HomeFreeBSD

Update PHP 7.2 from 7.2.20 to 7.2.21

Description

Update PHP 7.2 from 7.2.20 to 7.2.21

Changelog:

Date:
    Fixed bug #69044 (discrepency between time and microtime).
EXIF:
    Fixed bug #78256 (heap-buffer-overflow on exif_process_user_comment). (CVE-2019-11042)
    Fixed bug #78222 (heap-buffer-overflow on exif_scan_thumbnail). (CVE-2019-11041)
Fileinfo:
    Fixed bug #78183 (finfo_file shows wrong mime-type for .tga file).
FTP:
    Fixed bug #77124 (FTP with SSL memory leak).
Libxml:
    Fixed bug #78279 (libxml_disable_entity_loader settings is shared between requests (cgi-fcgi)).
LiteSpeed:
    Updated to LiteSpeed SAPI V7.4.3 (increased response header count limit from 100 to 1000, added crash handler to cleanly shutdown PHP request, added CloudLinux mod_lsapi mode).
    Fixed bug #76058 (After "POST data can't be buffered", using php://input makes huge tmp files).
Openssl:
    Fixed bug #78231 (Segmentation fault upon stream_socket_accept of exported socket-to-stream).
OPcache:
    Fixed bug #78189 (file cache strips last character of uname hash).
    Fixed bug #78202 (Opcache stats for cache hits are capped at 32bit NUM).
    Fixed bug #78291 (opcache_get_configuration doesn't list all directives).
Phar:
    Fixed bug #77919 (Potential UAF in Phar RSHUTDOWN).
Phpdbg:
    Fixed bug #78297 (Include unexistent file memory leak).
PDO_Sqlite:
    Fixed bug #78192 (SegFault when reuse statement after schema has changed).
SQLite:
    Upgraded to SQLite 3.28.0.
Standard:
    Fixed bug #78241 (touch() does not handle dates after 2038 in PHP 64-bit).
    Fixed bug #78269 (password_hash uses weak options for argon2).
XMLRPC:
    Fixed bug #78173 (XML-RPC mutates immutable objects during encoding).

Changelog taken from: https://www.php.net/ChangeLog-7.php#7.2.21

MFH: 2019Q3

Details

Provenance
tzAuthored on
Parents
rP507977: Update PHP 7.1 from 7.1.30 to 7.1.31
Branches
Unknown
Tags
Unknown