaplanlior

    Add CVE info for PHP 5.6.23

    kaplanlior committed Jun 25, 2016
  3. @kaplanlior
Commits on Jun 22, 2016
  1. @weltling

    fix test cleanup

    weltling committed Jun 22, 2016
  2. @weltling

    fix dir separator in test

    weltling committed Jun 22, 2016
  3. @Tyrael

    update NEWS

    Tyrael committed Jun 22, 2016
Commits on Jun 21, 2016
  1. @weltling

    fix test

    There is a difference between TS and NTS warning message, since
    virtual_mkdir vs glibc directly is used. This has no effect for
    the actual fix functionality.
    weltling committed Jun 21, 2016
  2. @weltling

    re-fix leak

    weltling committed Jun 21, 2016
  3. @weltling

    Revert "fix leak"

    This reverts commit c5d9c50.
    weltling committed Jun 21, 2016
  4. @jpauli

    5.5.38 now

    jpauli committed Jun 21, 2016
  5. @weltling

    fix leak

    weltling committed Jun 21, 2016
  6. @weltling

    Merge branch 'PHP-5.5' into PHP-5.6

    * PHP-5.5:
      remove the huge test file, generate it on the fly instead
    weltling committed Jun 21, 2016
  7. @weltling
  8. @weltling
  9. @smalyshev

    Merge branch 'PHP-5.5' into PHP-5.6

    * PHP-5.5:
      Now the right bug #
      Fix NEWS
    smalyshev committed Jun 21, 2016
  10. @smalyshev

    Now the right bug #

    smalyshev committed Jun 21, 2016
  11. @smalyshev

    Fix NEWS

    smalyshev committed Jun 21, 2016
  12. @smalyshev

    Merge branch 'PHP-5.6.23' into PHP-5.6

    * PHP-5.6.23:
      Fixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow
      update NEWS
      fix tests
      fix build
      Fix bug #72455:  Heap Overflow due to integer overflows
      Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fix bug #72407: NULL Pointer Dereference at _gdScaleVert
      Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free
      Fix bug #72298	pass2_no_dither out-of-bounds access
      Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow
      Fix bug #72262 - do not overflow int
      Fix bug #72400 and #72403 - prevent signed int overflows for string lengths
      Fix bug #72275: don't allow smart_str to overflow int
      Fix bug #72340: Double Free Courruption in wddx_deserialize
      Fix bug #72321 - use efree() for emalloc allocation
      5.6.23RC1
    
    Conflicts:
    	configure.in
    	main/php_version.h
    smalyshev committed Jun 21, 2016
  13. @smalyshev

    Merge branch 'PHP-5.5' into PHP-5.6.23

    * PHP-5.5:
      Fixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow
      update NEWS
      fix tests
      fix build
      Fix bug #72455:  Heap Overflow due to integer overflows
      Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fix bug #72407: NULL Pointer Dereference at _gdScaleVert
      Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free
      Fix bug #72298	pass2_no_dither out-of-bounds access
      Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow
      Fix bug #72262 - do not overflow int
      Fix bug #72400 and #72403 - prevent signed int overflows for string lengths
      Fix bug #72275: don't allow smart_str to overflow int
      Fix bug #72340: Double Free Courruption in wddx_deserialize
      update NEWS
      Fix #66387: Stack overflow with imagefilltoborder
      Skip test which is 64bits only
      5.5.37 now
    
    Conflicts:
    	configure.in
    	ext/mcrypt/mcrypt.c
    	ext/spl/spl_directory.c
    	main/php_version.h
    smalyshev committed Jun 21, 2016
  14. @smalyshev

    iFixed bug #72446 - Integer Overflow in gdImagePaletteToTrueColor() r…

    …esulting in heap overflow
    smalyshev committed Jun 20, 2016
  15. @smalyshev

    update NEWS

    smalyshev committed Jun 20, 2016
  16. @smalyshev

    Merge branch 'PHP-5.5.37' into PHP-5.5

    * PHP-5.5.37:
      fix tests
      fix build
      Fix bug #72455:  Heap Overflow due to integer overflows
      Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fixed ##72433: Use After Free Vulnerability in PHP's GC algorithm and unserialize
      Fix bug #72407: NULL Pointer Dereference at _gdScaleVert
      Fix bug #72402: _php_mb_regex_ereg_replace_exec - double free
      Fix bug #72298	pass2_no_dither out-of-bounds access
      Fixed #72339 Integer Overflow in _gd2GetHeader() resulting in heap overflow
      Fix bug #72262 - do not overflow int
      Fix bug #72400 and #72403 - prevent signed int overflows for string lengths
      Fix bug #72275: don't allow smart_str to overflow int
      Fix bug #72340: Double Free Courruption in wddx_deserialize
    smalyshev committed Jun 20, 2016
  17. @smalyshev

    fix tests

    smalyshev committed Jun 20, 2016
  18. @smalyshev

    fix build

    smalyshev committed Jun 20, 2016
  19. @smalyshev
  20. @smalyshev

    Fix bug #72434: ZipArchive class Use After Free Vulnerability in PHP'…

    …s GC algorithm and unserialize
    smalyshev committed Jun 20, 2016
  21. @smalyshev
Commits on Jun 20, 2016
  1. @remicollet
  2. Update NEWS

    Christoph M. Becker committed Jun 20, 2016
  3. @cmb69

    Fix #64641: imagefilledpolygon doesn't draw horizontal line

    As has been reported, 1-dimensional horizontal filled polygons are not drawn
    at all. That is caused by the scanline algorithm used for drawing filled
    polygons which skips the drawing of horizontal edges, because that is
    normally not necessary. If, however, the polygon consists of horizontal
    edges only, that obviously doesn't work, so we add a special case handling.
    
    That has also been fixed in libgd with
    <libgd/libgd@f9f10fa>.
    cmb69 committed with Christoph M. Becker Jun 19, 2016
Commits on Jun 19, 2016
  1. @smalyshev

    Update NEWS

    smalyshev committed Jun 18, 2016
Something went wrong with that request. Please try again.