| Commit message (Collapse) | Author | Age | Files | Lines |
| | |
|
| |
|
|
| |
AES-WRAP-PAD
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
CVE-2026-6735
Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map
CVE-2026-6722
Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION
CVE-2026-7261
Fix Broken Apache map value NULL check
CVE-2026-7262
Fix Signed integer overflow of char array offset
CVE-2026-7568
Fix Consistently pass unsigned char to ctype.h functions
CVE-2026-7258
|
| |
|
|
|
|
|
|
| |
GHSA-www2-q4fc-65wf
Fix Heap buffer overflow in array_merge()
CVE-2025-14178
Fix Information Leak of Memory in getimagesize
CVE-2025-14177
|
| |
|
|
|
|
|
|
| |
CVE-2025-1735
Fix NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix
CVE-2025-6491
Fix Null byte termination in hostnames
CVE-2025-1220
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
backport fix for ICU 74+
|
| |
|
|
| |
CVE-2024-8929
|
| |
|
|
|
|
|
|
|
|
|
|
| |
GHSA-4w77-75f9-2c8w
Fix OOB access in ldap_escape
CVE-2024-8932
Fix Integer overflow in the dblib/firebird quoter causing OOB writes
CVE-2024-11236
Fix Configuring a proxy in a stream context might allow for CRLF injection in URIs
CVE-2024-11234
Fix Single byte overread with convert.quoted-printable-decode filter
CVE-2024-11233
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
CVE-2024-4577
Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability
CVE-2024-8926
Fix cgi.force_redirect configuration is bypassable due to the environment variable collision
CVE-2024-8927
Fix Logs from childrens may be altered
CVE-2024-9026
Fix Erroneous parsing of multipart form data
CVE-2024-8925
use ICU 74.2
|
| |
|
|
| |
error:14095126:SSL routines:ssl3_read_n:unexpected eof while reading
|
| | |
|
| |
|
|
| |
CVE-2024-5458
|
| |
|
|
|
|
| |
CVE-2024-2756
Fix password_verify can erroneously return true opening ATO risk
CVE-2024-3096
|
| | |
|
| |
|
|
| |
use oracle client library version 21.13 on x86_64
|
| |
|
|
|
| |
use oracle client library version 21.12 on x86_64, 19.19 on aarch64
add fixes for libxml 2.11 and 2.12 from 8.1
|
| |
|
|
| |
use official Oracle Instant Client RPM
|
| |
|
|
|
|
|
| |
GHSA-3qrf-m4j2-pcrr CVE-2023-3823
Fix Buffer mismanagement in phar_dir_read()
GHSA-jqcx-ccgc-xwhv CVE-2023-3824
move httpd/nginx wants directive to config files in /etc
|
| | |
|
| |
|
|
|
| |
authentication for SOAP
GHSA-76gg-c692-v2mw
|
| |
|
|
|
|
| |
use oracle client library version 21.10
fix possible buffer overflow in date
define %php74___phpize and %php74___phpconfig
|
| | |
|
| |
|
|
|
|
|
|
|
| |
CVE-2023-0567
fix #81746: 1-byte array overrun in common path resolve code
CVE-2023-0568
fix DOS vulnerability when parsing multipart request body
CVE-2023-0662
add dependency on pcre2 minimal version
|
| |
|
|
|
| |
CVE-2022-31631
use oracle client library version 21.8
|
| | |
|
| | |
|
| |
|
|
| |
use ICU 71.1
|
| |
|
|
| |
use oracle client library version 21.6
|
| | |
|
| |
|
|
| |
use oracle client library version 21.5
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
use oracle client library version 21.4
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
use libicu version 69
|
| | |
|
| |
|
|
| |
use oracle client library version 21.3
|
| | |
|
| | |
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
ignore unsupported "threads" option on password_hash
|