5.2.9 Release

    http://www.php.net/releases/5_2_9.php

    Security fixes:
    • The vulnerability in the imagerotate () function of the GD library due to the lack of checking the value of the clrBack parameter, which is used inside the library as an index for a fixed array, has been fixed.
    • The vulnerability allows an attacker to gain access to any area of ​​the PHP process memory.
    • Fixed a problem leading to the process crash when unpacking a zip file with relative paths inside;
    • Fixed a bug in the explode () function when passing an empty string as a parameter in combination with the negative argument "limit";
    • The possibility of a process crash when passing an incorrect JSON string to the json_decode () function has been fixed.


    The most notable improvements introduced in the new release:
    • Array_unique () function added support for selecting sort type. The default is SORT_REGULAR;
    • Fixed problems in the xml_parse () robot when there were incorrect symbol data in the processed stream or when the parser was launched for the given namespace;
    • A few significant fixes to the mbstring extension;
    • Improved performance of regular expressions when processing UTF-8 strings;
    • Fixed a process crash when several SSL errors occurred;
    • Fixed memory leak in strtotime () function;
    • Bug fixed in SoapClient :: __ soapCall resulting in a process crash;
    • Fixed an issue that could lead to memory corruption when processing the value returned by the function as a link;
    • The FILTER_VALIDATE_EMAIL filter could mark valid email addresses as invalid;
    • The module calculation operator returned an incorrect result on 64-bit Linux assemblies.

    I don’t translate it myself, I took it here: www.opennet.ru I
    congratulate everyone - now all efforts are concentrated on branch 5.3

    Also popular now: