5.2.12C1 out!
RC1の登場です(1・2・3・4・5)。
5.2.11から5.2.12RC1までの修正状況は以下の通り。とりあえず、PHP 5.2.12RC1部分のみ抽出。
こちらのほうにも php.iniにmax_file_uploads ディレクティブが追加された模様(デフォルトは20)。個人的には10でも多いような気が。
--- php/php-src/branches/PHP_5_2/NEWS 2009/09/16 12:55:12 288373 +++ php/php-src/branches/PHP_5_2/NEWS 2009/11/12 15:51:39 290588 @@ -1,80 +1,132 @@ PHP NEWS ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| -17 Sep 2009, PHP 5.2.11 -- Fixed certificate validation inside php_openssl_apply_verification_policy. - (Ryan Sleevi, Ilia) +12 Nov 2009, PHP 5.2.12RC1 +- Updated timezone database to version 2009.18 (2009r). (Derick) +- Added "max_file_uploads" INI directive, which can be set to limit the + number of file uploads per-request to 20 by default, to prevent possible + DOS via temporary file exhaustion. (Ilia) + +- Fixed unnecessary invocation of setitimer when timeouts have been disabled. + (Arvind Srinivasan) +- Fixed crash in com_print_typeinfo when an invalid typelib is given. + (Pierre) +- Fixed a safe_mode bypass in tempnam() identified by Grzegorz Stachowiak. + (Rasmus) +- Fixed a open_basedir bypass in posix_mkfifo() identified by Grzegorz + Stachowiak. (Rasmus) +- Fixed crash in SQLiteDatabase::ArrayQuery() and SQLiteDatabase::SingleQuery() + when calling using Reflection. (Felipe) +- Fixed crash when instantiating PDORow and PDOStatement through Reflection. + (Felipe) +- Fixed memory leak in openssl_pkcs12_export_to_file(). (Felipe)