From: Bob Weinand Date: Thu, 22 Dec 2016 14:31:39 +0000 (+0100) Subject: Merge branch 'PHP-7.0' into PHP-7.1 X-Git-Tag: php-7.1.1RC1~58 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=898e439333eab07103d7ecbd9b0b9f4b2cb32b68;p=php Merge branch 'PHP-7.0' into PHP-7.1 --- 898e439333eab07103d7ecbd9b0b9f4b2cb32b68 diff --cc NEWS index cf9215cf24,d22471418e..cfe066b639 --- a/NEWS +++ b/NEWS @@@ -40,163 -25,33 +40,168 @@@ PH . Fixed bug #72931 (PDO_FIREBIRD with Firebird 3.0 not work on returning statement). (Dorin Marcoci) -- Streams: - . Fixed bug #73586 (php_user_filter::$stream is not set to the stream the - filter is working on). (Dmitry) - -- Phpdbg: - . Fixed bug #73615 (phpdbg without option never load .phpdbginit at startup). - (Bob) - . Fixed issue getting executable lines from custom wrappers. (Bob) +- phpdbg: + . Fixed bug #73794 (Crash (out of memory) when using run and # command + separator). (Bob) + . Fixed bug #73704 (phpdbg shows the wrong line in files with shebang). (Bob) -- Reflection: - . Fixed bug #46103 (ReflectionObject memory leak). (Nikita) - - Standard: . Fixed bug #73594 (dns_get_record does not populate $additional out parameter). (Bruce Weirdan) -- Zlib: ++- Zlib + . Fixed bug #73373 (deflate_add does not verify that output was not truncated). + (Matt Bonneau) + -08 Dec 2016 PHP 7.0.14 +01 Dec 2016, PHP 7.1.0 - Core: + . Added nullable types. (Levi, Dmitry) + . Added DFA optimization framework based on e-SSA form. (Dmitry, Nikita) + . Added specialized opcode handlers (e.g. ZEND_ADD_LONG_NO_OVERFLOW). + (Dmitry) + . Added [] = as alternative construct to list() =. (Bob) + . Added void return type. (Andrea) + . Added support for negative string offsets in string offset syntax and + various string functions. (Francois) + . Added a form of the list() construct where keys can be specified. (Andrea) + . Implemented safe execution timeout handling, that prevents random crashes + after "Maximum execution time exceeded" error. (Dmitry) + . Implemented the RFC `Support Class Constant Visibility`. (Sean DuBois, + Reeze Xia, Dmitry) + . Implemented the RFC `Catching multiple exception types`. (Bronislaw Bialek, + Pierrick) + . Implemented logging to syslog with dynamic error levels. (Jani Ollikainen) + . Implemented FR #72614 (Support "nmake test" on building extensions by + phpize). (Yuji Uchiyama) + . Implemented RFC: Iterable. (Aaron Piotrowski) + . Implemented RFC: Closure::fromCallable (Danack) + . Implemented RFC: Replace "Missing argument" warning with "\ArgumentCountError" + exception. (Dmitry, Davey) + . Implemented RFC: Fix inconsistent behavior of $this variable. (Dmitry) + . Fixed bug #73585 (Logging of "Internal Zend error - Missing class + information" missing class name). (Laruence) . Fixed memory leak(null coalescing operator with Spl hash). (Tyson Andre) - . Fixded bug #72736 (Slow performance when fetching large dataset with mysqli + . Fixed bug #72736 (Slow performance when fetching large dataset with mysqli / PDO). (Dmitry) + . Fixed bug #72482 (Ilegal write/read access caused by gdImageAALine + overflow). (cmb) + . Fixed bug #72696 (imagefilltoborder stackoverflow on truecolor images). + (cmb) + . Fixed bug #73350 (Exception::__toString() cause circular references). + (Laruence) + . Fixed bug #73329 ((Float)"Nano" == NAN). (Anatol) + . Fixed bug #73288 (Segfault in __clone > Exception.toString > __get). + (Laruence) + . Fixed for #73240 (Write out of bounds at number_format). (Stas) + . Fix pthreads detection when cross-compiling (ffontaine) + . Fixed bug #73337 (try/catch not working with two exceptions inside a same + operation). (Dmitry) + . Fixed bug #73156 (segfault on undefined function). (Dmitry) + . Fixed bug #73163 (PHP hangs if error handler throws while accessing undef + const in default value). (Nikita) + . Fixed bug #73172 (parse error: Invalid numeric literal). (Nikita, Anatol) + . Fixed bug #73181 (parse_str() without a second argument leads to crash). + (Nikita) + . Fixed bug #73025 (Heap Buffer Overflow in virtual_popen of + zend_virtual_cwd.c). (cmb) + . Fixed bug #73058 (crypt broken when salt is 'too' long). (Anatol) + . Fixed bug #72944 (Null pointer deref in zval_delref_p). (Dmitry) + . Fixed bug #72943 (assign_dim on string doesn't reset hval). (Laruence) + . Fixed bug #72598 (Reference is lost after array_slice()) (Nikita) + . Fixed bug #72703 (Out of bounds global memory read in BF_crypt triggered by + password_verify). (Anatol) + . Fixed bug #72813 (Segfault with __get returned by ref). (Laruence) + . Fixed bug #72767 (PHP Segfaults when trying to expand an infinite operator). + (Nikita) + . TypeError messages for arg_info type checks will now say "must be ... + or null" where the parameter or return type accepts null. (Andrea) + . Fixed bug #72857 (stream_socket_recvfrom read access violation). (Anatol) + . Fixed bug #72663 (Create an Unexpected Object and Don't Invoke + __wakeup() in Deserialization). (Stas) + . Fixed bug #72681 (PHP Session Data Injection Vulnerability). (Stas) + . Fixed bug #72742 (memory allocator fails to realloc small block to large + one). (Stas) + . Fixed URL rewriter. It would not rewrite '//example.com/' URL + unconditionally. URL rewrite target hosts whitelist is implemented. (Yasuo) + . Fixed bug #72641 (phpize (on Windows) ignores PHP_PREFIX). + (Yuji Uchiyama) + . Fixed bug #72683 (getmxrr broken). (Anatol) + . Fixed bug #72629 (Caught exception assignment to variables ignores + references). (Laruence) + . Fixed bug #72594 (Calling an earlier instance of an included anonymous + class fatals). (Laruence) + . Fixed bug #72581 (previous property undefined in Exception after + deserialization). (Laruence) + . Fixed bug #72543 (Different references behavior comparing to PHP 5) + (Laruence, Dmitry, Nikita) + . Fixed bug #72347 (VERIFY_RETURN type casts visible in finally). (Dmitry) + . Fixed bug #72216 (Return by reference with finally is not memory safe). + (Dmitry) + . Fixed bug #72215 (Wrong return value if var modified in finally). (Dmitry) + . Fixed bug #71818 (Memory leak when array altered in destructor). (Dmitry) + . Fixed bug #71539 (Memory error on $arr[$a] =& $arr[$b] if RHS rehashes) + (Dmitry, Nikita) + . Added new constant PHP_FD_SETSIZE. (cmb) + . Added optind parameter to getopt(). (as) + . Added PHP to SAPI error severity mapping for logs. (Martin Vobruba) + . Fixed bug #71911 (Unable to set --enable-debug on building extensions by + phpize on Windows). (Yuji Uchiyama) + . Fixed bug #29368 (The destructor is called when an exception is thrown from + the constructor). (Dmitry) + . Implemented RFC: RNG Fixes. (Leigh) + . Implemented email validation as per RFC 6531. (Leo Feyer, Anatol) + . Fixed bug #72513 (Stack-based buffer overflow vulnerability in + virtual_file_ex). (Stas) + . Fixed bug #72573 (HTTP_PROXY is improperly trusted by some PHP libraries + and applications). (Stas) + . Fixed bug #72523 (dtrace issue with reflection (failed test)). (Laruence) + . Fixed bug #72508 (strange references after recursive function call and + "switch" statement). (Laruence) + . Fixed bug #72441 (Segmentation fault: RFC list_keys). (Laruence) + . Fixed bug #72395 (list() regression). (Laruence) + . Fixed bug #72373 (TypeError after Generator function w/declared return type + finishes). (Nikita) + . Fixed bug #69489 (tempnam() should raise notice if falling back to temp dir). + (Laruence, Anatol) + . Fixed UTF-8 and long path support on Windows. (Anatol) + . Fixed bug #53432 (Assignment via string index access on an empty string + converts to array). (Nikita) + . Fixed bug #62210 (Exceptions can leak temporary variables). (Dmitry, Bob) + . Fixed bug #62814 (It is possible to stiffen child class members visibility). + (Nikita) + . Fixed bug #69989 (Generators don't participate in cycle GC). (Nikita) + . Fixed bug #70228 (Memleak if return in finally block). (Dmitry) + . Fixed bug #71266 (Missing separation of properties HT in foreach etc). + (Dmitry) + . Fixed bug #71604 (Aborted Generators continue after nested finally). + (Nikita) + . Fixed bug #71572 (String offset assignment from an empty string inserts + null byte). (Francois) + . Fixed bug #71897 (ASCII 0x7F Delete control character permitted in + identifiers). (Andrea) + . Fixed bug #72188 (Nested try/finally blocks losing return value). (Dmitry) + . Fixed bug #72213 (Finally leaks on nested exceptions). (Dmitry, Nikita) + . Fixed bug #47517 (php-cgi.exe missing UAC manifest). + (maxdax15801 at users noreply github com) + . Change statement and fcall extension handlers to accept frame. (Joe) + . Number operators taking numeric strings now emit E_NOTICEs or E_WARNINGs + when given malformed numeric strings. (Andrea) + . (int), intval() where $base is 10 or unspecified, settype(), decbin(), + decoct(), dechex(), integer operators and other conversions now always + respect scientific notation in numeric strings. (Andrea) + . Raise a compile-time warning on octal escape sequence overflow. (Sara) + +- Apache2handler: + . Enable per-module logging in Apache 2.4+. (Martin Vobruba) + +- BCmath: + . Fix bug #73190 (memcpy negative parameter _bc_new_num_ex). (Stas) + +- Bz2: + . Fixed bug #72837 (integer overflow in bzdecompress caused heap + corruption). (Stas) + . Fixed bug #72613 (Inadequate error handling in bzread()). (Stas) - Calendar: . Fix integer overflows (Joshua Rogers)