@@ -46,9 +46,11 @@ PHP NEWS
46
46
47
47
21 Nov 2024, PHP 8.2.26
48
48
49
- - Cli :
49
+ - CLI :
50
50
. Fixed bug GH-16373 (Shebang is not skipped for router script in cli-server
51
51
started through shebang). (ilutov)
52
+ . Fixed bug GHSA-4w77-75f9-2c8w (Heap-Use-After-Free in sapi_read_post_data
53
+ Processing in CLI SAPI Interface). (nielsdos)
52
54
53
55
- COM:
54
56
. Fixed out of bound writes to SafeArray data. (cmb)
@@ -123,10 +125,18 @@ PHP NEWS
123
125
. Fixed segfaults and other issues related to operator overloading with
124
126
GMP objects. (Girgias)
125
127
128
+ - LDAP:
129
+ . Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932)
130
+ (nielsdos)
131
+
126
132
- MBstring:
127
133
. Fixed bug GH-16361 (mb_substr overflow on start/length arguments).
128
134
(David Carlier)
129
135
136
+ - MySQLnd:
137
+ . Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through
138
+ heap buffer over-read). (CVE-2024-8929) (Jakub Zelenka)
139
+
130
140
- OpenSSL:
131
141
. Fixed bug GH-16357 (openssl may modify member types of certificate arrays).
132
142
(cmb)
@@ -135,7 +145,15 @@ PHP NEWS
135
145
. Fix various memory leaks on error conditions in openssl_x509_parse().
136
146
(nielsdos)
137
147
138
- - PDO_ODBC:
148
+ - PDO DBLIB:
149
+ . Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing
150
+ OOB writes). (CVE-2024-11236) (nielsdos)
151
+
152
+ - PDO Firebird:
153
+ . Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter
154
+ causing OOB writes). (CVE-2024-11236) (nielsdos)
155
+
156
+ - PDO ODBC:
139
157
. Fixed bug GH-16450 (PDO_ODBC can inject garbage into field values). (cmb)
140
158
141
159
- Phar:
@@ -180,6 +198,12 @@ PHP NEWS
180
198
. Fixed bug GH-16293 (Failed assertion when throwing in assert() callback with
181
199
bail enabled). (ilutov)
182
200
201
+ - Streams:
202
+ . Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context
203
+ might allow for CRLF injection in URIs). (CVE-2024-11234) (Jakub Zelenka)
204
+ . Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with
205
+ convert.quoted-printable-decode filter). (CVE-2024-11233) (nielsdos)
206
+
183
207
- SysVMsg:
184
208
. Fixed bug GH-16592 (msg_send() crashes when a type does not properly
185
209
serialized). (David Carlier / cmb)
0 commit comments