| 7 | | CGI: |
| 8 | | Fixed buffer limit on Windows, replacing read call usage by _read. |
| 9 | | Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument Injection in |
| 10 | | |
| 11 | | CLI: |
| 12 | | Fixed bug GH-14189 (PHP Interactive shell input state incorrectly handles quoted |
| 13 | | |
| 14 | | Core: |
| 15 | | Fixed bug GH-13970 (Incorrect validation of #[Attribute] flags type for non- |
| 16 | | |
| 17 | | DOM: |
| 18 | | Fix crashes when entity declaration is removed while still having entity |
| 19 | | |
| 20 | | Fix references not handled correctly in C14N. |
| 21 | | Fix crash when calling childNodes next() when iterator is exhausted. |
| 22 | | Fix crash in ParentNode::append() when dealing with a fragment containing text |
| 23 | | |
| 24 | | Filter: |
| 25 | | Fixed bug GHSA-w8qr-v226-r27w (Filter bypass in filter_var FILTER_VALIDATE_URL). |
| 26 | | |
| 27 | | FPM: |
| 28 | | Fix bug GH-14175 (Show decimal number instead of scientific notation in systemd |
| 29 | | |
| 30 | | Hash: |
| 31 | | ext/hash: Swap the checking order of `__has_builtin` and `__GNUC__` (Saki |
| 32 | | Takamachi) |
| 33 | | Intl: |
| 34 | | Fixed build regression on systems without C++17 compilers. |
| 35 | | MySQLnd: |
| 36 | | Fix bug GH-14255 (mysqli_fetch_assoc reports error from nested query). |
| 37 | | Opcache: |
| 38 | | Fixed bug GH-14109 (Fix accidental persisting of internal class constant in |
| 39 | | shm). |
| 40 | | OpenSSL: |
| 41 | | The openssl_private_decrypt function in PHP, when using PKCS1 padding |
| 42 | | (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the Marvin Attack unless |
| 43 | | it is used with an OpenSSL version that includes the changes from this pull request: |
| 44 | | https://github.com/openssl/openssl/pull/13817 (rsa_pkcs1_implicit_rejection). These |
| 45 | | changes are part of OpenSSL 3.2 and have also been backported to stable versions of |
| 46 | | various Linux distributions, as well as to the PHP builds provided for Windows since the |
| 47 | | previous release. All distributors and builders should ensure that this version is used |
| 48 | | to prevent PHP from being vulnerable. |
| 49 | | Standard: |
| 50 | | Fixed bug GHSA-9fcc-425m-g385 (Bypass of CVE-2024-1874). (CVE-2024-5585) |
| 51 | | XML: |
| 52 | | Fixed bug GH-14124 (Segmentation fault with XML extension under certain memory |
| 53 | | limit). |
| 54 | | XMLReader: |
| 55 | | Fixed bug GH-14183 (XMLReader::open() can't be overridden). |
| 56 | | }}} |
| | 5 | CGI: |
| | 6 | - Fixed buffer limit on Windows, replacing read call usage by _read. |
| | 7 | - Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument |
| | 8 | Injection in PHP-CGI). (CVE-2024-4577) |
| | 9 | CLI: |
| | 10 | - Fixed bug GH-14189 (PHP Interactive shell input state incorrectly |
| | 11 | handles quoted heredoc literals.). |
| | 12 | Core: |
| | 13 | - Fixed bug GH-13970 (Incorrect validation of #[Attribute] flags |
| | 14 | type for non-compile-time expressions). |
| | 15 | DOM: |
| | 16 | - Fix crashes when entity declaration is removed while still |
| | 17 | having entity references. |
| | 18 | - Fix references not handled correctly in C14N. |
| | 19 | - Fix crash when calling childNodes next() when iterator is exhausted. |
| | 20 | - Fix crash in ParentNode::append() when dealing with a fragment |
| | 21 | containing text nodes. |
| | 22 | Filter: |
| | 23 | - Fixed bug GHSA-w8qr-v226-r27w (Filter bypass in filter_var |
| | 24 | - FILTER_VALIDATE_URL). (CVE-2024-5458) |
| | 25 | FPM: |
| | 26 | - Fix bug GH-14175 (Show decimal number instead of scientific |
| | 27 | notation in systemd status). |
| | 28 | Hash: |
| | 29 | - ext/hash: Swap the checking order of `__has_builtin` and `__GNUC__` |
| | 30 | Intl: |
| | 31 | - Fixed build regression on systems without C++17 compilers. |
| | 32 | MySQLnd: |
| | 33 | - Fix bug GH-14255 (mysqli_fetch_assoc reports error from nested query). |
| | 34 | Opcache: |
| | 35 | - Fixed bug GH-14109 (Fix accidental persisting of internal class |
| | 36 | constant in shm). |
| | 37 | OpenSSL: |
| | 38 | - The openssl_private_decrypt function in PHP, when using PKCS1 padding |
| | 39 | (OPENSSL_PKCS1_PADDING, which is the default), is vulnerable to the |
| | 40 | Marvin Attack unless it is used with an OpenSSL version that includes |
| | 41 | the changes from this pull request: |
| | 42 | https://github.com/openssl/openssl/pull/13817 (rsa_pkcs1_implicit_rejection). |
| | 43 | These changes are part of OpenSSL 3.2 and have also been backported to stable |
| | 44 | versions of various Linux distributions, as well as to the PHP builds |
| | 45 | provided for Windows since the previous release. All distributors and |
| | 46 | builders should ensure that this version is used to prevent PHP from being |
| | 47 | vulnerable. |
| | 48 | Standard: |
| | 49 | - Fixed bug GHSA-9fcc-425m-g385 (Bypass of CVE-2024-1874). (CVE-2024-5585) |
| | 50 | XML: |
| | 51 | - Fixed bug GH-14124 (Segmentation fault with XML extension under |
| | 52 | certain memory limit). |
| | 53 | XMLReader: |
| | 54 | - Fixed bug GH-14183 (XMLReader::open() can't be overridden). |
