-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-4df9e5183e 2024-11-01 02:43:46.228411 -------------------------------------------------------------------------------- Name : php Product : Fedora 40 Version : 8.3.13 Release : 1.fc40 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: PHP version 8.3.13 (24 Oct 2024) Calendar: Fixed GH-16240: jdtounix overflow on argument value. (David Carlier) Fixed GH-16241: easter_days/easter_date overflow on year argument. (David Carlier) Fixed GH-16263: jddayofweek overflow. (cmb) Fixed GH-16234: jewishtojd overflow. (nielsdos) CLI: Fixed bug GH-16137: duplicate http headers when set several times by the client. (David Carlier) Core: Fixed bug GH-16054 (Segmentation fault when resizing hash table iterator list while adding). (nielsdos) Fixed bug GH-15905 (Assertion failure for TRACK_VARS_SERVER). (cmb) Fixed bug GH-15907 (Failed assertion when promoting Serialize deprecation to exception). (ilutov) Fixed bug GH-15851 (Segfault when printing backtrace during cleanup of nested generator frame). (ilutov) Fixed bug GH-15866 (Core dumped in Zend/zend_generators.c). (Arnaud) Fixed bug GH-16188 (Assertion failure in Zend/zend_exceptions.c). (Arnaud) Fixed bug GH-16233 (Observer segfault when calling user function in internal function via trampoline). (nielsdos) DOM: Fixed bug GH-16039 (Segmentation fault (access null pointer) in ext/dom/parentnode/tree.c). (nielsdos) Fixed bug GH-16149 (Null pointer dereference in DOMElement->getAttributeNames()). (nielsdos) Fixed bug GH-16151 (Assertion failure in ext/dom/parentnode/tree.c). (nielsdos) Fixed bug GH-16150 (Use after free in php_dom.c). (nielsdos) Fixed bug GH-16152 (Memory leak in DOMProcessingInstruction/DOMDocument). (nielsdos) JSON: Fixed bug GH-15168 (stack overflow in json_encode()). (nielsdos) GD: Fixed bug GH-16232 (bitshift overflow on wbmp file content reading / fix backport from upstream). (David Carlier) Fixed bug GH-12264 (overflow/underflow on imagerotate degrees value) (David Carlier) Fixed bug GH-16274 (imagescale underflow on RBG channels / fix backport from upstream). (David Carlier) LDAP: Fixed bug GH-16032 (Various NULL pointer dereferencements in ldap_modify_batch()). (Girgias) Fixed bug GH-16101 (Segfault in ldap_list(), ldap_read(), and ldap_search() when LDAPs array is not a list). (Girgias) Fix GH-16132 (php_ldap_do_modify() attempts to free pointer not allocated by ZMM.). (Girgias) Fix GH-16136 (Memory leak in php_ldap_do_modify() when entry is not a proper dictionary). (Girgias) MBString: Fixed bug GH-16261 (Reference invariant broken in mb_convert_variables()). (nielsdos) OpenSSL: Fixed stub for openssl_csr_new. (Jakub Zelenka) PCRE: Fixed bug GH-16189 (underflow on offset argument). (David Carlier) Fixed bug GH-16184 (UBSan address overflowed in ext/pcre/php_pcre.c). (nielsdos) PHPDBG: Fixed bug GH-15901 (phpdbg: Assertion failure on i funcs). (cmb) Fixed bug GH-16181 (phpdbg: exit in exception handler reports fatal error). (cmb) Reflection: Fixed bug GH-16187 (Assertion failure in ext/reflection/php_reflection.c). (DanielEScherzer) SAPI: Fixed bug GH-15395 (php-fpm: zend_mm_heap corrupted with cgi-fcgi request). (Jakub Zelenka, David Carlier) SimpleXML: Fixed bug GH-15837 (Segmentation fault in ext/simplexml/simplexml.c). (nielsdos) Sockets: Fixed bug GH-16267 (socket_strerror overflow on errno argument). (David Carlier) SOAP: Fixed bug php#73182 (PHP SOAPClient does not support stream context HTTP headers in array form). (nielsdos) Fixed bug php#62900 (Wrong namespace on xsd import error message). (nielsdos) Fixed bug GH-15711 (SoapClient can't convert BackedEnum to scalar value). (nielsdos) Fixed bug GH-16237 (Segmentation fault when cloning SoapServer). (nielsdos) Fix Soap leaking http_msg on error. (nielsdos) Fixed bug GH-16256 (Assertion failure in ext/soap/php_encoding.c:460). (nielsdos) Fixed bug GH-16259 (Soap segfault when classmap instantiation fails). (nielsdos) SPL: Fixed bug GH-15918 (Assertion failure in ext/spl/spl_fixedarray.c). (nielsdos) Standard: Fixed bug GH-16053 (Assertion failure in Zend/zend_hash.c). (Arnaud) Fixed bug GH-15169 (stack overflow when var serialization in ext/standard/var). (nielsdos) Streams: Fixed bugs GH-15908 and GH-15026 (leak / assertion failure in streams.c). (nielsdos) Fixed bug GH-15980 (Signed integer overflow in main/streams/streams.c). (cmb) TSRM: Prevent closing of unrelated handles. (cmb) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 23 2024 Remi Collet <remi@xxxxxxxxxxxx> - 8.3.13-1 - Update to 8.3.13 - http://www.php.net/releases/8_3_13.php -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-4df9e5183e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
