7 | | CGI: |
8 | | Fixed buffer limit on Windows, replacing read call usage by _read. |
9 | | Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument Injection in |
10 | | PHP-CGI). (CVE-2024-4577) |
11 | | CLI: |
12 | | Fixed bug GH-14189 (PHP Interactive shell input state incorrectly handles quoted |
13 | | heredoc literals.). |
14 | | Core: |
15 | | Fixed bug GH-13970 (Incorrect validation of #[Attribute] flags type for non- |
16 | | compile-time expressions). |
17 | | DOM: |
18 | | Fix crashes when entity declaration is removed while still having entity |
19 | | references. |
20 | | Fix references not handled correctly in C14N. |
21 | | Fix crash when calling childNodes next() when iterator is exhausted. |
22 | | Fix crash in ParentNode::append() when dealing with a fragment containing text |
23 | | nodes. |
24 | | Filter: |
25 | | Fixed bug GHSA-w8qr-v226-r27w (Filter bypass in filter_var FILTER_VALIDATE_URL). |
26 | | (CVE-2024-5458) |
27 | | FPM: |
28 | | Fix bug GH-14175 (Show decimal number instead of scientific notation in systemd |
29 | | status). |
30 | | Hash: |
31 | | ext/hash: Swap the checking order of `__has_builtin` and `__GNUC__` (Saki |
32 | | Takamachi) |
33 | | Intl: |
34 | | Fixed build regression on systems without C++17 compilers. |
35 | | MySQLnd: |
36 | | Fix bug GH-14255 (mysqli_fetch_assoc reports error from nested query). |
37 | | Opcache: |
38 | | Fixed bug GH-14109 (Fix accidental persisting of internal class constant in |
39 | | shm). |
40 | | OpenSSL: |
41 | | The openssl_private_decrypt function in PHP, when using PKCS1 padding |
42 | | (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the Marvin Attack unless |
43 | | it is used with an OpenSSL version that includes the changes from this pull request: |
44 | | https://github.com/openssl/openssl/pull/13817 (rsa_pkcs1_implicit_rejection). These |
45 | | changes are part of OpenSSL 3.2 and have also been backported to stable versions of |
46 | | various Linux distributions, as well as to the PHP builds provided for Windows since the |
47 | | previous release. All distributors and builders should ensure that this version is used |
48 | | to prevent PHP from being vulnerable. |
49 | | Standard: |
50 | | Fixed bug GHSA-9fcc-425m-g385 (Bypass of CVE-2024-1874). (CVE-2024-5585) |
51 | | XML: |
52 | | Fixed bug GH-14124 (Segmentation fault with XML extension under certain memory |
53 | | limit). |
54 | | XMLReader: |
55 | | Fixed bug GH-14183 (XMLReader::open() can't be overridden). |
56 | | }}} |
| 5 | CGI: |
| 6 | - Fixed buffer limit on Windows, replacing read call usage by _read. |
| 7 | - Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument |
| 8 | Injection in PHP-CGI). (CVE-2024-4577) |
| 9 | CLI: |
| 10 | - Fixed bug GH-14189 (PHP Interactive shell input state incorrectly |
| 11 | handles quoted heredoc literals.). |
| 12 | Core: |
| 13 | - Fixed bug GH-13970 (Incorrect validation of #[Attribute] flags |
| 14 | type for non-compile-time expressions). |
| 15 | DOM: |
| 16 | - Fix crashes when entity declaration is removed while still |
| 17 | having entity references. |
| 18 | - Fix references not handled correctly in C14N. |
| 19 | - Fix crash when calling childNodes next() when iterator is exhausted. |
| 20 | - Fix crash in ParentNode::append() when dealing with a fragment |
| 21 | containing text nodes. |
| 22 | Filter: |
| 23 | - Fixed bug GHSA-w8qr-v226-r27w (Filter bypass in filter_var |
| 24 | - FILTER_VALIDATE_URL). (CVE-2024-5458) |
| 25 | FPM: |
| 26 | - Fix bug GH-14175 (Show decimal number instead of scientific |
| 27 | notation in systemd status). |
| 28 | Hash: |
| 29 | - ext/hash: Swap the checking order of `__has_builtin` and `__GNUC__` |
| 30 | Intl: |
| 31 | - Fixed build regression on systems without C++17 compilers. |
| 32 | MySQLnd: |
| 33 | - Fix bug GH-14255 (mysqli_fetch_assoc reports error from nested query). |
| 34 | Opcache: |
| 35 | - Fixed bug GH-14109 (Fix accidental persisting of internal class |
| 36 | constant in shm). |
| 37 | OpenSSL: |
| 38 | - The openssl_private_decrypt function in PHP, when using PKCS1 padding |
| 39 | (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the |
| 40 | Marvin Attack unless it is used with an OpenSSL version that includes |
| 41 | the changes from this pull request: |
| 42 | https://github.com/openssl/openssl/pull/13817 (rsa_pkcs1_implicit_rejection). |
| 43 | These changes are part of OpenSSL 3.2 and have also been backported to stable |
| 44 | versions of various Linux distributions, as well as to the PHP builds |
| 45 | provided for Windows since the previous release. All distributors and |
| 46 | builders should ensure that this version is used to prevent PHP from being |
| 47 | vulnerable. |
| 48 | Standard: |
| 49 | - Fixed bug GHSA-9fcc-425m-g385 (Bypass of CVE-2024-1874). (CVE-2024-5585) |
| 50 | XML: |
| 51 | - Fixed bug GH-14124 (Segmentation fault with XML extension under |
| 52 | certain memory limit). |
| 53 | XMLReader: |
| 54 | - Fixed bug GH-14183 (XMLReader::open() can't be overridden). |