PHP 5.6.40-3, 7.0.33-3, 7.1.28, 7.2.18, and 7.3.5 released
Posted on: 05/02/2019 05:40 PM

The following PHP versions has been released: PHP 5.6.40-3, 7.0.33-3, 7.1.28, 7.2.18, and 7.3.5

PHP 5.6.40-3
Backported from 7.1.29

- EXIF
. Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG).
(CVE-2019-11036) (Stas)

Download

PHP 7.0.33-3
Backported from 7.1.29

- EXIF
. Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG).
(CVE-2019-11036) (Stas)

- Mail
. Fixed bug #77821 (Potential heap corruption in TSendMail()). (cmb)

Download

PHP 7.1.29
02 May 2019, PHP 7.1.29

- EXIF
. Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG).
(CVE-2019-11036) (Stas)

- Mail
. Fixed bug #77821 (Potential heap corruption in TSendMail()). (cmb)

Download

PHP 7.2.18
02 May 2019, PHP 7.2.18

- CLI:
. Fixed bug #77794 (Incorrect Date header format in built-in server).
(kelunik)

- EXIF
. Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG).
(CVE-2019-11036) (Stas)

- Interbase:
. Fixed bug #72175 (Impossibility of creating multiple connections to
Interbase with php 7.x). (Nikita)

- Intl:
. Fixed bug #77895 (IntlDateFormatter::create fails in strict mode if $locale
= null). (Nikita)

- litespeed:
. LiteSpeed SAPI 7.3.1, better process management, new API function
litespeed_finish_request(). (George Wang)

- Mail
. Fixed bug #77821 (Potential heap corruption in TSendMail()). (cmb)

- PCRE:
. Fixed bug #77827 (preg_match does not ignore \r in regex flags). (requinix,
cmb)

- PDO:
. Fixed bug #77849 (Disable cloning of PDO handle/connection objects).
(camporter)

- phpdbg:
. Fixed bug #76801 (too many open files). (alekitto)
. Fixed bug #77800 (phpdbg segfaults on listing some conditional breakpoints).
(krakjoe)
. Fixed bug #77805 (phpdbg build fails when readline is shared). (krakjoe)

- Reflection:
. Fixed bug #77772 (ReflectionClass::getMethods(null) doesn't work). (Nikita)
. Fixed bug #77882 (Different behavior: always calls destructor). (Nikita)

- Standard:
. Fixed bug #77680 (recursive mkdir on ftp stream wrapper is incorrect).
(Vlad Temian)
. Fixed bug #77844 (Crash due to null pointer in parse_ini_string with
INI_SCANNER_TYPED). (Nikita)
. Fixed bug #77853 (Inconsistent substr_compare behaviour with empty
haystack). (Nikita)

Download

PHP 7.3.5
02 May 2019, PHP 7.3.5

- Core:
. Fixed bug #77903 (ArrayIterator stops iterating after offsetSet call).
(Nikita)

- CLI:
. Fixed bug #77794 (Incorrect Date header format in built-in server).
(kelunik)

- EXIF
. Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG).
(CVE-2019-11036) (Stas)

- Interbase:
. Fixed bug #72175 (Impossibility of creating multiple connections to
Interbase with php 7.x). (Nikita)

- Intl:
. Fixed bug #77895 (IntlDateFormatter::create fails in strict mode if $locale
= null). (Nikita)

- litespeed:
. LiteSpeed SAPI 7.3.1, better process management, new API function
litespeed_finish_request(). (George Wang)

- LDAP:
. Fixed bug #77869 (Core dump when using server controls) (mcmic)

- Mail
. Fixed bug #77821 (Potential heap corruption in TSendMail()). (cmb)

- mbstring:
. Implemented FR #72777 (Implement regex stack limits for mbregex functions).
(Yasuo Ohgaki, Stas)

- MySQLi:
. Fixed bug #77773 (Unbuffered queries leak memory - MySQLi / mysqlnd).
(Nikita)

- PCRE:
. Fixed bug #77827 (preg_match does not ignore \r in regex flags). (requinix,
cmb)

- PDO:
. Fixed bug #77849 (Disable cloning of PDO handle/connection objects).
(camporter)

- phpdbg:
. Fixed bug #76801 (too many open files). (alekitto)
. Fixed bug #77800 (phpdbg segfaults on listing some conditional breakpoints).
(krakjoe)
. Fixed bug #77805 (phpdbg build fails when readline is shared). (krakjoe)

- Reflection:
. Fixed bug #77772 (ReflectionClass::getMethods(null) doesn't work). (Nikita)
. Fixed bug #77882 (Different behavior: always calls destructor). (Nikita)

- Standard:
. Fixed bug #77793 (Segmentation fault in extract() when overwriting
reference with itself). (Nikita)
. Fixed bug #77844 (Crash due to null pointer in parse_ini_string with
INI_SCANNER_TYPED). (Nikita)
. Fixed bug #77853 (Inconsistent substr_compare behaviour with empty
haystack). (Nikita)

Download


Printed from CompatDB (https://www.compatdb.org/news/story/php_5_6_40_37_33_37_1_287_2_18and_7_3_5_released.html)