File tree Expand file tree Collapse file tree 1 file changed +30
-1
lines changed Expand file tree Collapse file tree 1 file changed +30
-1
lines changed Original file line number Diff line number Diff line change @@ -4,9 +4,38 @@ PHP NEWS
44
55?? ?? 2016, PHP 5.5.37
66
7- -GD:
7+ - Core:
8+ . Fixed bug #72268 (Integer Overflow in nl2br()). (Stas)
9+ . Fixed bug #72275 (Integer Overflow in json_encode()/json_decode()/
10+ json_utf8_to_utf16()). (Stas)
11+ . Fixed bug #72400 (Integer Overflow in addcslashes/addslashes). (Stas)
12+ . Fixed bug #72403 (Integer Overflow in Length of String-typed ZVAL). (Stas)
13+
14+ - GD:
815 . Fixed bug #66387 (Stack overflow with imagefilltoborder) (CVE-2015-8874).
916 (cmb)
17+ . Fixed bug #72298 (pass2_no_dither out-of-bounds access). (Stas)
18+ . Fixed bug #72339 (Integer Overflow in _gd2GetHeader() resulting in
19+ heap overflow). (Pierre)
20+ . Fixed bug #72407 (NULL Pointer Dereference at _gdScaleVert). (Stas)
21+
22+ - mbstring:
23+ . Fixed bug #72402 (_php_mb_regex_ereg_replace_exec - double free). (Stas)
24+
25+ - mcrypt:
26+ . Fixed bug #72455 (Heap Overflow due to integer overflows). (Stas)
27+
28+ - SPL:
29+ . Fixed bug #72340 (int/size_t confusion in SplFileObject::fread). (Stas)
30+ . Fixed bug #72433 (Use After Free Vulnerability in PHP's GC algorithm and
31+ unserialize). (Dmitry)
32+
33+ - WDDX:
34+ . Fixed bug #72298 (Double Free Courruption in wddx_deserialize). (Stas)
35+
36+ - zip:
37+ . Fixed bug #72434 (ZipArchive class Use After Free Vulnerability in PHP's GC
38+ algorithm and unserialize). (Dmitry)
1039
114026 May 2016, PHP 5.5.36
1241
You can’t perform that action at this time.
0 commit comments