]>
granicus.if.org Git - php/log
Remi Collet [Fri, 14 Oct 2016 15:31:26 +0000 (17:31 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
Remi Collet [Fri, 14 Oct 2016 15:31:07 +0000 (17:31 +0200)]
bump ext/zip version
Christoph M. Becker [Tue, 27 Sep 2016 18:26:16 +0000 (20:26 +0200)]
Implement #72918: negative offset inside a quoted string leads to parse error
Christoph M. Becker [Fri, 14 Oct 2016 11:52:21 +0000 (13:52 +0200)]
Update NEWS
Bob Weinand [Fri, 14 Oct 2016 10:25:16 +0000 (12:25 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
Bob Weinand [Fri, 14 Oct 2016 10:24:28 +0000 (12:24 +0200)]
Fix memory leak when compiling files in phpdbg
Remi Collet [Fri, 14 Oct 2016 08:54:47 +0000 (10:54 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
Remi Collet [Fri, 14 Oct 2016 08:54:09 +0000 (10:54 +0200)]
Merge branch 'PHP-5.6' into PHP-7.0
Remi Collet [Fri, 14 Oct 2016 08:53:40 +0000 (10:53 +0200)]
use zend_error instead of zend_error_noreturn
Ferenc Kovacs [Fri, 14 Oct 2016 06:09:29 +0000 (08:09 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
Ferenc Kovacs [Fri, 14 Oct 2016 06:08:10 +0000 (08:08 +0200)]
Merge branch 'PHP-5.6' into PHP-7.0
Ferenc Kovacs [Fri, 14 Oct 2016 06:05:17 +0000 (08:05 +0200)]
add missing NEWS entries for 5.6.27
Anatol Belski [Fri, 14 Oct 2016 02:19:16 +0000 (04:19 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
Anatol Belski [Thu, 13 Oct 2016 13:39:02 +0000 (15:39 +0200)]
missed piece for renaming
(cherry picked from commit
5ba9eab4361cf9d0d9085f969acc2e96b8af3241 )
Anatol Belski [Thu, 13 Oct 2016 13:23:15 +0000 (15:23 +0200)]
rename publicly exposed symbol to avoid name conflicts
(cherry picked from commit
730288ae41fe0d40d00b27174b558cf260b1a7df )
Bob Weinand [Thu, 13 Oct 2016 12:09:12 +0000 (14:09 +0200)]
Ignore non-executable opcodes in line mode of phpdbg_end_oplog()
(cherry picked from commit
d14498a475642642cfeee21630058941c33a6dfb )
Anatol Belski [Thu, 13 Oct 2016 11:08:16 +0000 (13:08 +0200)]
fix gettimeofday proto availability
(cherry picked from commit
79f7d174d07dee4dde1f8eddaba6c741b26edeb3 )
Christoph M. Becker [Thu, 13 Oct 2016 09:10:02 +0000 (11:10 +0200)]
Fix #73280: Stack Buffer Overflow in GD dynamicGetbuf
We make sure to never pass a negative `rlen` as size to memcpy().
Cf. <https://github.com/libgd/libgd/commit/
53110871 >.
(cherry picked from commit
cc08cbc84d46933c1e9e0149633f1ed5d19e45e9 )
Anatol Belski [Thu, 13 Oct 2016 08:08:23 +0000 (10:08 +0200)]
Anatol Belski [Thu, 13 Oct 2016 07:55:37 +0000 (09:55 +0200)]
use already exported symbol
(cherry picked from commit
ce3e792c2c4c251fd5963a36af5ad4a9dd875085 )
Anatol Belski [Thu, 13 Oct 2016 07:50:32 +0000 (09:50 +0200)]
Revert "export symbol missing by phpdbg"
This reverts commit
611ab7fe5b9fe41de56c25b1d348a866794b1fb1 .
Overseen strpprintf is there
(cherry picked from commit
3104882cf873308c43dca20bdfd698dd3470a246 )
Stanislav Malyshev [Thu, 13 Oct 2016 06:26:15 +0000 (23:26 -0700)]
Merge branch 'PHP-7.0' into PHP-7.1
* PHP-7.0:
Fix outlen for openssl function
Syncronize with 5.6 - __toString should return ""
Fix potential overflows in php_pcre_replace_impl
(cherry picked from commit
ff75665663045a96d6f182e24283e6bebb8537fa )
Stanislav Malyshev [Thu, 13 Oct 2016 06:08:30 +0000 (23:08 -0700)]
Syncronize with 5.6 - __toString should return ""
(cherry picked from commit
2301608736c82183f8210053a45f78eeef5b0c74 )
Stanislav Malyshev [Thu, 13 Oct 2016 06:07:47 +0000 (23:07 -0700)]
Fix potential overflows in php_pcre_replace_impl
(cherry picked from commit
9c50ba42d6503a5fcfffad6c6823a9bee0e033c0 )
Keith Smiley [Mon, 27 Jun 2016 18:23:15 +0000 (14:23 -0400)]
Fixed bug #73237
If the response includes both fields with simple types (which get
concatenated into an XML string) and a complex type (which is parsed
into an object), then the object will parsed into the same zval as the
simple types and will overwrite the string.
(cherry picked from commit
26287132c0c48e52dbaf1ac44c1d2f0d0d9b0cf7 )
Anatol Belski [Wed, 12 Oct 2016 21:07:37 +0000 (23:07 +0200)]
fix another mistake
(cherry picked from commit
bec0121733cc5777c4d3fde8e9ff56fe68c039d3 )
Mitch Hagstrand [Wed, 12 Oct 2016 01:18:59 +0000 (20:18 -0500)]
Fixed bug in zend_accel_error() and cleaned up kill_all_lockers()
1. zend_accel_error was only executing clean up if log_verbosity_level is high enough to log
2. Cleaned up kill_all_lockers function and fixed comments.
(cherry picked from commit
bcee2fdbec4f4bba59d4134003cfaf5b1f9b67ab )
Bob Weinand [Wed, 12 Oct 2016 20:57:41 +0000 (22:57 +0200)]
Merge remote-tracking branch 'origin/PHP-7.0' into PHP-7.1
(cherry picked from commit
457e68626257e8b5c891f2edf20d31907080063a )
Nikita Popov [Wed, 12 Oct 2016 20:43:01 +0000 (22:43 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
(cherry picked from commit
9669ec707ab99d33404d3132792a24ebd1130fcf )
Nikita Popov [Wed, 12 Oct 2016 20:26:28 +0000 (22:26 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
(cherry picked from commit
26964ccea0f52ed4d6beda3bcfd1508f6d3dad43 )
Anatol Belski [Wed, 12 Oct 2016 20:18:05 +0000 (22:18 +0200)]
export symbol missing by phpdbg
(cherry picked from commit
611ab7fe5b9fe41de56c25b1d348a866794b1fb1 )
Bob Weinand [Wed, 12 Oct 2016 20:16:11 +0000 (22:16 +0200)]
Fix accidental PHPDBG_ABI break
(cherry picked from commit
671d8054f85d2dec1a00201a73ab792847c13919 )
Stanislav Malyshev [Thu, 29 Sep 2016 06:30:48 +0000 (23:30 -0700)]
Fix bug #73189 - Memcpy negative size parameter php_resolve_path
(cherry picked from commit
da7e89cde880c66887caacd0a3eae7ecdacf9b2a )
(cherry picked from commit
c4c2cce37dd99bbcf1411ad8d6884c3c927d7bc9 )
Anatol Belski [Wed, 12 Oct 2016 18:52:46 +0000 (20:52 +0200)]
update len in fallback cases
(cherry picked from commit
58b18892bf3db0adf2a01f92adb4c907700fbbdd )
Anatol Belski [Wed, 12 Oct 2016 18:21:27 +0000 (20:21 +0200)]
fix wrong merge
(cherry picked from commit
821a230f290b7457d4223001286afe00fe887277 )
Bob Weinand [Wed, 12 Oct 2016 18:19:10 +0000 (20:19 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
(cherry picked from commit
37ae5f3931b60c55e5004b6da912c4a957bca274 )
Anatol Belski [Wed, 12 Oct 2016 18:09:24 +0000 (20:09 +0200)]
Merge branch 'PHP-7.0' into PHP-7.1
* PHP-7.0:
Fix bug #73190: memcpy negative parameter _bc_new_num_ex
(cherry picked from commit
af1bf873fe4fc70be17fa9f270e8f30666f2d2db )
Anatol Belski [Wed, 12 Oct 2016 17:28:15 +0000 (19:28 +0200)]
Anatol Belski [Wed, 12 Oct 2016 16:31:46 +0000 (18:31 +0200)]
finish 7.1 port
(cherry picked from commit
f1fff032fcdb09a56c2fd763d1ee160106381586 )
Stanislav Malyshev [Mon, 26 Sep 2016 02:53:59 +0000 (19:53 -0700)]
Fix bug #73147: Use After Free in PHP7 unserialize()
(cherry picked from commit
0e6fe3a4c96be2d3e88389a5776f878021b4c59f )
(cherry picked from commit
f42cbd749cde1f91274c1d03df9024baba141a8f )
Anatol Belski [Wed, 12 Oct 2016 15:12:38 +0000 (17:12 +0200)]
Anatol Belski [Wed, 12 Oct 2016 14:11:32 +0000 (16:11 +0200)]
Revert "Fix for #73240 - Write out of bounds at number_format"
This reverts commit
01280f8deb837a61237a619cffa886d7f8c31963 .
The fix is already merged by Stas.
(cherry picked from commit
80eb013a926fad18cb0da05c508f564da3c1d88c )
Anatol Belski [Wed, 12 Oct 2016 14:03:35 +0000 (16:03 +0200)]
followup with #73276 merge
(cherry picked from commit
b135ba3fa93fd4f085322573d2850b29cb662e21 )
Anatol Belski [Wed, 12 Oct 2016 14:03:09 +0000 (16:03 +0200)]
Stanislav Malyshev [Tue, 11 Oct 2016 20:37:47 +0000 (13:37 -0700)]
Fix bug #73276 - crash in openssl_random_pseudo_bytes function
(cherry picked from commit
85a22a0af0722ef3a8d49a056a0b2b18be1fb981 )
(cherry picked from commit
7dc8b5e7aefce963a7a222c48ee3506725c4776b )
Stanislav Malyshev [Tue, 11 Oct 2016 20:30:52 +0000 (13:30 -0700)]
Fix bug #73293 - NULL pointer dereference in SimpleXMLElement::asXML()
(cherry picked from commit
96a8cf8e1b5dc1b0c708bb5574e0d6727cc56d9e )
(cherry picked from commit
4ef79370a82d6c92f4ea0cd462274ba24e007f56 )
Stanislav Malyshev [Tue, 11 Oct 2016 06:42:50 +0000 (23:42 -0700)]
Fix for #73240 - Write out of bounds at number_format
(cherry picked from commit
8259130b6bc752968856b352c9e7f8e03a8c0a8e )
(cherry picked from commit
01280f8deb837a61237a619cffa886d7f8c31963 )
Anatol Belski [Wed, 12 Oct 2016 11:28:23 +0000 (13:28 +0200)]
avoid strlen
(cherry picked from commit
aaa5d07365b54f35ba3b5024492450f3d2fe4ee5 )
Stanislav Malyshev [Wed, 5 Oct 2016 05:40:09 +0000 (22:40 -0700)]
Bug #73218: add mitigation for ICU int overflow
(cherry picked from commit
d946d102936525bc7dcd01f3827d0a6e0bb971b0 )
(cherry picked from commit
b26b02b2df95eaa647ea3f4e7b42bd11eea4ed2c )
Stanislav Malyshev [Wed, 5 Oct 2016 04:28:40 +0000 (21:28 -0700)]
Add more locale length checks, due to ICU bugs.
(cherry picked from commit
d3eb58332af433982f1e2ae9095fb087974a95f2 )
(cherry picked from commit
87a8240b5adc730153e6df54f33195aee1325e6f )
Stanislav Malyshev [Mon, 26 Sep 2016 04:25:01 +0000 (21:25 -0700)]
Fix bug #73150: missing NULL check in dom_document_save_html
(cherry picked from commit
1c0e9126fbfb7fde3173347b7464237f56c38bfa )
(cherry picked from commit
d1e878f2726e65502fdd992c5b57feeada57893f )
Stanislav Malyshev [Tue, 11 Oct 2016 06:42:50 +0000 (23:42 -0700)]
Fix for #73240 - Write out of bounds at number_format
(cherry picked from commit
3b5262ec4c9a6f985f8ff1fb4a7bed18f1b48f75 )
Stanislav Malyshev [Tue, 11 Oct 2016 05:54:29 +0000 (22:54 -0700)]
Fix bug #73257 and bug #73258 - SplObjectStorage unserialize allows use of non-object as key
(cherry picked from commit
61cdd1255d5b9c8453be71aacbbf682796ac77d4 )
Stanislav Malyshev [Sun, 25 Sep 2016 23:43:24 +0000 (16:43 -0700)]
Fix bug #73091 - Unserializing DateInterval object may lead to __toString invocation
(cherry picked from commit
1b29e4488e19c89e5b37ecb26acaec443d7f1355 )
Xinchen Hui [Wed, 12 Oct 2016 08:07:56 +0000 (16:07 +0800)]
Fixed bug #73288 (Segfault in __clone > Exception.toString > __get)
Actually this is caused by optimization(opcache)
(cherry picked from commit
d19898b2981c839f0758571c1b83052111634154 )
Sara Golemon [Wed, 12 Oct 2016 04:35:10 +0000 (21:35 -0700)]
Clear FG(user_stream_current_filename) when bailing out
If a userwrapper opener E_ERRORs then FG(user_stream_current_filename)
would remain set until the next request and would not be pointing
at unallocated memory.
Catch the bailout, clear the variable, then continue bailing.
Closes https://bugs.php.net/bug.php?id=73188
(cherry picked from commit
9f86cdaf7fc44c0d97a35bc4d04622e3d3d53f4d )
Dmitry Stogov [Tue, 11 Oct 2016 12:43:23 +0000 (15:43 +0300)]
Fixed referencecounter inference rules
(cherry picked from commit
6046a99b97b5abab2e75d73bc9d73062f1943126 )
Dmitry Stogov [Mon, 10 Oct 2016 22:58:30 +0000 (01:58 +0300)]
Fixed referencecounter inference rules
(cherry picked from commit
fae7d6b9bbb3eaf053fb9eb43bc5ceabb34c87f7 )
Anatol Belski [Mon, 10 Oct 2016 13:59:52 +0000 (15:59 +0200)]
add test for bug #73037
(cherry picked from commit
256b150a963337eeea5d42e3769ebf5ae45f50c8 )
Yasuo Ohgaki [Thu, 13 Oct 2016 22:52:51 +0000 (07:52 +0900)]
Update UPGRADING
Anatol Belski [Thu, 13 Oct 2016 13:39:02 +0000 (15:39 +0200)]
missed piece for renaming
Anatol Belski [Thu, 13 Oct 2016 13:23:15 +0000 (15:23 +0200)]
rename publicly exposed symbol to avoid name conflicts
Bob Weinand [Thu, 13 Oct 2016 12:09:12 +0000 (14:09 +0200)]
Ignore non-executable opcodes in line mode of phpdbg_end_oplog()
Christoph M. Becker [Thu, 13 Oct 2016 09:24:03 +0000 (11:24 +0200)]
Merge branch 'PHP-5.6' into PHP-7.0
Christoph M. Becker [Thu, 13 Oct 2016 09:10:02 +0000 (11:10 +0200)]
Fix #73280: Stack Buffer Overflow in GD dynamicGetbuf
We make sure to never pass a negative `rlen` as size to memcpy().
Cf. <https://github.com/libgd/libgd/commit/
53110871 >.
Anatol Belski [Thu, 13 Oct 2016 07:55:37 +0000 (09:55 +0200)]
use already exported symbol
Anatol Belski [Thu, 13 Oct 2016 07:50:32 +0000 (09:50 +0200)]
Revert "export symbol missing by phpdbg"
This reverts commit
611ab7fe5b9fe41de56c25b1d348a866794b1fb1 .
Overseen strpprintf is there
Stanislav Malyshev [Thu, 13 Oct 2016 06:19:07 +0000 (23:19 -0700)]
Fix outlen for openssl function
Stanislav Malyshev [Thu, 13 Oct 2016 06:08:30 +0000 (23:08 -0700)]
Syncronize with 5.6 - __toString should return ""
Stanislav Malyshev [Thu, 13 Oct 2016 06:07:47 +0000 (23:07 -0700)]
Fix potential overflows in php_pcre_replace_impl
Anatol Belski [Wed, 12 Oct 2016 23:31:36 +0000 (01:31 +0200)]
Merge branch 'PHP-5.6' into PHP-7.0
Keith Smiley [Mon, 27 Jun 2016 18:23:15 +0000 (14:23 -0400)]
Fixed bug #73237
Mitch Hagstrand [Wed, 12 Oct 2016 01:18:59 +0000 (20:18 -0500)]
Fixed bug in zend_accel_error() and cleaned up kill_all_lockers()
Bob Weinand [Wed, 12 Oct 2016 20:54:32 +0000 (22:54 +0200)]
Update NEWS
Nikita Popov [Wed, 12 Oct 2016 20:41:59 +0000 (22:41 +0200)]
Fix phpdbg tests after lineno change
Nikita Popov [Wed, 12 Oct 2016 20:16:20 +0000 (22:16 +0200)]
Fix line number of implicit return in pseudo-main scope
Anatol Belski [Wed, 12 Oct 2016 20:18:05 +0000 (22:18 +0200)]
export symbol missing by phpdbg
Bob Weinand [Wed, 12 Oct 2016 20:16:11 +0000 (22:16 +0200)]
Fix accidental PHPDBG_ABI break
Stanislav Malyshev [Thu, 29 Sep 2016 06:30:48 +0000 (23:30 -0700)]
Fix bug #73189 - Memcpy negative size parameter php_resolve_path
(cherry picked from commit
da7e89cde880c66887caacd0a3eae7ecdacf9b2a )
Anatol Belski [Wed, 12 Oct 2016 18:52:46 +0000 (20:52 +0200)]
update len in fallback cases
Bob Weinand [Wed, 12 Oct 2016 18:11:51 +0000 (20:11 +0200)]
Add stdin command and -s command line parameter to phpdbg
Stanislav Malyshev [Mon, 3 Oct 2016 07:09:02 +0000 (00:09 -0700)]
Fix bug #73190: memcpy negative parameter _bc_new_num_ex
(cherry picked from commit
40e7baab3c90001beee4c8f0ed0ef79ad18ee0d6 )
Stanislav Malyshev [Mon, 26 Sep 2016 02:53:59 +0000 (19:53 -0700)]
Fix bug #73147: Use After Free in PHP7 unserialize()
(cherry picked from commit
0e6fe3a4c96be2d3e88389a5776f878021b4c59f )
Anatol Belski [Wed, 12 Oct 2016 15:12:38 +0000 (17:12 +0200)]
fix typo
Anatol Belski [Wed, 12 Oct 2016 14:11:32 +0000 (16:11 +0200)]
Revert "Fix for #73240 - Write out of bounds at number_format"
This reverts commit
01280f8deb837a61237a619cffa886d7f8c31963 .
The fix is already merged by Stas.
Anatol Belski [Wed, 12 Oct 2016 14:03:35 +0000 (16:03 +0200)]
followup with #73276 merge
Anatol Belski [Wed, 12 Oct 2016 14:03:09 +0000 (16:03 +0200)]
fix test
Stanislav Malyshev [Tue, 11 Oct 2016 20:37:47 +0000 (13:37 -0700)]
Fix bug #73276 - crash in openssl_random_pseudo_bytes function
(cherry picked from commit
85a22a0af0722ef3a8d49a056a0b2b18be1fb981 )
Stanislav Malyshev [Tue, 11 Oct 2016 20:30:52 +0000 (13:30 -0700)]
Fix bug #73293 - NULL pointer dereference in SimpleXMLElement::asXML()
(cherry picked from commit
96a8cf8e1b5dc1b0c708bb5574e0d6727cc56d9e )
Stanislav Malyshev [Tue, 11 Oct 2016 06:42:50 +0000 (23:42 -0700)]
Fix for #73240 - Write out of bounds at number_format
(cherry picked from commit
8259130b6bc752968856b352c9e7f8e03a8c0a8e )
Anatol Belski [Wed, 12 Oct 2016 11:28:23 +0000 (13:28 +0200)]
avoid strlen
Stanislav Malyshev [Wed, 5 Oct 2016 05:40:09 +0000 (22:40 -0700)]
Bug #73218: add mitigation for ICU int overflow
(cherry picked from commit
d946d102936525bc7dcd01f3827d0a6e0bb971b0 )
Stanislav Malyshev [Wed, 5 Oct 2016 04:28:40 +0000 (21:28 -0700)]
Add more locale length checks, due to ICU bugs.
(cherry picked from commit
d3eb58332af433982f1e2ae9095fb087974a95f2 )
Stanislav Malyshev [Mon, 26 Sep 2016 04:25:01 +0000 (21:25 -0700)]
Fix bug #73150: missing NULL check in dom_document_save_html
(cherry picked from commit
1c0e9126fbfb7fde3173347b7464237f56c38bfa )
Sara Golemon [Wed, 12 Oct 2016 04:14:25 +0000 (21:14 -0700)]
Clear FG(user_stream_current_filename) when bailing out
Sara Golemon [Wed, 12 Oct 2016 04:35:10 +0000 (21:35 -0700)]
Clear FG(user_stream_current_filename) when bailing out
Stanislav Malyshev [Tue, 11 Oct 2016 23:46:51 +0000 (16:46 -0700)]
Merge branch 'PHP-7.0.12' into PHP-7.0
Stanislav Malyshev [Tue, 11 Oct 2016 23:27:13 +0000 (16:27 -0700)]
Merge remote-tracking branch 'origin/PHP-7.0.12' into PHP-7.0.12
Stanislav Malyshev [Tue, 11 Oct 2016 23:26:35 +0000 (16:26 -0700)]
Merge branch 'PHP-5.6.27' into PHP-5.6
Stanislav Malyshev [Tue, 11 Oct 2016 23:16:20 +0000 (16:16 -0700)]
Fix tests
projects / php / log