-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-405d111919 2023-12-29 01:04:00.859622 -------------------------------------------------------------------------------- Name : php Product : Fedora 38 Version : 8.2.14 Release : 1.fc38 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: **PHP version 8.2.14** (21 Dec 2023) **Core:** * Fixed oss-fuzz php#54325 (Use-after-free of name in var-var with malicious error handler). (ilutov) * Fixed oss-fuzz php#64209 (In-place modification of filename in php_message_handler_for_zend). (ilutov) * Fixed bug [GH-12758](https://github.com/php/php-src/issues/12758) / [GH-12768](https://github.com/php/php-src/issues/12768) (Invalid opline in OOM handlers within ZEND_FUNC_GET_ARGS and ZEND_BIND_STATIC). (Florian Engelhardt) * Fix various missing NULL checks. (nielsdos, dstogov) * Fixed bug [GH-12835](https://github.com/php/php-src/issues/12835) (Leak of call->extra_named_params on internal __call). (ilutov) **Date:** * Fixed improbably integer overflow while parsing really large (or small) Unix timestamps. (Derick) **DOM:** * Fixed bug [GH-12616](https://github.com/php/php-src/issues/12616) (DOM: Removing XMLNS namespace node results in invalid default: prefix). (nielsdos) **FPM:** * Fixed bug [GH-12705](https://github.com/php/php-src/issues/12705) (Segmentation fault in fpm_status_export_to_zval). (Patrick Prasse) **FTP:** * Fixed bug [GH-9348](https://github.com/php/php-src/issues/9348) (FTP & SSL session reuse). (nielsdos) **Intl:** * Fixed bug [GH-12635](https://github.com/php/php- src/issues/12635) (Test bug69398.phpt fails with ICU 74.1). (nielsdos) **LibXML:** * Fixed bug [GH-12702](https://github.com/php/php-src/issues/12702) (libxml2 2.12.0 issue building from src). (nono303) * Fixed test failures for libxml2 2.12.0. (nielsdos) **MySQLnd:** * Avoid using uninitialised struct. (mikhainin) * Fixed bug [GH-12791](https://github.com/php/php-src/issues/12791) (Possible dereference of NULL in MySQLnd debug code). (nielsdos) **Opcache:** * Fixed JIT bug (Function JIT emits "Uninitialized string offset" warning at the same time as invalid offset Error). (Girgias) * Fixed JIT bug (JIT emits "Attempt to assign property of non-object" warning at the same time as Error is being thrown). (Girgias) **OpenSSL:** * Fixed bug php#50713 (openssl_pkcs7_verify() may ignore untrusted CAs). (Jakub Zelenka) **PCRE:** * Fixed bug [GH-12628](https://github.com/php/php-src/issues/12628) (The gh11374 test fails on Alpinelinux). (nielsdos) **PDO PGSQL:** * Fixed the default value of $fetchMode in PDO::pgsqlGetNotify() (kocsismate) **PGSQL:** * Fixed bug [GH-12763](https://github.com/php/php-src/issues/12763) wrong argument type for pg_untrace. (degtyarov) **PHPDBG:** * Fixed bug [GH-12675](https://github.com/php/php-src/issues/12675) (MEMORY_LEAK in phpdbg_prompt.c). (nielsdos) **SOAP:** * Fixed bug [GH-12838](https://github.com/php/php-src/issues/12838) ([SOAP] Temporary WSDL cache files not being deleted). (nielsdos) **SPL:** * Fixed bug [GH-12721](https://github.com/php/php-src/issues/12721) (SplFileInfo::getFilename() segfault in combination with GlobIterator and no directory separator). (nielsdos) **SQLite3:** * Fixed bug [GH-12633](https://github.com/php/php-src/issues/12633) (sqlite3_defensive.phpt fails with sqlite 3.44.0). (SakiTakamachi) **Standard:** * Fix memory leak in syslog device handling. (danog) * Fixed bug [GH-12621](https://github.com/php/php-src/issues/12621) (browscap segmentation fault when configured in the vhost). (nielsdos) * Fixed bug [GH-12655](https://github.com/php/php-src/issues/12655) (proc_open() does not take into account references in the descriptor array). (nielsdos) **Streams:** * Fixed bug php#79945 (Stream wrappers in imagecreatefrompng causes segfault). (Jakub Zelenka) -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 20 2023 Remi Collet <remi@xxxxxxxxxxxx> - 8.2.14-1 - Update to 8.2.14 - http://www.php.net/releases/8_2_14.php -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-405d111919' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue