#13425 closed enhancement (fixed)
php-7.4.5
| Reported by: | Bruce Dubbs | Owned by: | Bruce Dubbs |
|---|---|---|---|
| Priority: | high | Milestone: | 10.0 |
| Component: | BOOK | Version: | SVN |
| Severity: | normal | Keywords: | |
| Cc: |
Description
New point version.
Change History (5)
comment:1 by , 4 years ago
| Priority: | normal → high |
|---|
comment:2 by , 4 years ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
Note:
See TracTickets
for help on using tickets.
This has two security fixes in it and a Daylight Savings Time rollover bug fix:
Version 7.4.5 16 Apr 2020 Core: Fixed bug #79364 (When copy empty array, next key is unspecified). Fixed bug #78210 (Invalid pointer address). CURL: Fixed bug #79199 (curl_copy_handle() memory leak). Date: Fixed bug #79396 (DateTime hour incorrect during DST jump forward). Fixed bug #74940 (DateTimeZone loose comparison always true). FPM: Implement request #77062 (Allow numeric [UG]ID in FPM listen.{owner,group}) (Andre Nathan) Iconv: Fixed bug #79200 (Some iconv functions cut Windows-1258). OPcache: Fixed bug #79412 (Opcache chokes and uses 100% CPU on specific script). Session: Fixed bug #79413 (session_create_id() fails for active sessions). Shmop: Fixed bug #79427 (Integer Overflow in shmop_open()). SimpleXML: Fixed bug #61597 (SXE properties may lack attributes and content). SOAP: Fixed bug #79357 (SOAP request segfaults when any request parameter is missing). Spl: Fixed bug #75673 (SplStack::unserialize() behavior). Fixed bug #79393 (Null coalescing operator failing with SplFixedArray). Standard: Fixed bug #79330 (shell_exec() silently truncates after a null byte). Fixed bug #79410 (system() swallows last chunk if it is exactly 4095 bytes without newline). Fixed bug #79465 (OOB Read in urldecode()). (CVE-2020-7067) Zip: Fixed bug #79296 (ZipArchive::open fails on empty file). Fixed bug #79424 (php_zip_glob uses gl_pathc after call to globfree).There's an Out-of-bounds read in urldecode() and an integer overflow in shmop