mirror of
https://github.com/php/php-src.git
synced 2024-12-11 19:04:38 +08:00
c19d59c550
* PHP-5.5: update NEWS add NEWS for fixes Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix for bug #69782 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) 5.4.45 next Conflicts: ext/pcre/php_pcre.c ext/standard/var_unserializer.c ext/standard/var_unserializer.re ext/zip/php_zip.c |
||
|---|---|---|
| .. | ||
| interop | ||
| tests | ||
| config.m4 | ||
| config.w32 | ||
| CREDITS | ||
| package.xml | ||
| php_encoding.c | ||
| php_encoding.h | ||
| php_http.c | ||
| php_http.h | ||
| php_packet_soap.c | ||
| php_packet_soap.h | ||
| php_schema.c | ||
| php_schema.h | ||
| php_sdl.c | ||
| php_sdl.h | ||
| php_soap.dsp | ||
| php_soap.h | ||
| php_xml.c | ||
| php_xml.h | ||
| soap.c | ||
| TODO | ||
| TODO.old | ||