ZendPHP August 2024 Releases | Zend by Perforce

August 2024

August 29, 2024

Community Fixes

PHP version 8.3.11 fixes

Core
- Fixed bug GH-15020: Memory leak in Zend/Optimizer/escape_analysis.c
- Fixed bug GH-15023: Memory leak in Zend/zend_ini.c
- Fixed bug GH-13330: Append -Wno-implicit-fallthrough flag conditionally
- Fix uninitialized memory in network.c
- Fixed bug GH-15108: Segfault when destroying generator during shutdown
- Fixed bug GH-15275: Crash during GC of suspended generator delegate
Curl
- Fixed case when curl_error returns an empty string
DOM
- Fix UAF when removing doctype and using foreach iteration
FFI
- Fixed bug GH-14286: ffi enum type (when enum has no name) make memory leak
Hash
- Fix crash when converting array data for array in shm in xxh3
Intl
- Fixed bug GH-15087: IntlChar::foldCase()'s $option is not optional
Opcache
- Fixed bug GH-13817: Segmentation fault for enabled observers after pass 4
- Fixed bug GH-13775: Memory leak possibly related to opcache SHM placement
Output
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re
PDO_Firebird
- Fix bogus fallthrough path in firebird_handle_get_attribute()
PHPDBG
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with libedit/readline
- Fixed bug GH-15268: heap buffer overflow in phpdbg (zend_hash_num_elements()Zend/zend_hash.h)
- Fixed bug GH-15210: use-after-free on watchpoint allocations
Random
- Fixed part of bug GH-15381, checking getrandom availability on solaris
Soap
- Fixed bug #55639: Digest autentication dont work
- Fix SoapFault property destruction
- Fixed bug GH-15252: SOAP XML broken since PHP 8.3.9 when using classmap constructor option
Standard
- Fix passing non-finite timeout values in stream functions
- Fixed GH-14780: p(f)sockopen timeout overflow
Streams
- Fixed bug GH-15028: Memory leak in ext/phar/stream.c
- Fixed bug GH-15034: Integer overflow on stream_notification_callbackbyte_max parameter with files bigger than 2GB
- Reverted fix for GH-14930: Custom stream wrapper dir_readdir output truncated to 255 characters
Tidy
- Fix memory leaks in ext/tidy basedir restriction code

PHP version 8.2.23 fixes

Core
- Fixed bug GH-15020: Memory leak in Zend/Optimizer/escape_analysis.c
- Fixed bug GH-15023: Memory leak in Zend/zend_ini.c
- Fixed bug GH-13330: Append -Wno-implicit-fallthrough flag conditionally
- Fix uninitialized memory in network.c
- Fixed bug GH-15108: Segfault when destroying generator during shutdown
- Fixed bug GH-15275: Crash during GC of suspended generator delegate
Curl
- Fixed case when curl_error returns an empty string
DOM
- Fix UAF when removing doctype and using foreach iteration
FFI
- Fixed bug GH-14286: ffi enum type (when enum has no name) make memory leak
Hash
- Fix crash when converting array data for array in shm in xxh3
Intl
- Fixed bug GH-15087: IntlChar::foldCase()'s $option is not optional
Opcache
- Fixed bug GH-13817: Segmentation fault for enabled observers after pass 4
- Fixed bug GH-13775: Memory leak possibly related to opcache SHM placement
Output
- Fixed bug GH-15179: Segmentation fault (null pointer dereference) in ext/standard/url_scanner_ex.re
PDO_Firebird
- Fix bogus fallthrough path in firebird_handle_get_attribute()
PHPDBG
- Fixed bug GH-13199: EOF emits redundant prompt in phpdbg local console mode with libedit/readline
- Fixed bug GH-15268: heap buffer overflow in phpdbg (zend_hash_num_elements()Zend/zend_hash.h)
- Fixed bug GH-15210: use-after-free on watchpoint allocations
Random
- Fixed part of bug GH-15381, checking getrandom availability on solaris
Soap
- Fixed bug #55639: Digest autentication dont work
- Fix SoapFault property destruction
- Fixed bug GH-15252: SOAP XML broken since PHP 8.3.9 when using classmap constructor option
Standard
- Fix passing non-finite timeout values in stream functions
- Fixed GH-14780: p(f)sockopen timeout overflow
Streams
- Fixed bug GH-15028: Memory leak in ext/phar/stream.c
- Fixed bug GH-15034: Integer overflow on stream_notification_callbackbyte_max parameter with files bigger than 2GB
Tidy
- Fix memory leaks in ext/tidy basedir restriction code

August 5, 2024

Community Fixes

PHP version 8.3.10 fixes

Core
- Fixed bug GH-13922: Fixed support for systems with sysconf(_SC_GETPW_R_SIZE_MAX) == -1.
- Fixed bug GH-14626: Fix is_zend_ptr() for huge blocks.
- Fixed bug GH-14590: Memory leak in FPM test gh13563-conf-bool-env.phpt.
- Fixed OSS-Fuzz #69765.
- Fixed bug GH-14741: Segmentation fault in Zend/zend_types.h.
- Fixed bug GH-14969: Use-after-free in property coercion with __toString().
- Fixed bug GH-14961: Comment between -> and keyword results in parse error.
Dom
- Fixed bug GH-14702: DOMDocument::xinclude() crash.
Fileinfo
- Fixed bug GH-14888: README.REDIST.BINS refers to non-existing LICENSE.
Gd
- ext/gd/tests/gh10614.phpt: skip if no PNG support.
- restored warning instead of fata error.
LibXML
- Fixed bug GH-14563: Build failure with libxml2 v2.13.0.
Opcache
- Fixed bug GH-14550: No warning message when Zend DTrace is enabled that opcache.jit is implictly disabled.
Output
- Fixed bug GH-14808: Unexpected null pointer in Zend/zend_string.h with empty output buffer.
PDO
- Fixed bug GH-14712: Crash with PDORow access to null property.
Phar
- Fixed bug GH-14603: null string from zip entry.
PHPDBG
- Fixed bug GH-14596: crashes with ASAN and ZEND_RC_DEBUG=1.
- Fixed bug GH-14553: echo output trimmed at NULL byte.
Shmop
- Fixed bug GH-14537: shmop Windows 11 crashes the process.
SPL
- Fixed bug GH-14639: Member access within null pointer in ext/spl/spl_observer.c.
Standard
- Fix 32-bit wordwrap test failures.
- Fixed bug GH-14774: time_sleep_until overflow.
- Fixed bug GH-14775: range function overflow with negative step argument.
Streams
- Fixed bug GH-14930: Custom stream wrapper dir_readdir output truncated to 255 characters in PHP 8.3.
Tidy
- Fix memory leak in tidy_repair_file().
Treewide
- Fix compatibility with libxml2 2.13.2.
XML
- Move away from to-be-deprecated libxml fields.
- Fixed bug GH-14834: Error installing PHP when --with-pear is used.

PHP version 8.2.22 fixes

SimpleXML
- Fixed bug GH-14638: null dereference after XML parsing failure.
Core
- Fixed bug GH-13922: Fixed support for systems with sysconf(_SC_GETPW_R_SIZE_MAX) == -1.
- Fixed bug GH-14626: Fix is_zend_ptr() for huge blocks.
- Fixed bug GH-14590: Memory leak in FPM test gh13563-conf-bool-env.phpt.
- Fixed OSS-Fuzz #69765.
- Fixed bug GH-14741: Segmentation fault in Zend/zend_types.h.
- Fixed bug GH-14969: Use-after-free in property coercion with __toString().
- Fixed bug GH-14961: Comment between -> and keyword results in parse error.
Dom
- Fixed bug GH-14702: DOMDocument::xinclude() crash.
Gd
- ext/gd/tests/gh10614.phpt: skip if no PNG support.
- restored warning instead of fata error.
LibXML
- Fixed bug GH-14563: Build failure with libxml2 v2.13.0.
Opcache
- Fixed bug GH-14550: No warning message when Zend DTrace is enabled that opcache.jit is implictly disabled.
Output
- Fixed bug GH-14808: Unexpected null pointer in Zend/zend_string.h with empty output buffer.
PDO
- Fixed bug GH-14712: Crash with PDORow access to null property.
Phar
- Fixed bug GH-14603: null string from zip entry.
PHPDBG
- Fixed bug GH-14596: crashes with ASAN and ZEND_RC_DEBUG=1.
- Fixed bug GH-14553: echo output trimmed at NULL byte.
Shmop
- Fixed bug GH-14537: shmop Windows 11 crashes the process.
SPL
- Fixed bug GH-14639: Member access within null pointer in ext/spl/spl_observer.c.
Standard
- Fix 32-bit wordwrap test failures.
- Fixed bug GH-14774: time_sleep_until overflow.
Tidy
- Fix memory leak in tidy_repair_file().
Treewide
- Fix compatibility with libxml2 2.13.2.
XML
- Move away from to-be-deprecated libxml fields.
- Fixed bug GH-14834: Error installing PHP when --with-pear is used.