Implemented FR (), SplFileInfo::getLinkTarget on Windows.
Implemented symbolic links support for open_basedir checks. (nick dot telford at gmail dot com, Arnaud) Implemented FR (), added functions pcntl_get_last_error() and pcntl_strerror(). Implemented FR (), added new constant ZEND_MULTIBYTE to detect zend multibyte at runtime. It now takes a charset hint, like htmlentities et al. Added a 3rd parameter to get_html_translation_table. Improved support for is_link and related functions on Windows. Added follow_location (enabled by default) option for the http stream support. Fix 52929 CVE-2010-3710 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data) (Adam). Fixed symbolic resolution support when the target is a DFS share. CVE-2010-3436 Fixed possible flaw in open_basedir (Pierre). CVE-2010-3709 Fixed NULL pointer dereference in ZipArchive::getArchiveComment. CVE-2010-4150 Fixed a possible double free in imap extension (Identified by Mateusz Kocielski). Paths with NULL in them (foo\0bar.txt) are now considered as invalid. 
Fixed crash in zip extract method (possible CWE-170).
To download the source code for this release please view the sources.
Implemented FR #52348, added new constant ZEND_MULTIBYTE to detect zend multibyte at runtime.įor users upgrading from PHP 5.2 there is a migration guide available here, detailing the changes between those releases and PHP 5.3.įor a full list of changes in PHP 5.3.4, see the ChangeLog. Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data) (CVE-2010-3710). 
Fixed MOPS-2010-24, fix string validation.Fixed possible flaw in open_basedir (CVE-2010-3436).Fixed NULL pointer dereference in ZipArchive::getArchiveComment.Fixed a possible double free in imap extension (Identified by Mateusz Kocielski).Paths with NULL in them (foo\0bar.txt) are now considered as invalid (CVE-2006-7243).Security Enhancements and Fixes in PHP 5.3.4: This is a maintenance release in the 5.3 series, which includes a large number of bug fixes. The PHP development team is proud to announce the immediate release of PHP 5.3.4.
0 kommentar(er)
