PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in. The goal of the language is to allow web developers to write dynamically generated pages quickly. It is a project of the Apache Software Foundation.
- Core: •Fixed bug #69467 (Wrong checked for the interface by using Trait)
- Fixed bug #69420 (Invalid read in zend_std_get_method)
- Fixed bug #60022 ("use statement [...] has no effect" depends on leading backslash)
- Fixed bug #67314 (Segmentation fault in gc_remove_zval_from_buffer)
- Fixed bug #68652 (segmentation fault in destructor)
- Fixed bug #69419 (Returning compatible sub generator produces a warning)
- Fixed bug #69472 (php_sys_readlink ignores misc errors from GetFinalPathNameByHandleA)
- Fixed bug #69364 (PHP Multipart/form-data remote dos Vulnerability)
- Fixed bug #69403 (str_repeat() sign mismatch based memory corruption)
- Fixed bug #69418 (CVE-2006-7243 fix regressions in 5.4+)
- Fixed bug #69522 (heap buffer overflow in unpack())
- FTP: •Fixed bug #69545 (Integer overflow in ftp_genlist() resulting in heap overflow)
- ODBC: •Fixed bug #69354 (Incorrect use of SQLColAttributes with ODBC 3.0)
- Fixed bug #69474 (ODBC: Query with same field name from two tables returns incorrect result)
- Fixed bug #69381 (out of memory with sage odbc driver)
- OpenSSL: •Fixed bug #69402 (Reading empty SSL stream hangs until timeout)
- PCNTL: •Fixed bug #68598 (pcntl_exec() should not allow null char)
- PCRE: •Upgraded pcrelib to 8.37
- Phar: •Fixed bug #69453 (Memory Corruption in phar_parse_tarfile when entry filename starts with null)
Reviewing 5.6.7 (Mar 22, 2015)
Dear Betanews, get a handle on the spam or your site will be no better than your typical spam-link blog. PHP is fantastic BTW.
Reviewing 5.6.3 (Nov 14, 2014)
4 stars! great stuff
Reviewing 5.4.3 (May 9, 2012)
5.4.3 already .. better check the change log .. Yep:
"PHP 5.4.3 fixes a buffer overflow vulnerability in the apache_request_headers() (CVE-2012-2329)."
This exploit only applies to those running PHP in CGI form, afaik. Use a DSO module in Apache is not affected.
Reviewing 5.4.0 Alpha 1 (Jul 1, 2011)
With C & C++ syntax being most natural feeling to me, I always use PHP for web coding tasks. I've actually ended up building fairly elaborate order processing, support, and fulfillment systems with it. To say it is easy would be an understatement. Not only is PHP 'natural' for people like me, but it is very forgiving for people just learning - not quite so strict on syntax, though of course it must have certain syntactical rules. Wonderful language. I'm glad it is continually improved as well.
Reviewing 5.3.3 (Dec 14, 2010)
I love PHP, so I cannot be neutral... but now 5.x rocks.
No comments yet