5.2.7RC1 out!
うぉっ!出るとは思っていませんでした(1・2・3・4・5)。
5.2.6から5.2.7RC1までの修正状況は以下の通り。
結構、修正されているんですね。。。って、朝の4時までバグ潰しだったので眠い。。。バグっていってもプログラムのバグではなくて(結局は)人のバグ。プログラムを責めないで、という感じ。後、2週間くらいはグダグダな感じが続きそう。
CVEへの対応がありますが、個人的には影響無し。
--- NEWS 2008/04/30 18:27:55 1.2027.2.547.2.1147 +++ NEWS 2008/10/09 23:12:20 1.2027.2.547.2.1247 @@ -1,5 +1,159 @@ PHP NEWS ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| +09 Oct 2008, PHP 5.2.7RC1 +- Reverted fix for bug #44197 due to behaviour change in minor version. + (Felipe) + +- Added "PHP_INI_SCAN_DIR" environment variable which can be used to either + disable or change the compile time ini scan directory (FR #45114). (Jani) + +- Fixed security issues detailed in CVE-2008-2665 and CVE-2008-2666. + (Christian Hoffmann) +- Fixed simplexml asXML() not to lose encoding when dumping entire document + to file. (Ilia) +- Fixed a crash inside PDO when trying instantiate PDORow manually. (Felipe) +- Fixed build failure of ext/mysqli with libmysql 6.0 - missing rpl + functions. (Andrey) +- Fixed a regression when using strip_tags() and < is within an attribute. + (Scott) +- Fixed a crash on invalid method in ReflectionParameter constructor. + (Christian Seiler) +- Fixed bug #46247 (ibase_set_event_handler() is allowing to pass callback + without event). (Felipe) +- Fixed bug #46215 (json_encode mutates its parameter and has some + class-specific state). (Felipe) +- Fixed bug #46206 (pg_query_params/pg_execute convert passed values to + strings). (Ilia) +- Fixed bug #46191 (BC break: DOMDocument saveXML() doesn't accept null). (Rob) +- Fixed bug #46164 (stream_filter_remove() closes the stream). (Arnaud) +- Fixed bug #46157 (PDOStatement::fetchObject prototype error). (Felipe) +- Fixed bug #46147 (after stream seek, appending stream filter reads + incorrect data). (Greg) +- Fixed bug #46110 (XMLWriter - openmemory() and openuri() leak memory on + multiple calls). (Ilia) +- Fixed bug #46088 (RegexIterator::accept - segfault). (Felipe) +- Fixed bug #46059 (Compile failure under IRIX 6.5.30 building posix.c). + (Arnaud) +- Fixed bug #46053 (SplFileObject::seek - Endless loop). (Arnaud) +- Fixed bug #46051 (SplFileInfo::openFile - memory overlap). (Arnaud) +- Fixed bug #46047 (SimpleXML converts empty nodes into object with nested + array). (Rob) +- Fixed bug #46031 (Segfault in AppendIterator::next). (Arnaud) +- Fixed bug #46029 (Segfault in DOMText when using with Reflection). (Rob) +- Fixed bug #46010 (warnings incorrectly generated for iv in ecb mode). + (Felipe) +- Fixed bug #46003 (isset on nonexisting node return unexpected results). (Rob) +- Fixed bug #45956 (parse_ini_file() does not return false with syntax errors + in parsed file). (Jani) +- Fixed bug #45901 (wddx_serialize_value crash with SimpleXMLElement object). + (Rob) +- Fixed bug #45862 (get_class_vars is inconsistent with 'protected' and + 'private' variables). (ilewis at uk dot ibm dot com, Felipe) +- Fixed bug #45860 (header() function fails to correctly replace all Status + lines). (Dmitry) +- Fixed bug #45805 (Crash on throwing exception from error handler). (Dmitry) +- Fixed bug #45765 (ReflectionObject with default parameters of self::xxx cause + an error). (Felipe) +- Fixed bug #45751 (Using auto_prepend_file crashes (out of scope stack address + use)). (basant dot kukreja at sun dot com) +- Fixed bug #45705 (rfc822_parse_adrlist() modifies passed address parameter). + (Jani) +- Fixed bug #45691 (Some per-dir or runtime settings may leak into other + requests). (Moriyoshi) +- Fixed bug #45581 (htmlspecialchars() double encoding &#x hex items). (Arnaud) +- Fixed bug #45580 (levenshtein() crashes with invalid argument). (Ilia) +- Fixed bug #45575 (Segfault with invalid non-string as event handler callback). + (Christian Seiler) +- Fixed bug #45568 (ISAPI doesn't properly clear auth_digest in header). + (Patch by: navara at emclient dot com) +- Fixed bug #45556 (Return value from callback isn't freed). (Felipe) +- Fixed bug #45555 (Segfault with invalid non-string as + register_introspection_callback). (Christian Seiler) +- Fixed bug #45553 (Using XPath to return values for attributes with a + namespace does not work). (Rob) +- Fixed bug #45486 (mb_send_mail(); header 'Content-Type: text/plain; charset=' + parsing incorrect). (Felipe) +- Fixed bug #45485 (strip_tags and <?XML tag). (Felipe) +- Fixed bug #45460 (imap patch for fromlength fix in imap_headerinfo doesn't + accept lengths of 1024). (Felipe, andrew at lifescale dot com) +- Fixed bug #45449 (filesize() regression using ftp wrapper). + (crrodriguez at suse dot de) +- Fixed bug #45423 (fastcgi parent process doesn't invoke php_module_shutdown + before shutdown) (basant dot kukreja at sun dot com) +- Fixed bug #45406 (session.serialize_handler declared by shared extension + fails). (Kalle, oleg dot grenrus at dynamoid dot com) +- Fixed bug #45405 (snmp extension memory leak). (Federico Cuello, Rodrigo + Campos) +- Fixed bug #45392 (ob_start()/ob_end_clean() and memory_limit). (Arnaud) +- Fixed bug #45382 (timeout bug in stream_socket_enable_crypto). (Ilia) +- Fixed bug #45373 (php crash on query with errors in params). (Felipe) +- Fixed bug #45352 (Segmentation fault because of tick function on second + request). (Dmitry) +- Fixed bug #45312 (Segmentation fault on second request for array functions). + (Dmitry) +- Fixed bug #45251 (double free or corruption with setAttributeNode()). (Rob) +- Fixed bug #45226 and #18916 (xmlrpc_set_type() segfaults and wrong behavior + with valid ISO8601 date string). (Jeff Lawsons) +- Fixed bug #45220 (curl_read callback returns -1 when needs to return + size_t (unsigned)). (Felipe) +- Fixed bug #45181 (chdir() should clear relative entries in stat cache). + (Arnaud) +- Fixed bug #45178 (memory corruption on assignment result of "new" by + reference). (Dmitry) +- Fixed bug #45151 (Crash with URI/file..php (filename contains 2 dots)). + (Dmitry) +- Fixed bug #45139 (ReflectionProperty returns incorrect declaring class). + (Felipe) +- Fixed bug #45124 ($_FILES['upload']['size'] sometimes return zero and + sometimes the filesize). (Arnaud) +- Fixed bug #45028 (CRC32 output endianness is different between crc32() + and hash()). (Tony) +- Fixed bug #45004 (pg_insert() does not accept 4 digit timezone format). + (Ilia) +- Fixed bug #44991 (Compile Failure With freetds0.82). + (jklowden at freetds dot org, matthias at dsx dot at) +- Fixed bug #44925 (preg_grep() modifies input array). (Nuno) +- Fixed bug #44891 Memory leak using registerPHPFunctions and XSLT Variable + as function parameter. (Rob) +- Fixed bug #44830 (Very minor issue with backslash in heredoc). (Matt) +- Fixed bug #44811 (Improve error message when creating a new SoapClient that + contains invalid data). (Markus Fischer, David C) +- Fixed bug #44798 (Memory leak assigning value to attribute). (Ilia) +- Fixed bug #44716 (Progress notifications incorrect). (Hannes) +- Fixed bug #44712 (stream_context_set_params segfaults on invalid arguments). + (Hannes) +- Fixed bug #44617 (wrong HTML entity output when substitute_character=entity). + (Moriyoshi) +- Fixed bug #44425 (Extending PDO/MySQL class with a __call() function doesn't + work). (Johannes) +- Fixed bug #44246 (closedir() accepts a file resource opened by fopen()). + (Dmitry, Tony) +- Fixed bug #44127 (UNIX abstract namespace socket connect does not work). + (Jani) +- Fixed bug #43993 (mb_substr_count() behaves differently to substr_count() with + overlapping needles). (Moriyoshi) +- Fixed Bug #43958 (class name added into the error message). (Dmitry) +- Fixed bug #43941 (json_encode silently cuts non-UTF8 strings). (Stas) +- Fixed bug #43782 (feof() does not detect timeout on socket). (David Soria Parra) +- Fixed bug #43668 (Added odbc.default_cursortype to control the ODBC + cursormodel). (Patrick) +- Fixed bug #43666 (Fixed code to use ODBC 3.52 datatypes for 64bit systems). + (Patrick) +- Fixed bug #43540 (rfc1867 handler newlength problem). (Arnaud) +- Fixed bug #43053 (Regression: some numbers shown in scientific notation). + (int-e at gmx dot de) +- Fixed bug #43045 (SOAP encoding violation on "INF" for type double/float). + (Dmitry) +- Fixed bug #42737 (preg_split('//u') triggers a E_NOTICE with newlines). + (Nuno) +- Fixed bug #42604 ("make test" fails with --with-config-file-scan-dir=path). + (Jani) +- Fixed bug #42318 (problem with nm on AIX, not finding object files). (Dmitry) +- Fixed bug #41348 (OCI8: allow compilation with Oracle 8.1). (Chris Jones) +- Fixed bug #14032 (Mail() always returns false but mail is sent). (Mikko) +- Fixed bug #46222 (ArrayObject EG(uninitialized_var_ptr) overwrite). + (Etienne) + 01 May 2008, PHP 5.2.6 - Fixed two possible crashes inside posix extension (Tony) - Fixed incorrect heredoc handling when label is used within the block.