Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on May 11, 2015
  1. @weierophinney

    Merge branch 'version/bump'

    weierophinney authored
    Bump to 2.4.3dev
  2. @weierophinney

    Bump to next dev version

    weierophinney authored
    - 2.4.3dev
  3. @weierophinney

    Merge branch 'releases/2.4.2'

    weierophinney authored
    2.4.2 readiness
  4. @weierophinney

    Fix CS issue

    weierophinney authored
  5. @weierophinney

    [2.4.2] Release readiness

    weierophinney authored
    - Updated README with version, date, and important changes
    - Updated CHANGELOG with fixed issues
    - Updated VERSION constant
  6. @weierophinney

    Merge branch 'hotfix/7513'

    weierophinney authored
    Close #7513
    Fixes #7512
  7. @weierophinney

    Merge pull request #7513 from Maks3w/hotfix/ldap-converter-exception

    weierophinney authored
    [ldap] Fix exceptions while parsing are not captured.
  8. @weierophinney

    Merge branch 'hotfix/7503'

    weierophinney authored
    Close #7514
    Fixes #7503
  9. @weierophinney

    [#7503] Pass the `\r\n` sequence to Part::getHeadersAsArray()

    weierophinney authored
    Per the gist provided by @Qronicle, I've created a unit test against
    `Zend\Mail\Message`, and a proposed fix.
    
    `Zend\Mime\Part::getHeadersAsArray()` accepts an optional argument, the line
    separator sequence. This defaults to `\n`, but for mail messages, should be
    `\r\n`. The proposed patch passes that argument when retrieving MIME headers to
    include in the mail message.
  10. @Maks3w
Commits on May 8, 2015
  1. @weierophinney

    Merge branch 'hotfix/7507'

    weierophinney authored
    Close #7507
    Fixes #7502
    Fixes #7505
  2. @weierophinney
  3. @weierophinney

    Merge pull request #7507 from Maks3w/hotfix/http-cookie

    weierophinney authored
    [http] Allow serialize any character on cookies
  4. @weierophinney

    Merge branch 'hotfix/7506'

    weierophinney authored
    Close #7506
  5. @weierophinney

    CS and review

    weierophinney authored
    - Fixed CS issues reported by php-cs-fixer
    - Return without re-assignment where possible
    - Remove else statements when conditional returns
    - Consistency
  6. @weierophinney

    Merge pull request #7506 from Maks3w/hotfix/mail-utf8

    weierophinney authored
    [mail] Fix set UTF-8 values to headers. Fix #7501
  7. @Maks3w

    Fix wrong tests

    Maks3w authored
  8. @weierophinney

    Merge pull request #7506 from Maks3w/hotfix/mail-utf8

    weierophinney authored
    [mail] Fix set UTF-8 values to headers. Fix #7501
  9. @Maks3w
  10. @Maks3w

    Fix tests

    Maks3w authored
  11. @Maks3w
  12. @Maks3w

    Apply feedback

    Maks3w authored
  13. @Maks3w

    Fix docblock

    Maks3w authored
  14. @Maks3w
  15. @Maks3w
Commits on May 7, 2015
  1. @weierophinney

    Merge branch 'version/bump'

    weierophinney authored
    Bump to 2.4.2dev
  2. @weierophinney

    Bump to next dev version

    weierophinney authored
    2.4.2dev
  3. @weierophinney

    Merge branch 'releases/2.4.1'

    weierophinney authored
    2.4.1 release readiness
  4. @weierophinney

    [2.4.1] Release readiness

    weierophinney authored
    - Updated README with details on ZF2015-04, new version, and release date.
    - Updated CHANGELOG with new version and date, and details on ZF2015-04.
    - Updated VERSION constant to 2.4.1.
  5. @weierophinney

    Merge branch 'security/zf2015-04'

    weierophinney authored
    ZF2015-04
  6. @weierophinney

    [ZF2015-04] Prevent HTTP Response Splitting and Mail Message Splittin…

    Zend Framework Security Team authored weierophinney committed
    …g vectors
    
    This patch implements a layered approach for detecting and preventing CRLF
    Injection Attacks in the `Zend\Http` and `Zend\Mail` components. The approach
    provides utilities in each component for the following:
    
    - validating that header values follow the appropriate specification with
      regards to allowed characters and multiline sequences (header folding).
    - filtering header values according to the appropriate specification; the
      filtering provided is lossy, and removes any invalid characters.
    - asserting a header value is valid (essentially, raising an exception when
      invalid).
    
    All header classes have been updated to validate values (and, in the case of
    `Zend\Mail`, the header names as well), and to raise an exception for invalid
    cases. This treatment also applies to deserialization.
    
    Users must now perform one or more of the following in order to deal with
    invalid headers:
    
    - Wrap header operations in a try/catch block.
    - Perform a validation check prior to executing a header operation.
    - Filter values passed to header operations.
  7. @weierophinney

    Merge branch 'hotfix/7495'

    weierophinney authored
    Close #7495
  8. @weierophinney

    Merge pull request #7495 from Maks3w/hotfix/console-ErrorLevel-must-b…

    weierophinney authored
    …e-int
    
    [console] Assert only int error levels are set
  9. @weierophinney

    Merge branch 'hotfix/7494'

    weierophinney authored
    Close #7494
  10. @weierophinney

    Merge pull request #7494 from Maks3w/hotfix/pgsql-disconnect-test

    weierophinney authored
    [db][pgsql][test] Fix testDisconnect
Something went wrong with that request. Please try again.