PageRenderTime 305ms CodeModel.GetById 33ms RepoModel.GetById 1ms app.codeStats 2ms

/ChangeLog-5.php

https://github.com/php/web-php
PHP | 9975 lines | 9604 code | 370 blank | 1 comment | 304 complexity | 98e50c2299e0ff31da1cde14eb0432a8 MD5 | raw file
    

  1. <?php
    2. 

  2. // $Id$
    3. 

  3. $_SERVER['BASE_PAGE'] = 'ChangeLog-5.php';
    4. 

  4. include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
    5. 

  5. include_once $_SERVER['DOCUMENT_ROOT'] . '/include/changelogs.inc';
    6. 

  6. site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("changelog.css"), "layout_span" => 12));
    7. 

  7. ?>
    8. 

  8. 

  9. <h1>PHP 5 ChangeLog</h1>
    10. 

  10. 

  11. <section class="version" id="5.5.17"><!-- {{{ 5.5.17 -->
    12. 

  12. <h3>Version 5.5.17</h3>
    13. 

  13. <?php release_date('18-Sep-2014'); ?>
    14. 

  14. <ul><li>Core:
    15. 

  15. <ul>
    16. 

  16.   <li><?php bugfix(47358); ?> (glob returns error, should be empty array()).</li>
    17. 

  17.   <li><?php bugfix(65463); ?> (SIGSEGV during zend_shutdown()).</li>
    18. 

  18.   <li><?php bugfix(66036); ?> (Crash on SIGTERM in apache process).</li>
    19. 

  19.   <li><?php bugfix(67878); ?> (program_prefix not honoured in man pages).</li>
    20. 

  20. </ul></li>
    21. 

  21. <li>COM:
    22. 

  22. <ul>
    23. 

  23.   <li><?php bugfix(41577); ?> (DOTNET is successful once per server run).</li>
    24. 

  24. </ul></li>
    25. 

  25. <li>Date:
    26. 

  26. <ul>
    27. 

  27.   <li><?php bugfix(66091); ?> (memory leaks in DateTime constructor).</li>
    28. 

  28.   <li><?php bugfix(66985); ?> (Some timezones are no longer valid in PHP 5.5.10).</li>
    29. 

  29.   <li><?php bugfix(67109); ?> (First uppercase letter breaks date string parsing).</li>
    30. 

  30. </ul></li>
    31. 

  31. <li>FPM:
    32. 

  32. <ul>
    33. 

  33.   <li><?php bugfix(67606); ?> (FPM with mod_fastcgi/apache2.4 is broken).</li>
    34. 

  34. </ul></li>
    35. 

  35. <li>GD:
    36. 

  36. <ul>
    37. 

  37.   <li>Made fontFetch's path parser thread-safe.</li>
    38. 

  38. </ul></li>
    39. 

  39. <li>MySQLi:
    40. 

  40. <ul>
    41. 

  41.   <li><?php bugfix(67839); ?> (mysqli does not handle 4-byte floats correctly).</li>
    42. 

  42. </ul></li>
    43. 

  43. <li>OpenSSL:
    44. 

  44. <ul>
    45. 

  45.   <li><?php bugfix(41631); ?> (socket timeouts not honored in blocking SSL reads).</li>
    46. 

  46.   <li><?php bugfix(67850); ?> (extension won't build if openssl compiled without SSLv3).</li>
    47. 

  47. </ul></li>
    48. 

  48. <li>SPL:
    49. 

  49. <ul>
    50. 

  50.   <li><?php bugfix(67813); ?> (CachingIterator::__construct InvalidArgumentException
    51. 

  51.     wrong message).</li>
    52. 

  52. </ul></li>
    53. 

  53. <li>Zlib:
    54. 

  54. <ul>
    55. 

  55.   <li><?php bugfix(67724); ?> (chained zlib filters silently fail with large amounts of 
    56. 

  56.     data).</li>
    57. 

  57.   <li><?php bugfix(67865); ?> (internal corruption phar error).</li>
    58. 

  58. </ul></li>
    59. 

  59. </ul>
    60. 

  60. <!-- }}} --></section>
    61. 

  61. 

  62. <section class="version" id="5.4.33"><!-- {{{ 5.4.33 -->
    63. 

  63. <h3>Version 5.4.33</h3>
    64. 

  64. <b>18-Sep-2014</b>
    65. 

  65. <ul><li>Core:
    66. 

  66. <ul>
    67. 

  67.   <li><?php bugfix(47358); ?> (glob returns error, should be empty array()).</li>
    68. 

  68.   <li><?php bugfix(65463); ?> (SIGSEGV during zend_shutdown()).</li>
    69. 

  69.   <li><?php bugfix(66036); ?> (Crash on SIGTERM in apache process).</li>
    70. 

  70. </ul></li>
    71. 

  71. <li>OpenSSL:
    72. 

  72. <ul>
    73. 

  73.   <li><?php bugfix(41631); ?> (socket timeouts not honored in blocking SSL reads).</li>
    74. 

  74. </ul></li>
    75. 

  75. <li>Date:
    76. 

  76. <ul>
    77. 

  77.   <li><?php bugfix(66091); ?> (memory leaks in DateTime constructor).</li>
    78. 

  78. </ul></li>
    79. 

  79. <li>FPM:
    80. 

  80. <ul>
    81. 

  81.   <li><?php bugfix(67606); ?> (FPM with mod_fastcgi/apache2.4 is broken).</li>
    82. 

  82. </ul></li>
    83. 

  83. <li>GD:
    84. 

  84. <ul>
    85. 

  85.   <li>Made fontFetch's path parser thread-safe.</li>
    86. 

  86. </ul></li>
    87. 

  87. <li>Wddx:
    88. 

  88. <ul>
    89. 

  89.   <li><?php bugfix(67873); ?> (Segfaults in php_wddx_serialize_var).</li>
    90. 

  90. </ul></li>
    91. 

  91. <li>Zlib:
    92. 

  92. <ul>
    93. 

  93.   <li><?php bugfix(67724); ?> (chained zlib filters silently fail with large amounts of data).</li>
    94. 

  94.   <li><?php bugfix(67865); ?> (internal corruption phar error).</li>
    95. 

  95. </ul></li>
    96. 

  96. </ul>
    97. 

  97. <!-- }}} --></section>
    98. 

  98. 

  99. <section class="version" id="5.6.0"><!-- {{{ 5.6.0 -->
    100. 

  100. <h3>Version 5.6.0</h3>
    101. 

  101. <b>28-Aug-2014</b>
    102. 

  102. <ul>
    103. 

  103. <li>General improvements:
    104. 

  104. <ul>
    105. 

  105.  <li>Added constant scalar expressions syntax.</li>
    106. 

  106.  <li>Added dedicated syntax for variadic functions.</li>
    107. 

  107.  <li>Added support for argument unpacking to complement the variadic syntax.</li>
    108. 

  108.  <li>Added an exponentiation operator (**).</li>
    109. 

  109.  <li>Added phpdbg SAPI.</li>
    110. 

  110.  <li>Added unified default encoding.</li>
    111. 

  111.  <li>The php://input stream is now re-usable and can be used concurrently with enable_post_data_reading=0.</li>
    112. 

  112.  <li>Added use function and use const..</li>
    113. 

  113.  <li>Added a function for timing attack safe string comparison.</li>
    114. 

  114.  <li>Added the __debugInfo() magic method to allow userland classes to implement the get_debug_info API previously available only to extensions.</li>
    115. 

  115.  <li>Added gost-crypto (CryptoPro S-box) hash algorithm.</li>
    116. 

  116.  <li>Stream wrappers verify peer certificates and host names by default in encrypted client streams.</li>
    117. 

  117.  <li>Uploads equal or greater than 2GB in size are now accepted.</li>
    118. 

  118. </ul>
    119. 

  119. </li>
    120. 

  120. <li>Core:
    121. 

  121. <ul>
    122. 

  122.   <li><?php bugfix(67693); ?> (incorrect push to the empty array).</li>
    123. 

  123.   <li>Removed inconsistency regarding behaviour of array in constants at run-time.</li>
    124. 

  124.   <li><?php bugfix(67497); ?> (eval with parse error causes segmentation fault in generator).</li>
    125. 

  125.   <li><?php bugfix(67151); ?> (strtr with empty array crashes).</li>
    126. 

  126.   <li><?php bugfix(67407); ?> (Windows 8.1/Server 2012 R2 reported as Windows 8/Server 2012).</li>
    127. 

  127.   <li><?php bugfix(66608); ?> (Incorrect behavior with nested "finally" blocks).</li>
    128. 

  128.   <li>Implemented FR <?php bugl(34407); ?> (ucwords and Title Case).</li>
    129. 

  129.   <li><?php bugfix(67091); ?> (make install fails to install libphp5.so on FreeBSD 10.0).</li>
    130. 

  130.   <li><?php bugfix(67368); ?> (Memory leak with immediately dereferenced array in class constant).</li>
    131. 

  131.   <li><?php bugfix(67468); ?> (Segfault in highlight_file()/highlight_string()).</li>
    132. 

  132.   <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
    133. 

  133.   <li><?php bugfix(67551); ?> (php://input temp file will be located in sys_temp_dir instead of upload_tmp_dir).</li>
    134. 

  134.   <li><?php bugfix(67169); ?> (array_splice all elements, then []= gives wrong index).</li>
    135. 

  135.   <li><?php bugfix(67198); ?> (php://input regression).</li>
    136. 

  136.   <li><?php bugfix(67247); ?> (spl_fixedarray_resize integer overflow).</li>
    137. 

  137.   <li><?php bugfix(67250); ?> (iptcparse out-of-bounds read).</li>
    138. 

  138.   <li><?php bugfix(67252); ?> (convert_uudecode out-of-bounds read).</li>
    139. 

  139.   <li><?php bugfix(67249); ?> (printf out-of-bounds read).</li>
    140. 

  140.   <li>Implemented FR <?php bugl(64744); ?> (Differentiate between member function call on a null and non-null, non-objects).</li>
    141. 

  141.   <li><?php bugfix(67436); ?> (Autoloader isn't called if two method definitions don't match).</li>
    142. 

  142.   <li><?php bugfix(66622); ?> (Closures do not correctly capture the late bound class (static::) in some cases).</li>
    143. 

  143.   <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script). (CVE-2014-3981)</li>
    144. 

  144.   <li><?php bugfix(67392); ?> (dtrace breaks argument unpack).</li>
    145. 

  145.   <li><?php bugfix(67428); ?> (header('Location: foo') will override a 308-399 response code).</li>
    146. 

  146.   <li><?php bugfix(67433); ?> (SIGSEGV when using count() on an object implementing Countable).</li>
    147. 

  147.   <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
    148. 

  148.   <li>Expose get_debug_info class hook as __debugInfo() magic method.</li>
    149. 

  149.   <li>Implemented unified default encoding (RFC: https://wiki.php.net/rfc/default_encoding).</li>
    150. 

  150.   <li>Added T_POW (**) operator (RFC: https://wiki.php.net/rfc/pow-operator).</li>
    151. 

  151.   <li>Improved IS_VAR operands fetching.</li>
    152. 

  152.   <li>Improved empty string handling. Now ZE uses an interned string instead of allocation new empty string each time.</li>
    153. 

  153.   <li>Implemented internal operator overloading (RFC: https://wiki.php.net/rfc/operator_overloading_gmp).</li>
    154. 

  154.   <li>Made calls from incompatible context issue an E_DEPRECATED warning instead of E_STRICT (phase 1 of RFC: https://wiki.php.net/rfc/incompat_ctx).</li>
    155. 

  155.   <li>Uploads equal or greater than 2GB in size are now accepted.</li>
    156. 

  156.   <li>Reduced POST data memory usage by 200-300%. Changed INI setting always_populate_raw_post_data to throw a deprecation warning when enabling and to accept -1 for never populating the $HTTP_RAW_POST_DATA global variable, which will be the default in future PHP versions.</li>
    157. 

  157.   <li>Implemented dedicated syntax for variadic functions (RFC: https://wiki.php.net/rfc/variadics).</li>
    158. 

  158.   <li><?php bugfix(50333); ?> Improving multi-threaded scalability by using emalloc/efree/estrdup (Anatol, Dmitry)</li>
    159. 

  159.   <li>Implemented constant scalar expressions (with support for constants) (RFC: https://wiki.php.net/rfc/const_scalar_exprs).</li>
    160. 

  160.   <li><?php bugfix(65784); ?> (Segfault with finally).</li>
    161. 

  161.   <li><?php bugfix(66509); ?> (copy() arginfo has changed starting from 5.4).</li>
    162. 

  162.   <li>Allow zero length comparison in substr_compare() (Tjerk)</li>
    163. 

  163.   <li><?php bugfix(60602); ?> (proc_open() changes environment array) (Tjerk)</li>
    164. 

  164.   <li><?php bugfix(61019); ?> (Out of memory on command stream_get_contents).</li>
    165. 

  165.   <li><?php bugfix(64330); ?> (stream_socket_server() creates wrong Abstract Namespace UNIX sockets).</li>
    166. 

  166.   <li><?php bugfix(66182); ?> (exit in stream filter produces segfault).</li>
    167. 

  167.   <li><?php bugfix(66736); ?> (fpassthru broken).</li>
    168. 

  168.   <li><?php bugfix(66822); ?> (Cannot use T_POW in const expression) (Tjerk)</li>
    169. 

  169.   <li><?php bugfix(67043); ?> (substr_compare broke by previous change) (Tjerk)</li>
    170. 

  170.   <li><?php bugfix(65701); ?> (copy() doesn't work when destination filename is created by tempnam()).</li>
    171. 

  171.   <li><?php bugfix(66015); ?> (Unexpected array indexing in class's static property).</li>
    172. 

  172.   <li>Added (constant) string/array dereferencing to static scalar expressions to complete the set; now possible thanks to <?php bugl(66015); ?> being fixed.</li>
    173. 

  173.   <li><?php bugfix(66568); ?> (Update reflection information for unserialize() function).</li>
    174. 

  174.   <li><?php bugfix(66660); ?> (Composer.phar install/update fails).</li>
    175. 

  175.   <li><?php bugfix(67024); ?> (getimagesize should recognize BMP files with negative height).</li>
    176. 

  176.   <li><?php bugfix(67064); ?>  (Countable interface prevents using 2nd parameter ($mode) of count() function).</li>
    177. 

  177.   <li><?php bugfix(67072); ?> (Echoing unserialized "SplFileObject" crash).</li>
    178. 

  178.   <li><?php bugfix(67033); ?> (Remove reference to Windows 95).</li>
    179. 

  179. </ul></li>
    180. 

  180. <li>Apache2 Handler SAPI:
    181. 

  181. <ul>
    182. 

  182.   <li>Fixed Apache log issue caused by APR's lack of support for %zu (APR issue https://issues.apache.org/bugzilla/show_bug.cgi?id=56120).</li>
    183. 

  183. </ul></li>
    184. 

  184. <li>CLI server:
    185. 

  185. <ul>
    186. 

  186.   <li>Added some MIME types to the CLI web server.</li>
    187. 

  187.   <li><?php bugfix(67079); ?> (Missing MIME types for XML/XSL files).</li>
    188. 

  188.   <li><?php bugfix(66830); ?> (Empty header causes PHP built-in web server to hang).</li>
    189. 

  189.   <li><?php bugfix(67594); ?> (Unable to access to apache_request_headers() elements).</li>
    190. 

  190.   <li>Implemented FR <?php bugl(67429); ?> (CLI server is missing some new HTTP response codes).</li>
    191. 

  191.   <li><?php bugfix(67406); ?> (built-in web-server segfaults on startup).</li>
    192. 

  192. </ul></li>
    193. 

  193. <li>COM:
    194. 

  194. <ul>
    195. 

  195.   <li><?php bugfix(41577); ?> (DOTNET is successful once per server run) (Aidas Kasparas)</li>
    196. 

  196.   <li>Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas).</li>
    197. 

  197.   <li><?php bugfix(66431); ?> (Special Character via COM Interface (CP_UTF8)).</li>
    198. 

  198. </ul></li>
    199. 

  199. <li>Curl:
    200. 

  200. <ul>
    201. 

  201.   <li>Implemented FR <?php bugl(65646); ?> (re-enable CURLOPT_FOLLOWLOCATION with open_basedir or safe_mode).</li>
    202. 

  202.   <li>Check for openssl.cafile ini directive when loading CA certs.</li>
    203. 

  203.   <li>Remove cURL close policy related constants as these have no effect and are no longer used in libcurl.</li>
    204. 

  204.   <li><?php bugfix(66109); ?> (Can't reset CURLOPT_CUSTOMREQUEST to default behaviour) (Tjerk)</li>
    205. 

  205.   <li>Fix compilation on libcurl versions between 7.10.5 and 7.12.2, inclusive.</li>
    206. 

  206.   <li><?php bugfix(64247); ?> (CURLOPT_INFILE doesn't allow reset).</li>
    207. 

  207.   <li><?php bugfix(66562); ?> (curl_exec returns differently than curl_multi_getcontent).</li>
    208. 

  208. </ul></li>
    209. 

  209. <li>Date:
    210. 

  210. <ul>
    211. 

  211.   <li><?php bugfix(66060); ?> (Heap buffer over-read in DateInterval). (CVE-2013-6712)</li>
    212. 

  212.   <li><?php bugfix(66091); ?> (memory leaks in DateTime constructor) (Tjerk).</li>
    213. 

  213.   <li><?php bugfix(67308); ?> (Serialize of DateTime truncates fractions of second).</li>
    214. 

  214.   <li>Fixed regression in fix for <?php bugl(67118); ?> (constructor can't be called twice).</li>
    215. 

  215.   <li><?php bugfix(67251); ?> (date_parse_from_format out-of-bounds read).</li>
    216. 

  216.   <li><?php bugfix(67253); ?> (timelib_meridian_with_check out-of-bounds read).</li>
    217. 

  217.   <li>Added DateTimeImmutable::createFromMutable to create a DateTimeImmutable object from an existing DateTime (mutable) object (Derick)</li>
    218. 

  218.   <li><?php bugfix(66721); ?> (__wakeup of DateTime segfaults when invalid object data is supplied).</li>
    219. 

  219.   <li><?php bugfix(67118); ?> (DateTime constructor crash with invalid data).</li>
    220. 

  220. </ul></li>
    221. 

  221. <li>DOM:
    222. 

  222. <ul>
    223. 

  223.   <li><?php bugfix(67081); ?> (DOMDocumentType-&gt;internalSubset returns entire DOCTYPE tag, not only the subset).</li>
    224. 

  224. </ul></li>
    225. 

  225. <li>Embed:
    226. 

  226. <ul>
    227. 

  227.   <li><?php bugfix(65715); ?> (php5embed.lib isn't provided anymore). (Anatol).</li>
    228. 

  228. </ul></li>
    229. 

  229. <li>Fileinfo:
    230. 

  230. <ul>
    231. 

  231.   <li><?php bugfix(67716); ?> (Segfault in cdf.c). (CVE-2014-3587)</li>
    232. 

  232.   <li><?php bugfix(67705); ?> (extensive backtracking in rule regular expression). (CVE-2014-3538)</li>
    233. 

  233.   <li><?php bugfix(67327); ?> (fileinfo: CDF infinite loop in nelements DoS). (CVE-2014-0238)</li>
    234. 

  234.   <li><?php bugfix(67328); ?> (fileinfo: fileinfo: numerous file_printf calls resulting in performance degradation). (CVE-2014-0237)</li>
    235. 

  235.   <li><?php bugfix(67326); ?> (fileinfo: cdf_read_short_sector insufficient boundary check). (CVE-2014-0207)</li>
    236. 

  236.   <li><?php bugfix(67329); ?> (fileinfo: NULL pointer deference flaw by processing certain CDF files).</li>
    237. 

  237.   <li><?php bugfix(67410); ?> (fileinfo: mconvert incorrect handling of truncated pascal string size). (CVE-2014-3478)</li>
    238. 

  238.   <li><?php bugfix(67411); ?> (fileinfo: cdf_check_stream_offset insufficient boundary check). (CVE-2014-3479)</li>
    239. 

  239.   <li><?php bugfix(67412); ?> (fileinfo: cdf_count_chain insufficient boundary check). (CVE-2014-3480)</li>
    240. 

  240.   <li><?php bugfix(67413); ?> (fileinfo: cdf_read_property_info insufficient boundary check). (CVE-2014-3487)</li>
    241. 

  241.   <li>Upgraded to libmagic-5.17 (Anatol)</li>
    242. 

  242.   <li><?php bugfix(66731); ?> (file: infinite recursion). (CVE-2014-1943)</li>
    243. 

  243.   <li><?php bugfix(66820); ?> (out-of-bounds memory access in fileinfo). (CVE-2014-2270)</li>
    244. 

  244.   <li><?php bugfix(66946); ?> (fileinfo: extensive backtracking in awk rule regular expression). (CVE-2013-7345)</li>
    245. 

  245.   <li><?php bugfix(66987); ?> (Memory corruption in fileinfo ext / bigendian).</li>
    246. 

  246.   <li><?php bugfix(66907); ?> (Solaris 10 is missing strcasestr and needs substitute).</li>
    247. 

  247.   <li><?php bugfix(66307); ?> (Fileinfo crashes with powerpoint files).</li>
    248. 

  248. </ul></li>
    249. 

  249. <li>FPM:
    250. 

  250. <ul>
    251. 

  251.   <li><?php bugfix(67606); ?> (revised fix 67541, broke mod_fastcgi BC).</li>
    252. 

  252.   <li><?php bugfix(67530); ?> (error_log=syslog ignored).</li>
    253. 

  253.   <li><?php bugfix(67635); ?> (php links to systemd libraries without using pkg-config).</li>
    254. 

  254.   <li><?php bugfix(67531); ?> (syslog cannot be set in pool configuration).</li>
    255. 

  255.   <li><?php bugfix(67541); ?> (Fix Apache 2.4.10+ SetHandler proxy:fcgi:// incompatibilities).</li>
    256. 

  256.   <li>Included apparmor support in fpm (RFC: https://wiki.php.net/rfc/fpm_change_hat).</li>
    257. 

  257.   <li>Added clear_env configuration directive to disable clearenv() call.</li>
    258. 

  258.   <li><?php bugfix(66482); ?> (unknown entry 'priority' in php-fpm.conf).</li>
    259. 

  259.   <li><?php bugfix(66908); ?> (php-fpm reload leaks epoll_create() file descriptor).</li>
    260. 

  260.   <li><?php bugfix(67060); ?> (sapi/fpm: possible privilege escalation due to insecure default configuration). (CVE-2014-0185)</li>
    261. 

  261. </ul></li>
    262. 

  262. <li>GD:
    263. 

  263. <ul>
    264. 

  264.   <li><?php bugfix(67730); ?> (Null byte injection possible with imagexxx functions). (CVE-2014-5120)</li>
    265. 

  265.   <li><?php bugfix(66901); ?> (php-gd 'c_color' NULL pointer dereference). (CVE-2014-2497)</li>
    266. 

  266.   <li><?php bugfix(67248); ?> (imageaffinematrixget missing check of parameters).</li>
    267. 

  267.   <li>Fixed imagettftext to load the correct character map rather than the last one.</li>
    268. 

  268.   <li><?php bugfix(66356); ?> (Heap Overflow Vulnerability in imagecrop()). (CVE-2013-7226)</li>
    269. 

  269.   <li><?php bugfix(66815); ?> (imagecrop(): insufficient fix for NULL defer). (CVE-2013-7327)</li>
    270. 

  270.   <li><?php bugfix(66869); ?> (Invalid 2nd argument crashes imageaffinematrixget).</li>
    271. 

  271.   <li><?php bugfix(66887); ?> (imagescale - poor quality of scaled image).</li>
    272. 

  272.   <li><?php bugfix(66890); ?> (imagescale segfault).</li>
    273. 

  273.   <li><?php bugfix(66893); ?> (imagescale ignore method argument).</li>
    274. 

  274. </ul></li>
    275. 

  275. <li>GMP:
    276. 

  276. <ul>
    277. 

  277.   <li><?php bugfix(66872); ?> (invalid argument crashes gmp_testbit) (Pierre)</li>
    278. 

  278.   <li>Fixed crashes in serialize/unserialize.</li>
    279. 

  279.   <li>Moved GMP to use object as the underlying structure and implemented various improvements based on this.</li>
    280. 

  280.   <li>Added gmp_root() and gmp_rootrem() functions for calculating nth roots.</li>
    281. 

  281. </ul></li>
    282. 

  282. <li>Hash:
    283. 

  283. <ul>
    284. 

  284.   <li>Added gost-crypto (CryptoPro S-box) GOST hash algo.</li>
    285. 

  285.   <li><?php bugfix(66698); ?> (Missing FNV1a32 and FNV1a64 hash functions). (Michael M Slusarz).</li>
    286. 

  286.   <li>Implemented timing attack safe string comparison function (RFC: https://wiki.php.net/rfc/timing_attack).</li>
    287. 

  287.   <li>hash_pbkdf2() now works correctly if the $length argument is not specified.</li>
    288. 

  288. </ul></li>
    289. 

  289. <li>Intl:
    290. 

  290. <ul>
    291. 

  291.   <li><?php bugfix(66873); ?> (A reproductible crash in UConverter when given invalid encoding) (Stas)</li>
    292. 

  292.   <li><?php bugfix(66921); ?> (Wrong argument type hint for function intltz_from_date_time_zone).</li>
    293. 

  293.   <li><?php bugfix(67052); ?> (NumberFormatter::parse() resets LC_NUMERIC setting).</li>
    294. 

  294.   <li><?php bugfix(67349); ?> (Locale::parseLocale Double Free).</li>
    295. 

  295.   <li><?php bugfix(67397); ?> (Buffer overflow in locale_get_display_name and uloc_getDisplayName (libicu 4.8.1)).</li>
    296. 

  296. </ul></li>
    297. 

  297. <li>JSON:
    298. 

  298. <ul>
    299. 

  299.   <li>Fixed case part of bug <?php bugl(64874); ?> ("json_decode handles whitespace and case-sensitivity incorrectly")</li>
    300. 

  300.   <li><?php bugfix(65753); ?> (JsonSerializeable couldn't implement on module extension) (chobieeee@php.net)</li>
    301. 

  301.   <li><?php bugfix(66021); ?> (Blank line inside empty array/object when JSON_PRETTY_PRINT is set).</li>
    302. 

  302. </ul></li>
    303. 

  303. <li>ldap:
    304. 

  304. <ul>
    305. 

  305.   <li>Added new function ldap_modify_batch().</li>
    306. 

  306.   <li>Fixed issue with null bytes in LDAP bindings.</li>
    307. 

  307. </ul></li>
    308. 

  308. <li>litespeed:
    309. 

  309. <ul>
    310. 

  310.   <li><?php bugfix(63228); ?> (-Werror=format-security error in lsapi code).</li>
    311. 

  311. </ul></li>
    312. 

  312. <li>Mail:
    313. 

  313. <ul>
    314. 

  314.   <li><?php bugfix(66535); ?> (Don't add newline after X-PHP-Originating-Script) (Tjerk)</li>
    315. 

  315. </ul></li>
    316. 

  316. <li>Mcrypt:
    317. 

  317. <ul>
    318. 

  318.   <li>No longer allow invalid key sizes, invalid IV sizes or missing required IV in mcrypt_encrypt, mcrypt_decrypt and the deprecated mode functions.</li>
    319. 

  319.   <li>Use /dev/urandom as the default source for mcrypt_create_iv().</li>
    320. 

  320. </ul></li>
    321. 

  321. <li>Mbstring:
    322. 

  322. <ul>
    323. 

  323.   <li>Upgraded to oniguruma 5.9.5 (Anatol)</li>
    324. 

  324.   <li><?php bugfix(67199); ?> (mb_regex_encoding mismatch).</li>
    325. 

  325. </ul></li>
    326. 

  326. <li>Milter:
    327. 

  327. <ul>
    328. 

  328.   <li><?php bugfix(67715); ?> (php-milter does not build and crashes randomly).</li>
    329. 

  329. </ul></li>
    330. 

  330. <li>mysqli:
    331. 

  331. <ul>
    332. 

  332.   <li>Added new function mysqli_get_links_stats() as well as new INI variable mysqli.rollback_on_cached_plink of type bool (Andrey)</li>
    333. 

  333.   <li><?php bugfix(66762); ?> (Segfault in mysqli_stmt::bind_result() when link closed) (Remi)</li>
    334. 

  334.   <li>Fixed building against an external libmysqlclient.</li>
    335. 

  335. </ul></li>
    336. 

  336. <li>mysqlnd:
    337. 

  337. <ul>
    338. 

  338.   <li>Disabled flag for SP OUT variables for 5.5+ servers as they are not natively supported by the overlying APIs.</li>
    339. 

  339.   <li>Added a new fetching mode to mysqlnd.</li>
    340. 

  340.   <li>Added support for gb18030 from MySQL 5.7.</li>
    341. 

  341. </ul></li>
    342. 

  342. <li>Network:
    343. 

  343. <ul>
    344. 

  344.   <li><?php bugfix(67717); ?> (segfault in dns_get_record). (CVE-2014-3597)</li>
    345. 

  345.   <li><?php bugfix(67432); ?> (Fix potential segfault in dns_get_record()). (CVE-2014-4049)</li>
    346. 

  346. </ul></li>
    347. 

  347. <li>OCI8:
    348. 

  348. <ul>
    349. 

  349.   <li><?php bugfix(66875); ?> (Improve performance of multi-row OCI_RETURN_LOB queries) (Perrier, Chris Jones)</li>
    350. 

  350. </ul></li>
    351. 

  351. <li>ODBC:
    352. 

  352. <ul>
    353. 

  353.   <li><?php bugfix(60616); ?> (odbc_fetch_into returns junk at end of multi-byte char fields).</li>
    354. 

  354. </ul></li>
    355. 

  355. <li>OpenSSL:
    356. 

  356. <ul>
    357. 

  357.   <li>Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).</li>
    358. 

  358.   <li><?php bugfix(67609); ?> (TLS connections fail behind HTTP proxy).</li>
    359. 

  359.   <li>Fixed broken build against OpenSSL older than 0.9.8 where ECDH unavailable.</li>
    360. 

  360.   <li><?php bugfix(67666); ?> (Subject altNames doesn't support wildcard matching).</li>
    361. 

  361.   <li><?php bugfix(67224); ?> (Fall back to crypto_type from context if not specified explicitly in stream_socket_enable_crypto).</li>
    362. 

  362.   <li><?php bugfix(65698); ?> (certificates validity parsing does not work past 2050).</li>
    363. 

  363.   <li><?php bugfix(66636); ?> (openssl_x509_parse warning with V_ASN1_GENERALIZEDTIME).</li>
    364. 

  364.   <li>Peer certificates now verified by default in client socket operations (RFC: https://wiki.php.net/rfc/tls-peer-verification).</li>
    365. 

  365.   <li>New openssl.cafile and openssl.capath ini directives.</li>
    366. 

  366.   <li>Added crypto_method option for the ssl stream context.</li>
    367. 

  367.   <li>Added certificate fingerprint support.</li>
    368. 

  368.   <li>Added explicit TLSv1.1 and TLSv1.2 stream transports.</li>
    369. 

  369.   <li><?php bugfix(65729); ?> (CN_match gives false positive).</li>
    370. 

  370.   <li>Peer name verification matches SAN DNS names for certs using the Subject Alternative Name x509 extension.</li>
    371. 

  371.   <li>Fixed segfault when built against OpenSSL&gt;=1.0.1 (Daniel Lowrey)</li>
    372. 

  372.   <li>Added SPKAC support.</li>
    373. 

  373.   <li>Fallback to Windows CA cert store for peer verification if no openssl.cafile ini directive or "cafile" SSL context option specified in Windows.</li>
    374. 

  374.   <li>The openssl.cafile and openssl.capath ini directives introduced in alpha2 now have PHP_INI_PERDIR accessibility (was PHP_INI_ALL).</li>
    375. 

  375.   <li>New "peer_name" SSL context option replaces "CN_match" (which still works as before but triggers E_DEPRECATED).</li>
    376. 

  376.   <li>Fixed segfault when accessing non-existent context for client SNI use (Daniel Lowrey)</li>
    377. 

  377.   <li><?php bugfix(66501); ?> (Add EC key support to php_openssl_is_private_key).</li>
    378. 

  378.   <li><?php bugfix(47030); ?> (add new boolean "verify_peer_name" SSL context option allowing clients to verify cert names separately from the cert itself). "verify_peer_name" is enabled by default for client streams.</li>
    379. 

  379.   <li><?php bugfix(65538); ?> ("cafile" SSL context option now supports stream wrappers).</li>
    380. 

  380.   <li>New openssl_get_cert_locations() function to aid CA file and peer verification debugging.</li>
    381. 

  381.   <li>Encrypted stream wrappers now disable TLS compression by default.</li>
    382. 

  382.   <li>New "capture_session_meta" SSL context option allows encrypted client and server streams access to negotiated protocol/cipher information.</li>
    383. 

  383.   <li>New "honor_cipher_order" SSL context option allows servers to prioritize cipher suites of their choosing when negotiating SSL/TLS handshakes.</li>
    384. 

  384.   <li>New "single_ecdh_use" and "single_dh_use" SSL context options allow for improved forward secrecy in encrypted stream servers.</li>
    385. 

  385.   <li>New "dh_param" SSL context option allows stream servers control over the parameters when negotiating DHE cipher suites.</li>
    386. 

  386.   <li>New "ecdh_curve" SSL context option allowing stream servers to specify the curve to use when negotiating ephemeral ECDHE ciphers (defaults to NIST P-256).</li>
    387. 

  387.   <li>New "rsa_key_size" SSL context option gives stream servers control over the key size (in bits) used for RSA key agreements.</li>
    388. 

  388.   <li>Crypto methods for encrypted client and server streams now use bitwise flags for fine-grained protocol support.</li>
    389. 

  389.   <li>Added new tlsv1.0 stream wrapper to specify TLSv1 client/server method. tls wrapper now negotiates TLSv1, TLSv1.1 or TLSv1.2.</li>
    390. 

  390.   <li>Encrypted client streams now enable SNI by default.</li>
    391. 

  391.   <li>Encrypted streams now prioritize ephemeral key agreement and high strength ciphers by default.</li>
    392. 

  392.   <li>New OPENSSL_DEFAULT_STREAM_CIPHERS constant exposes default cipher list.</li>
    393. 

  393.   <li>New STREAM_CRYPTO_METHOD_* constants for enhanced control over the crypto methods negotiated encrypted server/client sessions.</li>
    394. 

  394.   <li>Encrypted stream servers now automatically mitigate potential DoS vector arising from client-initiated TLS renegotiation. New "reneg_limit", "reneg_window" and "reneg_limit_callback" SSL context options for custom renegotiation limiting control.</li>
    395. 

  395.   <li>Fixed memory leak in windows cert verification on verify failure.</li>
    396. 

  396.   <li>Peer certificate capturing via SSL context options now functions even if peer verification fails.</li>
    397. 

  397.   <li>Encrypted TLS servers now support the server name indication TLS extension via the new  "SNI_server_certs" SSL context option.</li>
    398. 

  398.   <li><?php bugfix(66833); ?> (Default disgest algo is still MD5, switch to SHA1).</li>
    399. 

  399.   <li><?php bugfix(66942); ?> (memory leak in openssl_seal()).</li>
    400. 

  400.   <li><?php bugfix(66952); ?> (memory leak in openssl_open()).</li>
    401. 

  401.   <li><?php bugfix(66840); ?> (Fix broken build when extension built separately).</li>
    402. 

  402. </ul></li>
    403. 

  403. <li>OPcache:
    404. 

  404. <ul>
    405. 

  405.   <li>Added an optimization of class constants and constant calls to some internal functions (Laruence, Dmitry)</li>
    406. 

  406.   <li>Added an optimization pass to convert FCALL_BY_NAME into DO_FCALL.</li>
    407. 

  407.   <li>Added an optimization pass to merged identical constants (and related cache_slots) in op_array-&gt;literals table.</li>
    408. 

  408.   <li>Added script level constant replacement optimization pass.</li>
    409. 

  409.   <li>Added function opcache_is_script_cached().</li>
    410. 

  410.   <li>Added information about interned strings usage.</li>
    411. 

  411.   <li><?php bugfix(67215); ?> (php-cgi work with opcache, may be segmentation fault happen) (Dmitry, Laruence)</li>
    412. 

  412. </ul></li>
    413. 

  413. <li>PCRE:
    414. 

  414. <ul>
    415. 

  415.   <li><?php bugfix(67238); ?> (Ungreedy and min/max quantifier bug, applied patch from the upstream).</li>
    416. 

  416.   <li>Upgraded to PCRE 8.34.</li>
    417. 

  417.   <li>Added support for (*MARK) backtracking verbs.</li>
    418. 

  418. </ul></li>
    419. 

  419. <li>pgsql:
    420. 

  420. <ul>
    421. 

  421.   <li><?php bugfix(67550); ?> (Error in code "form" instead of "from", pgsql.c, line 756), which affected builds against libpq &lt; 7.3.</li>
    422. 

  422.   <li>pg_insert()/pg_select()/pg_update()/pg_delete() are no longer EXPERIMENTAL.</li>
    423. 

  423.   <li>Impremented FR <?php bugl(25854); ?> Return value for pg_insert should be resource instead of bool.</li>
    424. 

  424.   <li>Implemented FR <?php bugl(41146); ?> - Add "description" with exteneded flag pg_meta_data(). pg_meta_data(resource $conn, string $table [, bool extended]) It also made pg_meta_data() return "is enum" always.</li>
    425. 

  425.   <li>Read-only access to the socket stream underlying database connections is exposed via a new pg_socket() function to allow read/write polling when establishing asynchronous connections and executing queries in non-blocking applications.</li>
    426. 

  426.   <li>Asynchronous connections are now possible using the PGSQL_CONNECT_ASYNC flag in conjunction with a new pg_connect_poll() function and connection polling status constants.</li>
    427. 

  427.   <li>New pg_flush() and pg_consume_input() functions added to manually complete non-blocking reads/writes to underlying connection sockets.</li>
    428. 

  428.   <li>pg_version() returns full report which obtained by PQparameterStatus().</li>
    429. 

  429.   <li>Added pg_lo_truncate().</li>
    430. 

  430.   <li>Added 64bit large object support for PostgreSQL 9.3 and later.</li>
    431. 

  431.   <li><?php bugfix(67555); ?> (Cannot build against libpq 7.3).</li>
    432. 

  432. </ul></li>
    433. 

  433. <li>phpdbg:
    434. 

  434. <ul>
    435. 

  435.   <li><?php bugfix(67575); ?> (Compilation fails for phpdbg when the build directory != src directory).</li>
    436. 

  436.   <li><?php bugfix(67499); ?> (readline feature not enabled when build with libedit).</li>
    437. 

  437.   <li>Fix issue krakjoe/phpdbg#94 (List behavior is inconsistent).</li>
    438. 

  438.   <li>Fix issue krakjoe/phpdbg#97 (The prompt should always ensure it is on a newline).</li>
    439. 

  439.   <li>Fix issue krakjoe/phpdbg#98 (break if does not seem to work).</li>
    440. 

  440.   <li>Fix issue krakjoe/phpdbg#99 (register function has the same behavior as run).</li>
    441. 

  441.   <li>Fix issue krakjoe/phpdbg#100 (No way to list the current stack/frames) (Help entry was missing).</li>
    442. 

  442.   <li>Fixed bug which caused phpdbg to fail immediately on startup in non-debug builds.</li>
    443. 

  443.   <li><?php bugfix(67212); ?> (phpdbg uses non-standard TIOCGWINSZ).</li>
    444. 

  444.   <li>Included phpdbg sapi (RFC: https://wiki.php.net/rfc/phpdbg).</li>
    445. 

  445.   <li>Added watchpoints (watch command).</li>
    446. 

  446.   <li>Renamed some commands (next =&gt; continue and how to step).</li>
    447. 

  447.   <li>Fixed issue #85 (https://github.com/krakjoe/phpdbg/issues/85) (Added stdin/stdout/stderr constants and their php:// wrappers).</li>
    448. 

  448. </ul></li>
    449. 

  449. <li>PDO:
    450. 

  450. <ul>
    451. 

  451.   <li><?php bugfix(66604); ?> ('pdo/php_pdo_error.h' not copied to the include dir).</li>
    452. 

  452. </ul></li>
    453. 

  453. <li>PDO-ODBC:
    454. 

  454. <ul>
    455. 

  455.   <li><?php bugfix(50444); ?> (PDO-ODBC changes for 64-bit).</li>
    456. 

  456. </ul></li>
    457. 

  457. <li>PDO_pgsql:
    458. 

  458. <ul>
    459. 

  459.   <li><?php bugfix(42614); ?> (PDO_pgsql: add pg_get_notify support).</li>
    460. 

  460.   <li><?php bugfix(63657); ?> (pgsqlCopyFromFile, pgsqlCopyToArray use Postgres &lt; 7.3 syntax).</li>
    461. 

  461.   <li>Cleaned up code by increasing the requirements to libpq versions providing PQexecParams, PQprepare, PQescapeStringConn, PQescapeByteaConn. According to the release notes that means 8.0.8+ or 8.1.4+.</li>
    462. 

  462.   <li>Deprecated PDO::PGSQL_ATTR_DISABLE_NATIVE_PREPARED_STATEMENT, an undocument constant effectively equivalent to PDO::ATTR_EMULATE_PREPARES.</li>
    463. 

  463.   <li>Added PDO::PGSQL_ATTR_DISABLE_PREPARES constant to execute the queries without preparing them, while still passing parameters separately from the command text using PQexecParams.</li>
    464. 

  464. </ul></li>
    465. 

  465. <li>PDO_firebird:
    466. 

  466. <ul>
    467. 

  467.   <li><?php bugfix(66071); ?> (memory corruption in error handling) (Popa)</li>
    468. 

  468. </ul></li>
    469. 

  469. <li>Phar:
    470. 

  470. <ul>
    471. 

  471.   <li><?php bugfix(64498); ?> ($phar-&gt;buildFromDirectory can't compress file with an accent in its name).</li>
    472. 

  472.   <li><?php bugfix(67587); ?> (Redirection loop on nginx with FPM).</li>
    473. 

  473. </ul></li>
    474. 

  474. <li>readline:
    475. 

  475. <ul>
    476. 

  476.   <li><?php bugfix(55496); ?> (Interactive mode doesn't force a newline before the prompt).</li>
    477. 

  477.   <li><?php bugfix(67496); ?> (Save command history when exiting interactive shell with control-c).</li>
    478. 

  478. </ul></li>
    479. 

  479. <li>Reflection:
    480. 

  480. <ul>
    481. 

  481.   <li>Implemented FR <?php bugl(67713); ?> (loosen the restrictions on ReflectionClass::newInstanceWithoutConstructor()).</li>
    482. 

  482. </ul></li>
    483. 

  483. <li>Session:
    484. 

  484. <ul>
    485. 

  485.   <li><?php bugfix(67694); ?> (Regression in session_regenerate_id()).</li>
    486. 

  486.   <li>Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).</li>
    487. 

  487.   <li><?php bugfix(66827); ?> (Session raises E_NOTICE when session name variable is array).</li>
    488. 

  488.   <li><?php bugfix(65315); ?> (session.hash_function silently fallback to default md5) (Yasuo)</li>
    489. 

  489.   <li>Implemented Request <?php bugl(17860); ?> (Session write short circuit).</li>
    490. 

  490.   <li>Implemented Request <?php bugl(20421); ?> (session_abort() and session_reset() function).</li>
    491. 

  491.   <li>Remove session_gc() and session_serializer_name() wich were introduced in the first 5.6.0 alpha.</li>
    492. 

  492. </ul></li>
    493. 

  493. <li>SimpleXML:
    494. 

  494. <ul>
    495. 

  495.   <li><?php bugfix(66084); ?> (simplexml_load_string() mangles empty node name) (Anatol)</li>
    496. 

  496. </ul></li>
    497. 

  497. <li>SQLite:
    498. 

  498. <ul>
    499. 

  499.   <li>Updated the bundled libsqlite to the version 3.8.3.1 (Anatol)</li>
    500. 

  500.   <li><?php bugfix(66967); ?> (Updated bundled libsqlite to 3.8.4.3).</li>
    501. 

  501. </ul></li>
    502. 

  502. <li>SOAP:
    503. 

  503. <ul>
    504. 

  504.   <li>Implemented FR <?php bugl(49898); ?> (Add SoapClient::__getCookies()).</li>
    505. 

  505. </ul></li>
    506. 

  506. <li>SPL:
    507. 

  507. <ul>
    508. 

  508.   <li>Revert fix for <?php bugl(67064); ?> (BC issues).</li>
    509. 

  509.   <li><?php bugfix(67539); ?> (ArrayIterator use-after-free due to object change during sorting). (CVE-2014-4698)</li>
    510. 

  510.   <li><?php bugfix(67538); ?> (SPL Iterators use-after-free). (CVE-2014-4670)</li>
    511. 

  511.   <li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion). (CVE-2014-3515)</li>
    512. 

  512.   <li><?php bugfix(67359); ?> (Segfault in recursiveDirectoryIterator).</li>
    513. 

  513.   <li><?php bugfix(66127); ?> (Segmentation fault with ArrayObject unset).</li>
    514. 

  514.   <li>Fixed request <?php bugl(67453); ?> (Allow to unserialize empty data).</li>
    515. 

  515.   <li><?php bugfix(66834); ?> (empty() does not work on classes that extend ArrayObject) (Tjerk)</li>
    516. 

  516.   <li><?php bugfix(66702); ?> (RegexIterator::INVERT_MATCH does not invert).</li>
    517. 

  517. </ul></li>
    518. 

  518. <li>Standard:
    519. 

  519. <ul>
    520. 

  520.   <li>Implemented FR <?php bugl(65634); ?> (HTTP wrapper is very slow with protocol_version 1.1).</li>
    521. 

  521.   <li>Implemented Change crypt() behavior w/o salt RFC. (Yasuo) https://wiki.php.net/rfc/crypt_function_salt</li>
    522. 

  522.   <li>Implemented request <?php bugl(49824); ?> (Change array_fill() to allow creating empty array).</li>
    523. 

  523. </ul></li>
    524. 

  524. <li>Streams:
    525. 

  525. <ul>
    526. 

  526.   <li><?php bugfix(67430); ?> (http:// wrapper doesn't follow 308 redirects).</li>
    527. 

  527. </ul></li>
    528. 

  528. <li>Tokenizer:
    529. 

  529. <ul>
    530. 

  530.   <li><?php bugfix(67395); ?> (token_name() does not return name for T_POW and T_POW_EQUAL token).</li>
    531. 

  531. </ul></li>
    532. 

  532. <li>XMLReader:
    533. 

  533. <ul>
    534. 

  534.   <li><?php bugfix(55285); ?> (XMLReader::getAttribute/No/Ns methods inconsistency).</li>
    535. 

  535. </ul></li>
    536. 

  536. <li>XSL:
    537. 

  537. <ul>
    538. 

  538.   <li><?php bugfix(53965); ?> (&lt;xsl:include&gt; cannot find files with relative paths when loaded with "file://").</li>
    539. 

  539. </ul></li>
    540. 

  540. <li>Zip:
    541. 

  541. <ul>
    542. 

  542.   <li>update libzip to version 1.11.2. PHP don't use any ilibzip private symbol anymore.</li>
    543. 

  543.   <li>new method ZipArchive::setPassword($password).</li>
    544. 

  544.   <li>add --with-libzip option to build with system libzip.</li>
    545. 

  545.   <li>new methods: ZipArchive::setExternalAttributesName($name, $opsys, $attr [, $flags]) ZipArchive::setExternalAttributesIndex($idx, $opsys, $attr [, $flags]) ZipArchive::getExternalAttributesName($name, &amp;$opsys, &amp;$attr [, $flags]) ZipArchive::getExternalAttributesIndex($idx, &amp;$opsys, &amp;$attr [, $flags])</li>
    546. 

  546. </ul></li>
    547. 

  547. <li>Zlib:
    548. 

  548. <ul>
    549. 

  549.   <li><?php bugfix(67865); ?> (internal corruption phar error). Mike</li>
    550. 

  550.   <li><?php bugfix(67724); ?> (chained zlib filters silently fail with large amounts of data).</li>
    551. 

  551. </ul></li>
    552. 

  552. </ul>
    553. 

  553. <!-- }}} --></section>
    554. 

  554. 

  555. <section class="version" id="5.5.16"><!-- {{{ 5.5.16 -->
    556. 

  556. <h3>Version 5.5.16</h3>
    557. 

  557. <?php release_date('21-Aug-2014'); ?>
    558. 

  558. <ul><li>COM:
    559. 

  559. <ul>
    560. 

  560.   <li>Fixed missing type checks in com_event_sink.</li>
    561. 

  561. </ul></li>
    562. 

  562. <li>Core:
    563. 

  563. <ul>
    564. 

  564.   <li><?php bugfix(67693); ?> (incorrect push to the empty array).</li>
    565. 

  565. </ul></li>
    566. 

  566. <li>Fileinfo:
    567. 

  567. <ul>
    568. 

  568.   <li><?php bugfix(67705); ?> (extensive backtracking in rule regular expression).
    569. 

  569.     (CVE-2014-3538).</li>
    570. 

  570.   <li><?php bugfix(67716); ?> (Segfault in cdf.c). (CVE-2014-3587).</li>
    571. 

  571. </ul></li>
    572. 

  572. <li>FPM:
    573. 

  573. <ul>
    574. 

  574.   <li><?php bugfix(67635); ?> (php links to systemd libraries without using pkg-config).</li>
    575. 

  575. </ul></li>
    576. 

  576. <li>GD:
    577. 

  577. <ul>
    578. 

  578.   <li><?php bugfix(66901); ?> (php-gd 'c_color' NULL pointer dereference).
    579. 

  579.     (CVE-2014-2497).</li>
    580. 

  580.   <li><?php bugfix(67730); ?> (Null byte injection possible with imagexxx functions).
    581. 

  581.     (CVE-2014-5120).</li>
    582. 

  582. </ul></li>
    583. 

  583. <li>Milter:
    584. 

  584. <ul>
    585. 

  585.     <li><?php bugfix(67715); ?> (php-milter does not build and crashes randomly).</li>
    586. 

  586. </ul></li>
    587. 

  587. <li>Network:
    588. 

  588. <ul>
    589. 

  589.   <li><?php bugfix(67717); ?> (segfault in dns_get_record). (CVE-2014-3597).</li>
    590. 

  590. </ul></li>
    591. 

  591. <li>OpenSSL:
    592. 

  592. <ul>
    593. 

  593.   <li>Fixed missing type checks in OpenSSL options.</li>
    594. 

  594. </ul></li>
    595. 

  595. <li>readline:
    596. 

  596. <ul>
    597. 

  597.   <li><?php bugfix(55496); ?> (Interactive mode doesn't force a newline before the
    598. 

  598.     prompt).</li>
    599. 

  599.   <li><?php bugfix(67496); ?> (Save command history when exiting interactive shell
    600. 

  600.     with control-c).</li>
    601. 

  601. </ul></li>
    602. 

  602. <li>Sessions:
    603. 

  603. <ul>
    604. 

  604.   <li>Fixed missing type checks in php_session_create_id.</li>
    605. 

  605. </ul></li>
    606. 

  606. <li>ODBC:
    607. 

  607. <ul>
    608. 

  608.   <li><?php bugfix(60616); ?> (odbc_fetch_into returns junk data at end of multi-byte
    609. 

  609.     char fields).</li>
    610. 

  610. </ul></li>
    611. 

  611. </ul>
    612. 

  612. <!-- }}} --></section>
    613. 

  613. 

  614. <section class="version" id="5.4.32"><!-- {{{ 5.4.32 -->
    615. 

  615. <h3>Version 5.4.32</h3>
    616. 

  616. <b>21-Aug-2014</b>
    617. 

  617. <ul><li>Core:
    618. 

  618. <ul>
    619. 

  619.   <li><?php bugfix(67717); ?> (segfault in dns_get_record) (CVE-2014-3597).</li>
    620. 

  620.   <li><?php bugfix(67693); ?> (incorrect push to the empty array)</li>
    621. 

  621. </ul></li>
    622. 

  622. <li>COM:
    623. 

  623. <ul>
    624. 

  624.   <li>Fixed missing type checks in com_event_sink.</li>
    625. 

  625. </ul></li>
    626. 

  626. <li>Fileinfo:
    627. 

  627. <ul>
    628. 

  628.   <li><?php bugfix(67705); ?> (extensive backtracking in rule regular expression) (CVE-2014-3538).</li>
    629. 

  629.   <li><?php bugfix(67716); ?> (Segfault in cdf.c) (CVE-2014-3587).</li>
    630. 

  630. </ul></li>
    631. 

  631. <li>GD:
    632. 

  632. <ul>
    633. 

  633.   <li><?php bugfix(66901); ?> (php-gd 'c_color' NULL pointer dereference) (CVE-2014-2497).</li>
    634. 

  634.   <li><?php bugfix(67730); ?> (Null byte injection possible with imagexxx functions) (CVE-2014-5120).</li>
    635. 

  635. </ul></li>
    636. 

  636. <li>Milter:
    637. 

  637. <ul>
    638. 

  638.   <li><?php bugfix(67715); ?> (php-milter does not build and crashes randomly).</li>
    639. 

  639. </ul></li>
    640. 

  640. <li>OpenSSL:
    641. 

  641. <ul>
    642. 

  642.   <li>Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).</li>
    643. 

  643. </ul></li>
    644. 

  644. <li>Readline:
    645. 

  645. <ul>
    646. 

  646.   <li><?php bugfix(55496); ?> (Interactive mode doesn't force a newline before the prompt).</li>
    647. 

  647.   <li><?php bugfix(67496); ?> (Save command history when exiting interactive shell with control-c).</li>
    648. 

  648. </ul></li>
    649. 

  649. <li>Sessions:
    650. 

  650. <ul>
    651. 

  651.   <li>Fixed missing type checks in php_session_create_id.</li>
    652. 

  652. </ul></li>
    653. 

  653. <li>SPL:
    654. 

  654. <ul>
    655. 

  655.   <li><?php bugfix(67539); ?> (ArrayIterator use-after-free due to object change during sorting) (CVE-2014-4698).</li>
    656. 

  656.   <li><?php bugfix(67538); ?> (SPL Iterators use-after-free) (CVE-2014-4670).</li>
    657. 

  657. </ul></li>
    658. 

  658. <li>ODBC:
    659. 

  659. <ul>
    660. 

  660.   <li><?php bugfix(60616); ?> (odbc_fetch_into returns junk data at end of multi-byte char fields).</li>
    661. 

  661. </ul></li>
    662. 

  662. </ul>
    663. 

  663. <!-- }}} --></section>
    664. 

  664. 

  665. <section class="version" id="5.3.29"><!-- {{{ 5.3.29 -->
    666. 

  666. <h3>Version 5.3.29</h3>
    667. 

  667. <?php release_date('14-Aug-2014'); ?>
    668. 

  668. <ul><li>Core:
    669. 

  669. <ul>
    670. 

  670.   <li><?php bugfix(66127); ?> (Segmentation fault with ArrayObject unset).</li>
    671. 

  671.   <li><?php bugfix(67247); ?> (spl_fixedarray_resize integer overflow).</li>
    672. 

  672.   <li><?php bugfix(67249); ?> (printf out-of-bounds read).</li>
    673. 

  673.   <li><?php bugfix(67250); ?> (iptcparse out-of-bounds read).</li>
    674. 

  674.   <li><?php bugfix(67252); ?> (convert_uudecode out-of-bounds read).</li>
    675. 

  675.   <li><?php bugfix(67359); ?> (Segfault in recursiveDirectoryIterator).</li>
    676. 

  676.   <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script). (CVE-2014-3981)</li>
    677. 

  677.   <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
    678. 

  678.   <li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion) (CVE-2014-3515).</li>
    679. 

  679.   <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
    680. 

  680. </li>
    681. 

  681. </ul></li>
    682. 

  682. <li>COM:
    683. 

  683. <ul>
    684. 

  684.   <li>Fixed missing type checks in com_event_sink.</li>
    685. 

  685. </ul></li>
    686. 

  686. <li>Date:
    687. 

  687. <ul>
    688. 

  688.   <li><?php bugfix(66060); ?> (Heap buffer over-read in DateInterval). (CVE-2013-6712)</li>
    689. 

  689.   <li><?php bugfix(67251); ?> (date_parse_from_format out-of-bounds read).</li>
    690. 

  690.   <li><?php bugfix(67253); ?> (timelib_meridian_with_check out-of-bounds read).</li>
    691. 

  691. </ul></li>
    692. 

  692. <li>Exif:
    693. 

  693. <ul>
    694. 

  694.   <li><?php bugfix(65873); ?> (Integer overflow in exif_read_data()).</li>
    695. 

  695. </ul></li>
    696. 

  696. <li>Fileinfo:
    697. 

  697. <ul>
    698. 

  698.   <li><?php bugfix(66307); ?> (Fileinfo crashes with powerpoint files).</li>
    699. 

  699.   <li><?php bugfix(67326); ?> (fileinfo: cdf_read_short_sector insufficient boundary check). (CVE-2014-0207)</li>
    700. 

  700.   <li><?php bugfix(67327); ?> (fileinfo: CDF infinite loop in nelements DoS). (CVE-2014-0238)</li>
    701. 

  701.   <li><?php bugfix(67328); ?> (fileinfo: fileinfo: numerous file_printf calls resulting in performance degradation). (CVE-2014-0237)</li>
    702. 

  702.   <li><?php bugfix(67410); ?> (fileinfo: mconvert incorrect handling of truncated pascal string size) (CVE-2014-3478).</li>
    703. 

  703.   <li><?php bugfix(67411); ?> (fileinfo: cdf_check_stream_offset insufficient boundary check) (CVE-2014-3479).</li>
    704. 

  704.   <li><?php bugfix(67412); ?> (fileinfo: cdf_count_chain insufficient boundary check) (CVE-2014-3480).</li>
    705. 

  705.   <li><?php bugfix(67413); ?> (fileinfo: cdf_read_property_info insufficient boundary check) (CVE-2014-3487).</li>
    706. 

  706. </ul></li>
    707. 

  707. <li>Intl:
    708. 

  708. <ul>
    709. 

  709.   <li><?php bugfix(67349); ?> (Locale::parseLocale Double Free).</li>
    710. 

  710.   <li><?php bugfix(67397); ?> (Buffer overflow in locale_get_display_name and uloc_getDisplayName (libicu 4.8.1)).</li>
    711. 

  711. </ul></li>
    712. 

  712. <li>Network:
    713. 

  713. <ul>
    714. 

  714.   <li><?php bugfix(67432); ?> (Fix potential segfault in dns_get_record()). (CVE-2014-4049)</li>
    715. 

  715. </ul></li>
    716. 

  716. <li>OpenSSL:
    717. 

  717. <ul>
    718. 

  718.   <li>Fixed missing type checks in OpenSSL options.</li>
    719. 

  719. </ul></li>
    720. 

  720. <li>Session:
    721. 

  721. <ul>
    722. 

  722.   <li>Fixed missing type checks in php_session_create_id.</li>
    723. 

  723. </ul></li>
    724. 

  724. </ul>
    725. 

  725. <!-- }}} --></section>
    726. 

  726. 

  727. <section class="version" id="5.5.15"><!-- {{{ 5.5.15 -->
    728. 

  728. <h3>Version 5.5.15</h3>
    729. 

  729. <?php release_date('24-Jul-2014'); ?>
    730. 

  730. <ul><li>CLI server:
    731. 

  731. <ul>
    732. 

  732.   <li><?php bugfix(67429); ?> (CLI server is missing some new HTTP response codes).</li>
    733. 

  733.   <li><?php bugfix(66830); ?> (Empty header causes PHP built-in web server to hang).</li>
    734. 

  734. </ul></li>
    735. 

  735. <li>Core:
    736. 

  736. <ul>
    737. 

  737.   <li><?php bugfix(67428); ?> (header('Location: foo') will override a 308-399 response
    738. 

  738.     code).</li>
    739. 

  739.   <li><?php bugfix(67436); ?> (Autoloader isn't called if two method definitions don't
    740. 

  740.     match).</li>
    741. 

  741.   <li><?php bugfix(67091); ?> (make install fails to install libphp5.so on FreeBSD 10.0).</li>
    742. 

  742.   <li><?php bugfix(67497); ?> eval with parse error causes segmentation fault in
    743. 

  743.     generator).</li>
    744. 

  744.     <li><?php bugfix(67151); ?> (strtr with empty array crashes).</li>
    745. 

  745.     <li><?php bugfix(67407); ?> (Windows 8.1/Server 2012 R2 reported as Windows 8/Server
    746. 

  746.     2012).</li>
    747. 

  747. </ul></li>
    748. 

  748. <li>FPM:
    749. 

  749. <ul>
    750. 

  750.   <li><?php bugfix(67530); ?> (error_log=syslog ignored).</li>
    751. 

  751.   <li><?php bugfix(67531); ?> (syslog cannot be set in pool configuratio).</li>
    752. 

  752. </ul></li>
    753. 

  753. <li>Intl:
    754. 

  754. <ul>
    755. 

  755.   <li><?php bugfix(66921); ?> (Wrong argument type hint for function 
    756. 

  756.     intltz_from_date_time_zone).</li>
    757. 

  757.   <li><?php bugfix(67052); ?> (NumberFormatter::parse() resets LC_NUMERIC setting).</li>
    758. 

  758. </ul></li>
    759. 

  759. <li>OPCache:
    760. 

  760. <ul>
    761. 

  761.     <li><?php bugfix(67215); ?> (php-cgi work with opcache, may be segmentation fault
    762. 

  762.     happen).</li>
    763. 

  763. </ul></li>
    764. 

  764. <li>pgsql:
    765. 

  765. <ul>
    766. 

  766.   <li><?php bugfix(67550); ?> (Error in code "form" instead of "from", pgsql.c, line 756),
    767. 

  767.     which affected builds against libpq &lt; 7.3).</li>
    768. 

  768. </ul></li>
    769. 

  769. <li>Phar:
    770. 

  770. <ul>
    771. 

  771.   <li><?php bugfix(67587); ?> (Redirection loop on nginx with FPM).</li>
    772. 

  772. </ul></li>
    773. 

  773. <li>SPL:
    774. 

  774. <ul>
    775. 

  775.   <li><?php bugfix(67539); ?> (ArrayIterator use-after-free due to object change during 
    776. 

  776.     sorting). (CVE-2014-4698)</li>
    777. 

  777.   <li><?php bugfix(67538); ?> (SPL Iterators use-after-free) (CVE-2014-4670).</li>
    778. 

  778. </ul></li>
    779. 

  779. <li>Streams:
    780. 

  780. <ul>
    781. 

  781.   <li><?php bugfix(67430); ?> (http:// wrapper doesn't follow 308 redirects).</li>
    782. 

  782. </ul></li>
    783. 

  783. </ul>
    784. 

  784. <!-- }}} --></section>
    785. 

  785. 

  786. <section class="version" id="5.4.31"><!-- {{{ 5.4.31 -->
    787. 

  787. <h3>Version 5.4.31</h3>
    788. 

  788. <b>24-Jul-2014</b>
    789. 

  789. <ul><li>Core:
    790. 

  790. <ul>
    791. 

  791.   <li><?php bugfix(67428); ?> (header('Location: foo') will override a 308-399 response code).</li>
    792. 

  792.   <li><?php bugfix(67436); ?> (Autoloader isn't called if two method definitions don't match).</li>
    793. 

  793.   <li><?php bugfix(67091); ?> (make install fails to install libphp5.so on FreeBSD 10.0).</li>
    794. 

  794.   <li><?php bugfix(67151); ?> (strtr with empty array crashes).</li>
    795. 

  795.   <li><?php bugfix(67407); ?> (Windows 8.1/Server 2012 R2 reported as Windows 8/Server 2012).</li>
    796. 

  796. </ul></li>
    797. 

  797. <li>CLI server:
    798. 

  798. <ul>
    799. 

  799.   <li>Implemented FR <?php bugl(67429); ?> (CLI server is missing some new HTTP response codes).</li>
    800. 

  800.   <li><?php bugfix(66830); ?> (Empty header causes PHP built-in web server to hang).</li>
    801. 

  801. </ul></li>
    802. 

  802. <li>FPM:
    803. 

  803. <ul>
    804. 

  804.   <li><?php bugfix(67530); ?> (error_log=syslog ignored).</li>
    805. 

  805.   <li><?php bugfix(67531); ?> (syslog cannot be set in pool configuration).</li>
    806. 

  806. </ul></li>
    807. 

  807. <li>Intl:
    808. 

  808. <ul>
    809. 

  809.   <li><?php bugfix(67052); ?> (NumberFormatter::parse() resets LC_NUMERIC setting).</li>
    810. 

  810. </ul></li>
    811. 

  811. <li>pgsql:
    812. 

  812. <ul>
    813. 

  813.   <li><?php bugfix(67550); ?> (Error in code "form" instead of "from", pgsql.c, line 756), which affected builds against libpq &lt; 7.3.</li>
    814. 

  814. </ul></li>
    815. 

  815. <li>Phar:
    816. 

  816. <ul>
    817. 

  817.   <li><?php bugfix(67587); ?> (Redirection loop on nginx with FPM).</li>
    818. 

  818. </ul></li>
    819. 

  819. <li>Streams:
    820. 

  820. <ul>
    821. 

  821.   <li><?php bugfix(67430); ?> (http:// wrapper doesn't follow 308 redirects).</li>
    822. 

  822. </ul></li>
    823. 

  823. </ul>
    824. 

  824. <!-- }}} --></section>
    825. 

  825. 

  826. 

  827. <section class="version" id="5.5.14"><!-- {{{ 5.5.14 -->
    828. 

  828. <h3>Version 5.5.14</h3>
    829. 

  829. <?php release_date('26-Jun-2014'); ?>
    830. 

  830. <ul><li>CLI server:
    831. 

  831. <ul>
    832. 

  832.   <li><?php bugfix(67406); ?> (built-in web-server segfaults on startup).</li>
    833. 

  833. </ul></li>
    834. 

  834. <li>Core:
    835. 

  835. <ul>
    836. 

  836.   <li><?php bugfix(66622); ?> (Closures do not correctly capture the late bound class
    837. 

  837.     (static::) in some cases).</li>
    838. 

  838.   <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script).
    839. 

  839.     (CVE-2014-3981).</li>
    840. 

  840.   <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
    841. 

  841.   <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
    842. 

  842.   <li>Fixed BC break introduced by patch for bug <?php bugl(67072); ?>.</li>
    843. 

  843. </ul></li>
    844. 

  844. <li>Date:
    845. 

  845. <ul>
    846. 

  846.   <li><?php bugfix(67308); ?> (Serialize of DateTime truncates fractions of second).</li>
    847. 

  847.   <li>Fixed regression in fix for bug #67118 (constructor can't be called twice).</li>
    848. 

  848. </ul></li>
    849. 

  849. <li>Fileinfo:
    850. 

  850. <ul>
    851. 

  851.   <li><?php bugfix(67326); ?> (cdf_read_short_sector insufficient boundary check).
    852. 

  852.     (CVE-2014-0207)).</li>
    853. 

  853.   <li><?php bugfix(67410); ?> (mconvert incorrect handling of truncated pascal
    854. 

  854.     string size). (CVE-2014-3478).</li>
    855. 

  855.   <li><?php bugfix(67411); ?> (cdf_check_stream_offset insufficient boundary
    856. 

  856.     check). (CVE-2014-3479).</li>
    857. 

  857.   <li><?php bugfix(67412); ?> (cdf_count_chain insufficient boundary check).
    858. 

  858.     (CVE-2014-3480).</li>
    859. 

  859.   <li><?php bugfix(67413); ?> (cdf_read_property_info insufficient boundary
    860. 

  860.     check). (CVE-2014-3487).</li>
    861. 

  861. </ul></li>
    862. 

  862. <li>Intl:
    863. 

  863. <ul>
    864. 

  864.   <li><?php bugfix(67349); ?> (Locale::parseLocale Double Free).</li>
    865. 

  865.   <li><?php bugfix(67397); ?> (Buffer overflow in locale_get_display_name and
    866. 

  866.     uloc_getDisplayName (libicu 4.8.1)).</li>
    867. 

  867. </ul></li>
    868. 

  868. <li>Network:
    869. 

  869. <ul>
    870. 

  870.   <li><?php bugfix(67432); ?> (Fix potential segfault in dns_get_record()).
    871. 

  871.     (CVE-2014-4049)).</li>
    872. 

  872. </ul></li>
    873. 

  873. <li>OPCache:
    874. 

  874. <ul>
    875. 

  875.   <li>Fixed issue #183 (TMP_VAR is not only used once).</li>
    876. 

  876. </ul></li>
    877. 

  877. <li>OpenSSL:
    878. 

  878. <ul>
    879. 

  879.   <li><?php bugfix(65698); ?> (certificates validity parsing does not work past 2050).</li>
    880. 

  880.   <li><?php bugfix(66636); ?> (openssl_x509_parse warning with V_ASN1_GENERALIZEDTIME).</li>
    881. 

  881. </ul></li>
    882. 

  882. <li>PDO-ODBC:
    883. 

  883. <ul>
    884. 

  884.   <li><?php bugfix(50444); ?> (PDO-ODBC changes for 64-bit).</li>
    885. 

  885. </ul></li>
    886. 

  886. <li>SOAP:
    887. 

  887. <ul>
    888. 

  888.   <li>Implemented FR #49898 (Add SoapClient::__getCookies()).</li>
    889. 

  889. </ul></li>
    890. 

  890. <li>SPL:
    891. 

  891. <ul>
    892. 

  892.   <li><?php bugfix(66127); ?> (Segmentation fault with ArrayObject unset).</li>
    893. 

  893.   <li><?php bugfix(67359); ?> (Segfault in recursiveDirectoryIterator).</li>
    894. 

  894.   <li><?php bugfix(67360); ?> (Missing element after ArrayObject::getIterator).</li>
    895. 

  895.   <li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type 
    896. 

  896.     Confusion). (CVE-2014-3515).</li>
    897. 

  897. </ul></li>
    898. 

  898. </ul>
    899. 

  899. <!-- }}} --></section>
    900. 

  900. 

  901. <section class="version" id="5.4.30"><!-- {{{ 5.4.30 -->
    902. 

  902. <h3>Version 5.4.30</h3>
    903. 

  903. <b>26-Jun-2014</b>
    904. 

  904. <ul><li>Core:
    905. 

  905. <ul>
    906. 

  906.   <li>Fixed BC break introduced by patch for bug <?php bugl(67072); ?>.</li>
    907. 

  907.   <li><?php bugfix(66622); ?> (Closures do not correctly capture the late bound class (static::) in some cases).</li>
    908. 

  908.   <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script) (CVE-2014-3981).</li>
    909. 

  909.   <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
    910. 

  910.   <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
    911. 

  911. </ul></li>
    912. 

  912. <li>CLI server:
    913. 

  913. <ul>
    914. 

  914.   <li><?php bugfix(67406); ?> (built-in web-server segfaults on startup).</li>
    915. 

  915. </ul></li>
    916. 

  916. <li>Date:
    917. 

  917. <ul>
    918. 

  918.   <li><?php bugfix(67308); ?> (Serialize of DateTime truncates fractions of second).</li>
    919. 

  919.   <li>Fixed regression in fix for bug <?php bugl(67118); ?> (constructor can't be called twice).</li>
    920. 

  920. </ul></li>
    921. 

  921. <li>Fileinfo:
    922. 

  922. <ul>
    923. 

  923.   <li><?php bugfix(67326); ?> (fileinfo: cdf_read_short_sector insufficient boundary check) (CVE-2014-0207).</li>
    924. 

  924.   <li><?php bugfix(67410); ?> (fileinfo: mconvert incorrect handling of truncated pascal string size) (CVE-2014-3478).</li>
    925. 

  925.   <li><?php bugfix(67411); ?> (fileinfo: cdf_check_stream_offset insufficient boundary check) (CVE-2014-3479).</li>
    926. 

  926.   <li><?php bugfix(67412); ?> (fileinfo: cdf_count_chain insufficient boundary check) (CVE-2014-3480).</li>
    927. 

  927.   <li><?php bugfix(67413); ?> (fileinfo: cdf_read_property_info insufficient boundary check) (CVE-2014-3487).</li>
    928. 

  928. </ul></li>
    929. 

  929. <li>Intl:
    930. 

  930. <ul>
    931. 

  931.   <li><?php bugfix(67349); ?> (Locale::parseLocale Double Free).</li>
    932. 

  932.   <li><?php bugfix(67397); ?> (Buffer overflow in locale_get_display_name and uloc_getDisplayName (libicu 4.8.1)).</li>
    933. 

  933. </ul></li>
    934. 

  934. <li>Network:
    935. 

  935. <ul>
    936. 

  936.   <li><?php bugfix(67432); ?> (Fix potential segfault in dns_get_record()) (CVE-2014-4049).</li>
    937. 

  937. </ul></li>
    938. 

  938. <li>OpenSSL:
    939. 

  939. <ul>
    940. 

  940.   <li><?php bugfix(65698); ?> (certificates validity parsing does not work past 2050).</li>
    941. 

  941.   <li><?php bugfix(66636); ?> (openssl_x509_parse warning with V_ASN1_GENERALIZEDTIME).</li>
    942. 

  942. </ul></li>
    943. 

  943. <li>SOAP:
    944. 

  944. <ul>
    945. 

  945.   <li>Implemented FR <?php bugl(49898); ?> (Add SoapClient::__getCookies()).</li>
    946. 

  946. </ul></li>
    947. 

  947. <li>SPL:
    948. 

  948. <ul>
    949. 

  949.   <li><?php bugfix(66127); ?> (Segmentation fault with ArrayObject unset).</li>
    950. 

  950.   <li><?php bugfix(67359); ?> (Segfault in recursiveDirectoryIterator).</li>
    951. 

  951.   <li><?php bugfix(67360); ?> (Missing element after ArrayObject::getIterator).</li>
    952. 

  952.   <li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion) (CVE-2014-3515).</li>
    953. 

  953. </ul></li>
    954. 

  954. </ul>
    955. 

  955. <!-- }}} --></section>
    956. 

  956. 

  957. <section class="version" id="5.5.13"><!-- {{{ 5.5.13 -->
    958. 

  958. <h3>Version 5.5.13</h3>
    959. 

  959. <?php release_date('29-May-2014'); ?>
    960. 

  960. <ul><li>CLI server:
    961. 

  961. <ul>
    962. 

  962.   <li><?php bugfix(67079); ?> (Missing MIME types for XML/XSL files).</li>
    963. 

  963. </ul></li>
    964. 

  964. <li>COM:
    965. 

  965. <ul>
    966. 

  966.   <li><?php bugfix(66431); ?> (Special Character via COM Interface (CP_UTF8)).</li>
    967. 

  967. </ul></li>
    968. 

  968. <li>Core:
    969. 

  969. <ul>
    970. 

  970.   <li><?php bugfix(65701); ?> (copy() doesn't work when destination filename is created
    971. 

  971.     by tempnam()).</li>
    972. 

  972.   <li><?php bugfix(67072); ?> (Echoing unserialized "SplFileObject" crash).</li>
    973. 

  973.   <li><?php bugfix(67245); ?> (usage of memcpy() with overlapping src and dst in
    974. 

  974.     zend_exceptions.c).</li>
    975. 

  975.   <li><?php bugfix(67247); ?> (spl_fixedarray_resize integer overflow).</li>
    976. 

  976.   <li><?php bugfix(67249); ?> (printf out-of-bounds read).</li>
    977. 

  977.   <li><?php bugfix(67250); ?> (iptcparse out-of-bounds read).</li>
    978. 

  978. </ul></li>
    979. 

  979. <li>cURL:
    980. 

  980. <ul>
    981. 

  981.   <li><?php bugfix(64247); ?> (CURLOPT_INFILE doesn't allow reset).</li>
    982. 

  982. </ul></li>
    983. 

  983. <li>Date:
    984. 

  984. <ul>
    985. 

  985.   <li><?php bugfix(67118); ?> (DateTime constructor crash with invalid data).</li>
    986. 

  986.   <li><?php bugfix(67251); ?> (date_parse_from_format out-of-bounds read).</li>
    987. 

  987.   <li><?php bugfix(67253); ?> (timelib_meridian_with_check out-of-bounds read).</li>
    988. 

  988. </ul></li>
    989. 

  989. <li>DOM:
    990. 

  990. <ul>
    991. 

  991.   <li><?php bugfix(67081); ?> (DOMDocumentType->internalSubset returns entire DOCTYPE tag,
    992. 

  992.     not only the subset).</li>
    993. 

  993. </ul></li>
    994. 

  994. <li>Fileinfo:
    995. 

  995. <ul>
    996. 

  996.   <li><?php bugfix(66307); ?> (Fileinfo crashes with powerpoint files).</li>
    997. 

  997.   <li><?php bugfix(67327); ?> (CDF infinite loop in nelements DoS) (CVE-2014-0238).</li>
    998. 

  998.   <li><?php bugfix(67328); ?> (numerous file_printf calls resulting in
    999. 

  999.     performance degradation) (CVE-2014-0237).</li>
    1000. 

  1000. </ul></li>
    1001. 

  1001. <li>FPM:
    1002. 

  1002. <ul>
    1003. 

  1003.   <li><?php bugfix(66908); ?> (php-fpm reload leaks epoll_create() file descriptor).</li>
    1004. 

  1004. </ul></li>
    1005. 

  1005. <li>GD:
    1006. 

  1006. <ul>
    1007. 

  1007.   <li><?php bugfix(67248); ?> (imageaffinematrixget missing check of parameters).</li>
    1008. 

  1008. </ul></li>
    1009. 

  1009. <li>PCRE:
    1010. 

  1010. <ul>
    1011. 

  1011.   <li><?php bugfix(67248); ?> Ungreedy and min/max quantifier bug, applied patch
    1012. 

  1012.     from the upstream.</li>
    1013. 

  1013. </ul></li>
    1014. 

  1014. <li>Phar:
    1015. 

  1015. <ul>
    1016. 

  1016.   <li><?php bugfix(64498); ?> ($phar->buildFromDirectory can't compress file with an accent
    1017. 

  1017.     in its name).</li>
    1018. 

  1018. </ul></li>
    1019. 

  1019. </ul>
    1020. 

  1020. <!-- }}} --></section>
    1021. 

  1021. 

  1022. <section class="version" id="5.4.29"><!-- {{{ 5.4.29 -->
    1023. 

  1023. <h3>Version 5.4.29</h3>
    1024. 

  1024. <b>29-May-2014</b>
    1025. 

  1025. <ul><li>COM:
    1026. 

  1026. <ul>
    1027. 

  1027.   <li><?php bugfix(66431); ?> (Special Character via COM Interface (CP_UTF8)).</li>
    1028. 

  1028. </ul></li>
    1029. 

  1029. <li>Core:
    1030. 

  1030. <ul>
    1031. 

  1031.   <li><?php bugfix(65701); ?> (copy() doesn't work when destination filename is created by tempnam()).</li>
    1032. 

  1032.   <li><?php bugfix(67072); ?> (Echoing unserialized "SplFileObject" crash).</li>
    1033. 

  1033.   <li><?php bugfix(67245); ?> (usage of memcpy() with overlapping src and dst in zend_exceptions.c).</li>
    1034. 

  1034.   <li><?php bugfix(67247); ?> (spl_fixedarray_resize integer overflow).</li>
    1035. 

  1035.   <li><?php bugfix(67249); ?> (printf out-of-bounds read).</li>
    1036. 

  1036.   <li><?php bugfix(67250); ?> (iptcparse out-of-bounds read).</li>
    1037. 

  1037.   <li><?php bugfix(67252); ?> (convert_uudecode out-of-bounds read). (Stas) - Fileinfo:</li>
    1038. 

  1038.   <li><?php bugfix(66307); ?> (Fileinfo crashes with powerpoint files).</li>
    1039. 

  1039.   <li><?php bugfix(67327); ?> (fileinfo: CDF infinite loop in nelements DoS). (CVE-2014-0238)</li>
    1040. 

  1040.   <li><?php bugfix(67328); ?> (fileinfo: fileinfo: numerous file_printf calls resulting in performance degradation). (CVE-2014-0237)</li>
    1041. 

  1041. </ul></li>
    1042. 

  1042. <li>Date:
    1043. 

  1043. <ul>
    1044. 

  1044.   <li><?php bugfix(67118); ?> (DateTime constructor crash with invalid data).</li>
    1045. 

  1045.   <li><?php bugfix(67251); ?> (date_parse_from_format out-of-bounds read).</li>
    1046. 

  1046.   <li><?php bugfix(67253); ?> (timelib_meridian_with_check out-of-bounds read).</li>
    1047. 

  1047. </ul></li>
    1048. 

  1048. <li>DOM:
    1049. 

  1049. <ul>
    1050. 

  1050.   <li><?php bugfix(67081); ?> (DOMDocumentType-&gt;internalSubset returns entire DOCTYPE tag, not only the subset).</li>
    1051. 

  1051. </ul></li>
    1052. 

  1052. <li>FPM:
    1053. 

  1053. <ul>
    1054. 

  1054.   <li><?php bugfix(66908); ?> (php-fpm reload leaks epoll_create() file descriptor).</li>
    1055. 

  1055. </ul></li>
    1056. 

  1056. <li>Phar:
    1057. 

  1057. <ul>
    1058. 

  1058.   <li><?php bugfix(64498); ?> ($phar-&gt;buildFromDirectory can't compress file with an accent in its name).</li>
    1059. 

  1059. </ul></li>
    1060. 

  1060. </ul>
    1061. 

  1061. <!-- }}} --></section>
    1062. 

  1062. 

  1063. <section class="version" id="5.5.12"><!-- {{{ 5.5.12 -->
    1064. 

  1064. <h3>Version 5.5.12</h3>
    1065. 

  1065. <?php release_date('1-May-2014'); ?>
    1066. 

  1066. <ul><li>Core:
    1067. 

  1067. <ul>
    1068. 

  1068.   <li><?php bugfix(61019); ?> (Out of memory on command stream_get_contents).</li>
    1069. 

  1069.   <li><?php bugfix(64330); ?> (stream_socket_server() creates wrong Abstract Namespace 
    1070. 

  1070.     UNIX sockets).</li>
    1071. 

  1071.   <li><?php bugfix(66182); ?> (exit in stream filter produces segfault).</li>
    1072. 

  1072.   <li><?php bugfix(66736); ?> (fpassthru broken).</li>
    1073. 

  1073.   <li><?php bugfix(67024); ?> (getimagesize should recognize BMP files with negative
    1074. 

  1074.     heighty).</li>
    1075. 

  1075.   <li><?php bugfix(67043); ?> (substr_compare broke by previous change).</li>
    1076. 

  1076. </ul></li>
    1077. 

  1077. <li>cURL:
    1078. 

  1078. <ul>
    1079. 

  1079.   <li><?php bugfix(66562); ?> (curl_exec returns differently than curl_multi_getcontent).</li>
    1080. 

  1080. </ul></li>
    1081. 

  1081. <li>Date:
    1082. 

  1082. <ul>
    1083. 

  1083.   <li><?php bugfix(66721); ?> (__wakeup of DateTime segfaults when invalid object data is
    1084. 

  1084.     supplied).</li>
    1085. 

  1085. </ul></li>
    1086. 

  1086. <li>Embed:
    1087. 

  1087. <ul>
    1088. 

  1088.   <li><?php bugfix(65715); ?> (php5embed.lib isn't provided anymore).</li>
    1089. 

  1089. </ul></li>
    1090. 

  1090. <li>Fileinfo:
    1091. 

  1091. <ul>
    1092. 

  1092.   <li><?php bugfix(66987); ?> (Memory corruption in fileinfo ext / bigendian).</li>
    1093. 

  1093. </ul></li>
    1094. 

  1094. <li>FPM:
    1095. 

  1095. <ul>
    1096. 

  1096.   <li><?php bugfix(66482); ?> (unknown entry 'priority' in php-fpm.conf).</li>
    1097. 

  1097.   <li><?php bugfix(67060); ?> (possible privilege escalation due to insecure default configuration). (CVE-2014-0185)).</li>
    1098. 

  1098. </ul></li>
    1099. 

  1099. <li>Json:
    1100. 

  1100. <ul>
    1101. 

  1101.   <li><?php bugfix(66021); ?> (Blank line inside empty array/object when
    1102. 

  1102.     JSON_PRETTY_PRINT is set).</li>
    1103. 

  1103. </ul></li>
    1104. 

  1104. <li>LDAP:
    1105. 

  1105. <ul>
    1106. 

  1106.   <li>Fixed issue with null bytes in LDAP bindings.</li>
    1107. 

  1107. </ul></li>
    1108. 

  1108. <li>mysqli:
    1109. 

  1109. <ul>
    1110. 

  1110.   <li>Fixed problem in mysqli_commit()/mysqli_rollback() with second parameter
    1111. 

  1111.     (extra comma) and third parameters (lack of escaping).</li>
    1112. 

  1112. </ul></li>
    1113. 

  1113. <li>Openssl:
    1114. 

  1114. <ul>
    1115. 

  1115.   <li><?php bugfix(66942); ?> (memory leak in openssl_seal()).</li>
    1116. 

  1116.   <li><?php bugfix(66952); ?> (memory leak in openssl_open()).</li>
    1117. 

  1117. </ul></li>
    1118. 

  1118. <li>SimpleXML:
    1119. 

  1119. <ul>
    1120. 

  1120.   <li><?php bugfix(66084); ?> (simplexml_load_string() mangles empty node name).</li>
    1121. 

  1121. </ul></li>
    1122. 

  1122. <li>SQLite:
    1123. 

  1123. <ul>
    1124. 

  1124.   <li><?php bugfix(66967); ?> (Updated bundled libsqlite to 3.8.4.3)</li>
    1125. 

  1125. </ul></li>
    1126. 

  1126. <li>XSL:
    1127. 

  1127. <ul>
    1128. 

  1128.   <li><?php bugfix(53965); ?> (&lt;xsl:include&gt; cannot find files with relative paths
    1129. 

  1129.     when loaded with "file://")</li>
    1130. 

  1130. </ul></li>
    1131. 

  1131. <li>Apache2 Handler SAPI:
    1132. 

  1132. <ul>
    1133. 

  1133.   <li>Fixed Apache log issue caused by APR's lack of support for %zu
    1134. 

  1134.     (APR issue https://issues.apache.org/bugzilla/show_bug.cgi?id=56120)</li>
    1135. 

  1135. </ul></li>
    1136. 

  1136. </ul>
    1137. 

  1137. <!-- }}} --></section>
    1138. 

  1138. 

  1139. <section class="version" id="5.4.28"><!-- {{{ 5.4.28 -->
    1140. 

  1140. <h3>Version 5.4.28</h3>
    1141. 

  1141. <b>01-May-2014</b>
    1142. 

  1142. <ul><li>Core:
    1143. 

  1143. <ul>
    1144. 

  1144.   <li><?php bugfix(61019); ?> (Out of memory on command stream_get_contents).</li>
    1145. 

  1145.   <li><?php bugfix(64330); ?> (stream_socket_server() creates wrong Abstract Namespace UNIX sockets).</li>
    1146. 

  1146.   <li><?php bugfix(66171); ?> (Symlinks and session handler allow open_basedir bypass).</li>
    1147. 

  1147.   <li><?php bugfix(66182); ?> (exit in stream filter produces segfault).</li>
    1148. 

  1148.   <li><?php bugfix(66736); ?> (fpassthru broken).</li>
    1149. 

  1149.   <li><?php bugfix(67024); ?> (getimagesize should recognize BMP files with negative height).</li>
    1150. 

  1150. </ul></li>
    1151. 

  1151. <li>cURL:
    1152. 

  1152. <ul>
    1153. 

  1153.   <li><?php bugfix(66562); ?> (curl_exec returns differently than curl_multi_getcontent).</li>
    1154. 

  1154. </ul></li>
    1155. 

  1155. <li>Date:
    1156. 

  1156. <ul>
    1157. 

  1157.   <li><?php bugfix(66721); ?> (__wakeup of DateTime segfaults when invalid object data is supplied).</li>
    1158. 

  1158. </ul></li>
    1159. 

  1159. <li>Embed:
    1160. 

  1160. <ul>
    1161. 

  1161.   <li><?php bugfix(65715); ?> (php5embed.lib isn't provided anymore).</li>
    1162. 

  1162. </ul></li>
    1163. 

  1163. <li>Fileinfo:
    1164. 

  1164. <ul>
    1165. 

  1165.   <li><?php bugfix(66987); ?> (Memory corruption in fileinfo ext / bigendian).</li>
    1166. 

  1166. </ul></li>
    1167. 

  1167. <li>FPM:
    1168. 

  1168. <ul>
    1169. 

  1169.   <li><?php bugfix(66482); ?> (unknown entry 'priority' in php-fpm.conf).</li>
    1170. 

  1170.   <li><?php bugfix(67060); ?> (sapi/fpm: possible privilege escalation due to insecure default configuration) (CVE-2014-0185).</li>
    1171. 

  1171. </ul></li>
    1172. 

  1172. <li>JSON:
    1173. 

  1173. <ul>
    1174. 

  1174.   <li><?php bugfix(66021); ?> (Blank line inside empty array/object when JSON_PRETTY_PRINT is set).</li>
    1175. 

  1175. </ul></li>
    1176. 

  1176. <li>LDAP:
    1177. 

  1177. <ul>
    1178. 

  1178.   <li>Fixed issue with null bytes in LDAP bindings.</li>
    1179. 

  1179. </ul></li>
    1180. 

  1180. <li>OpenSSL:
    1181. 

  1181. <ul>
    1182. 

  1182.   <li><?php bugfix(66942); ?> (memory leak in openssl_seal()).</li>
    1183. 

  1183.   <li><?php bugfix(66952); ?> (memory leak in openssl_open()).</li>
    1184. 

  1184. </ul></li>
    1185. 

  1185. <li>SimpleXML:
    1186. 

  1186. <ul>
    1187. 

  1187.   <li><?php bugfix(66084); ?> (simplexml_load_string() mangles empty node name) (Anatol)</li>
    1188. 

  1188. </ul></li>
    1189. 

  1189. <li>XSL:
    1190. 

  1190. <ul>
    1191. 

  1191.   <li><?php bugfix(53965); ?> (&lt;xsl:include&gt; cannot find files with relative paths when loaded with "file://").</li>
    1192. 

  1192. </ul></li>
    1193. 

  1193. <li>Apache2 Handler SAPI:
    1194. 

  1194. <ul>
    1195. 

  1195.   <li>Fixed Apache log issue caused by APR's lack of support for %zu (APR issue <a href="https://issues.apache.org/bugzilla/show_bug.cgi?id=56120">56120</a>).</li>
    1196. 

  1196. </ul></li>
    1197. 

  1197. </ul>
    1198. 

  1198. <!-- }}} --></section>
    1199. 

  1199. 

  1200. <section class="version" id="5.5.11"><!-- {{{ 5.5.11 -->
    1201. 

  1201. <h3>Version 5.5.11</h3>
    1202. 

  1202. <?php release_date('3-Apr-2014'); ?>
    1203. 

  1203. <ul><li>Core:
    1204. 

  1204. <ul>
    1205. 

  1205.   <li><?php bugfix(60602); ?> (proc_open() changes environment array).</li>
    1206. 

  1206.   <li>Allow zero length comparison in substr_compare().</li>
    1207. 

  1207. </ul></li>
    1208. 

  1208. <li>cURL:
    1209. 

  1209. <ul>
    1210. 

  1210.   <li><?php bugfix(66109); ?> (Can't reset CURLOPT_CUSTOMREQUEST to default behaviour).</li>
    1211. 

  1211.   <li>Fix compilation on libcurl versions between 7.10.5 and 7.12.2, inclusive.</li>
    1212. 

  1212. </ul></li>
    1213. 

  1213. <li>Fileinfo:
    1214. 

  1214. <ul>
    1215. 

  1215.   <li><?php bugfix(66946); ?> (fileinfo: extensive backtracking in awk rule regular expression (CVE-2013-7345)).</li>
    1216. 

  1216. </ul></li>
    1217. 

  1217. <li>FPM:
    1218. 

  1218. <ul>
    1219. 

  1219.   <li>Added clear_env configuration directive to disable clearenv() call.</li>
    1220. 

  1220. </ul></li>
    1221. 

  1221. <li>GD:
    1222. 

  1222. <ul>
    1223. 

  1223.   <li><?php bugfix(66714); ?> (imageconvolution breakage).</li>
    1224. 

  1224.   <li><?php bugfix(66869); ?> (Invalid 2nd argument crashes imageaffinematrixget).</li>
    1225. 

  1225.   <li><?php bugfix(66887); ?> (imagescale - poor quality of scaled image).</li>
    1226. 

  1226.   <li><?php bugfix(66890); ?> (imagescale segfault).</li>
    1227. 

  1227.   <li><?php bugfix(66893); ?> (imagescale ignore method argument).</li>
    1228. 

  1228. </ul></li>
    1229. 

  1229. <li>GMP:
    1230. 

  1230. <ul>
    1231. 

  1231.   <li><?php bugfix(66872); ?> (invalid argument crashes gmp_testbit).</li>
    1232. 

  1232. </ul></li>
    1233. 

  1233. <li>Hash:
    1234. 

  1234. <ul>
    1235. 

  1235.   <li>hash_pbkdf2() now works correctly if the $length argument is not specified.</li>
    1236. 

  1236. </ul></li>
    1237. 

  1237. <li>Intl:
    1238. 

  1238. <ul>
    1239. 

  1239.   <li><?php bugfix(66873); ?> A reproductible crash in UConverter when given invalid encoding.</li>
    1240. 

  1240. </ul></li>
    1241. 

  1241. <li>Mail:
    1242. 

  1242. <ul>
    1243. 

  1243.   <li><?php bugfix(66535); ?> (Don't add newline after X-PHP-Originating-Script).</li>
    1244. 

  1244. </ul></li>
    1245. 

  1245. <li>MySQLi:
    1246. 

  1246. <ul>
    1247. 

  1247.   <li><?php bugfix(66762); ?> (Segfault in mysqli_stmt::bind_result() when link closed).</li>
    1248. 

  1248. </ul></li>
    1249. 

  1249. <li>OPCache:
    1250. 

  1250. <ul>
    1251. 

  1251.   <li>Added function opcache_is_script_cached().</li>
    1252. 

  1252.   <li>Added information about interned strings usage.</li>
    1253. 

  1253. </ul></li>
    1254. 

  1254. <li>Openssl:
    1255. 

  1255. <ul>
    1256. 

  1256.   <li><?php bugfix(66833); ?> (Default disgest algo is still MD5, switch to SHA1).</li>
    1257. 

  1257. </ul></li>
    1258. 

  1258. <li>SQLite:
    1259. 

  1259. <ul>
    1260. 

  1260.   <li>Updated bundled libsqlite to 3.8.3.1.</li>
    1261. 

  1261. </ul></li>
    1262. 

  1262. <li>SPL:
    1263. 

  1263. <ul>
    1264. 

  1264.   <li>Added feature <?php bugl(65545); ?> (SplFileObject::fread()).</li>
    1265. 

  1265. </ul></li>
    1266. 

  1266. </ul>
    1267. 

  1267. <!-- }}} --></section>
    1268. 

  1268. 

  1269. <section class="version" id="5.4.27"><!-- {{{ 5.4.27 -->
    1270. 

  1270. <h3>Version 5.4.27</h3>
    1271. 

  1271. <b>03-Apr-2014</b>
    1272. 

  1272. <ul><li>Core:
    1273. 

  1273. <ul>
    1274. 

  1274.   <li><?php bugfix(60602); ?> (proc_open() changes environment array)</li>
    1275. 

  1275. </ul></li>
    1276. 

  1276. <li>Fileinfo:
    1277. 

  1277. <ul>
    1278. 

  1278.   <li><?php bugfix(66946); ?> (fileinfo: extensive backtracking in awk rule regular expression (CVE-2013-7345))</li>
    1279. 

  1279. </ul></li>
    1280. 

  1280. <li>FPM:
    1281. 

  1281. <ul>
    1282. 

  1282.   <li>Added clear_env configuration directive to disable clearenv() call.</li>
    1283. 

  1283. </ul></li>
    1284. 

  1284. <li>GMP:
    1285. 

  1285. <ul>
    1286. 

  1286.   <li><?php bugfix(66872); ?> (invalid argument crashes gmp_testbit)</li>
    1287. 

  1287. </ul></li>
    1288. 

  1288. <li>Mail:
    1289. 

  1289. <ul>
    1290. 

  1290.   <li><?php bugfix(66535); ?> (Don't add newline after X-PHP-Originating-Script)</li>
    1291. 

  1291. </ul></li>
    1292. 

  1292. <li>MySQLi:
    1293. 

  1293. <ul>
    1294. 

  1294.   <li><?php bugfix(66762); ?> (Segfault in mysqli_stmt::bind_result() when link closed)</li>
    1295. 

  1295. </ul></li>
    1296. 

  1296. <li>Openssl:
    1297. 

  1297. <ul>
    1298. 

  1298.   <li><?php bugfix(66833); ?> (Default disgest algo is still MD5, switch to SHA1)</li>
    1299. 

  1299. </ul></li>
    1300. 

  1300. </ul>
    1301. 

  1301. <!-- }}} --></section>
    1302. 

  1302. 

  1303. 

  1304. <section class="version" id="5.5.10"><!-- {{{ 5.5.10 -->
    1305. 

  1305. <h3>Version 5.5.10</h3>
    1306. 

  1306. <?php release_date('6-Mar-2014'); ?>
    1307. 

  1307. <ul><li>Core:
    1308. 

  1308. <ul>
    1309. 

  1309.   <li><?php bugfix(66574); ?> (Allow multiple paths in php_ini_scanned_path).</li>
    1310. 

  1310. </ul></li>
    1311. 

  1311. <li>Date:
    1312. 

  1312. <ul>
    1313. 

  1313.   <li><?php bugfix(45528); ?> (Allow the DateTimeZone constructor to accept timezones
    1314. 

  1314.     per offset too).</li>
    1315. 

  1315. </ul></li>
    1316. 

  1316. <li>Fileinfo:
    1317. 

  1317. <ul>
    1318. 

  1318.   <li><?php bugfix(66731); ?> (file: infinite recursion (CVE-2014-1943)).</li>
    1319. 

  1319.   <li><?php bugfix(66820); ?> (out-of-bounds memory access in fileinfo (CVE-2014-2270)).</li>
    1320. 

  1320. </ul></li>
    1321. 

  1321. <li>GD:
    1322. 

  1322. <ul>
    1323. 

  1323.   <li><?php bugfix(66815); ?> (imagecrop(): insufficient fix for NULL defer (CVE-2013-7327)).</li>
    1324. 

  1324. </ul></li>
    1325. 

  1325. <li>JSON:
    1326. 

  1326. <ul>
    1327. 

  1327.   <li><?php bugfix(65753); ?> (JsonSerializeable couldn't implement on module extension).</li>
    1328. 

  1328. </ul></li>
    1329. 

  1329. <li>LDAP:
    1330. 

  1330. <ul>
    1331. 

  1331.   <li>Implemented ldap_modify_batch (https://wiki.php.net/rfc/ldap_modify_batch).</li>
    1332. 

  1332. </ul></li>
    1333. 

  1333. <li>Openssl:
    1334. 

  1334. <ul>
    1335. 

  1335.   <li><?php bugfix(66501); ?> (Add EC key support to php_openssl_is_private_key).</li>
    1336. 

  1336. </ul></li>
    1337. 

  1337. <li>PCRE:
    1338. 

  1338. <ul>
    1339. 

  1339.   <li>Upgraded to PCRE 8.34.</li>
    1340. 

  1340. </ul></li>
    1341. 

  1341. <li>Pgsql:
    1342. 

  1342. <ul>
    1343. 

  1343.   <li>Added warning for dangerous client encoding and remove possible injections
    1344. 

  1344.     for pg_insert()/pg_update()/pg_delete()/pg_select().</li>
    1345. 

  1345. </ul></li>
    1346. 

  1346. </ul>
    1347. 

  1347. <!-- }}} --></section>
    1348. 

  1348. 

  1349. <section class="version" id="5.4.26"><!-- {{{ 5.4.26 -->
    1350. 

  1350. <h3>Version 5.4.26</h3>
    1351. 

  1351. <?php release_date('06-Mar-2014'); ?>
    1352. 

  1352. <ul><li>JSON:
    1353. 

  1353. <ul>
    1354. 

  1354.   <li><?php bugfix(65753); ?> (JsonSerializeable couldn't implement on module extension)</li>
    1355. 

  1355. </ul></li>
    1356. 

  1356. <li>Fileinfo:
    1357. 

  1357. <ul>
    1358. 

  1358.   <li><?php bugfix(66731); ?> (file: infinite recursion) (CVE-2014-1943).</li>
    1359. 

  1359.   <li><?php bugfix(66820); ?> (out-of-bounds memory access in fileinfo) (CVE-2014-2270).</li>
    1360. 

  1360. </ul></li>
    1361. 

  1361. <li>LDAP:
    1362. 

  1362. <ul>
    1363. 

  1363.   <li>Implemented ldap_modify_batch (https://wiki.php.net/rfc/ldap_modify_batch).</li>
    1364. 

  1364. </ul></li>
    1365. 

  1365. <li>Openssl:
    1366. 

  1366. <ul>
    1367. 

  1367.   <li><?php bugfix(66501); ?> (Add EC key support to php_openssl_is_private_key).</li>
    1368. 

  1368. </ul></li>
    1369. 

  1369. <li>Pgsql:
    1370. 

  1370. <ul>
    1371. 

  1371.   <li>Added warning for dangerous client encoding and remove possible injections for pg_insert()/pg_update()/pg_delete()/pg_select().</li>
    1372. 

  1372. </ul></li>
    1373. 

  1373. </ul>
    1374. 

  1374. <!-- }}} --></section>
    1375. 

  1375. 

  1376. <section class="version" id="5.5.9"><!-- {{{ 5.5.9 -->
    1377. 

  1377. <h3>Version 5.5.9</h3>
    1378. 

  1378. <?php release_date('6-Feb-2014'); ?>
    1379. 

  1379. <ul><li>Core:
    1380. 

  1380. <ul>
    1381. 

  1381.   <li><?php bugfix(66509); ?> (copy() arginfo has changed starting from 5.4).</li>
    1382. 

  1382. </ul></li>
    1383. 

  1383. <li>GD:
    1384. 

  1384. <ul>
    1385. 

  1385.   <li><?php bugfix(66356); ?> (Heap Overflow Vulnerability in imagecrop(), CVE-2013-7226).</li>
    1386. 

  1386. </ul></li>
    1387. 

  1387. <li>OPCache:
    1388. 

  1388. <ul>
    1389. 

  1389.   <li><?php bugfix(66474); ?> (Optimizer bug in constant string to boolean conversion).</li>
    1390. 

  1390.   <li><?php bugfix(66461); ?> (PHP crashes if opcache.interned_strings_buffer=0).</li>
    1391. 

  1391.   <li><?php bugfix(66298); ?> (ext/opcache/Optimizer/zend_optimizer.c has dos-style ^M as lineend).</li>
    1392. 

  1392. </ul></li>
    1393. 

  1393. <li>PDO_pgsql:
    1394. 

  1394. <ul>
    1395. 

  1395.   <li><?php bugfix(62479); ?> (PDO-pgsql cannot connect if password contains spaces).</li>
    1396. 

  1396. </ul></li>
    1397. 

  1397. <li>Readline:
    1398. 

  1398. <ul>
    1399. 

  1399.   <li><?php bugfix(66412); ?> (readline_clear_history() with libedit causes segfault after #65714).</li>
    1400. 

  1400. </ul></li>
    1401. 

  1401. <li>Session:
    1402. 

  1402. <ul>
    1403. 

  1403.   <li><?php bugfix(66469); ?> (Session module is sending multiple set-cookie headers when session.use_strict_mode=1).</li>
    1404. 

  1404.   <li><?php bugfix(66481); ?> (Segfaults on session_name()).</li>
    1405. 

  1405. </ul></li>
    1406. 

  1406. <li>Standard:
    1407. 

  1407. <ul>
    1408. 

  1408.   <li><?php bugfix(66395); ?> (basename function doesn't remove drive letter).</li>
    1409. 

  1409. </ul></li>
    1410. 

  1410. <li>Sockets:
    1411. 

  1411. <ul>
    1412. 

  1412.   <li><?php bugfix(66381); ?> (__ss_family was changed on AIX 5.3).</li>
    1413. 

  1413. </ul></li>
    1414. 

  1414. <li>Zend Engine:
    1415. 

  1415. <ul>
    1416. 

  1416.   <li><?php bugfix(66009); ?> (Failed compilation of PHP extension with C++ std library using VS 2012).</li>
    1417. 

  1417. </ul></li>
    1418. 

  1418. </ul>
    1419. 

  1419. <!-- }}} --></section>
    1420. 

  1420. 

  1421. <section class="version" id="5.4.25"><!-- {{{ 5.4.25 -->
    1422. 

  1422. <h3>Version 5.4.25</h3>
    1423. 

  1423. <?php release_date('06-Feb-2014'); ?>
    1424. 

  1424. <ul><li>Core:
    1425. 

  1425. <ul>
    1426. 

  1426.   <li><?php bugfix(66286); ?> (Incorrect object comparison with inheritance).</li>
    1427. 

  1427.   <li><?php bugfix(66509); ?> (copy() arginfo has changed starting from 5.4).</li>
    1428. 

  1428. </ul></li>
    1429. 

  1429. <li>mysqlnd:
    1430. 

  1430. <ul>
    1431. 

  1431.   <li><?php bugfix(66283); ?> (Segmentation fault after memory_limit).</li>
    1432. 

  1432. </ul></li>
    1433. 

  1433. <li>PDO_pgsql:
    1434. 

  1434. <ul>
    1435. 

  1435.   <li><?php bugfix(62479); ?> (PDO-psql cannot connect if password contains spaces).</li>
    1436. 

  1436. </ul></li>
    1437. 

  1437. <li>Session:
    1438. 

  1438. <ul>
    1439. 

  1439.   <li><?php bugfix(66481); ?> (Calls to session_name() segfault when session.name is null).</li>
    1440. 

  1440. </ul></li>
    1441. 

  1441. </ul>
    1442. 

  1442. <!-- }}} --></section>
    1443. 

  1443. 

  1444. <section class="version" id="5.5.8"><!-- {{{ 5.5.8 -->
    1445. 

  1445. <h3>Version 5.5.8</h3>
    1446. 

  1446. <?php release_date('9-Jan-2014'); ?>
    1447. 

  1447. <ul><li>Core:
    1448. 

  1448. <ul>
    1449. 

  1449.   <li>Disallowed JMP into a finally block.</li>
    1450. 

  1450.   <li>Added validation of class names in the autoload process.</li>
    1451. 

  1451.   <li>Fixed invalid C code in zend_strtod.c.</li>
    1452. 

  1452.   <li><?php bugfix(66041); ?> (list() fails to unpack yielded ArrayAccess object).</li>
    1453. 

  1453.   <li><?php bugfix(65764); ?> (generators/throw_rethrow FAIL with ZEND_COMPILE_EXTENDED_INFO).</li>
    1454. 

  1454.   <li><?php bugfix(61645); ?> (fopen and O_NONBLOCK).</li>
    1455. 

  1455.   <li><?php bugfix(66218); ?> (zend_register_functions breaks reflection).</li>
    1456. 

  1456. </ul></li>
    1457. 

  1457. <li>Date:
    1458. 

  1458. <ul>
    1459. 

  1459.   <li><?php bugfix(66060); ?> (Heap buffer over-read in DateInterval, CVE-2013-6712).</li>
    1460. 

  1460.   <li><?php bugfix(65768); ?> (DateTimeImmutable::diff does not work).</li>
    1461. 

  1461. </ul></li>
    1462. 

  1462. <li>DOM:
    1463. 

  1463. <ul>
    1464. 

  1464.   <li><?php bugfix(65196); ?> (Passing DOMDocumentFragment to DOMDocument::saveHTML() 
    1465. 

  1465.     Produces invalid Markup).</li>
    1466. 

  1466. </ul></li>
    1467. 

  1467. <li>Exif:
    1468. 

  1468. <ul>
    1469. 

  1469.   <li><?php bugfix(65873); ?> (Integer overflow in exif_read_data()).</li>
    1470. 

  1470. </ul></li>
    1471. 

  1471. <li>Filter:
    1472. 

  1472. <ul>
    1473. 

  1473.   <li><?php bugfix(66229); ?> (128.0.0.0/16 isn't reserved any longer).</li>
    1474. 

  1474. </ul></li>
    1475. 

  1475. <li>GD:
    1476. 

  1476. <ul>
    1477. 

  1477.   <li><?php bugfix(64405); ?> (Use freetype-config for determining freetype2 dir(s)).</li>
    1478. 

  1478. </ul></li>
    1479. 

  1479. <li>PDO_odbc:
    1480. 

  1480. <ul>
    1481. 

  1481.   <li><?php bugfix(66311); ?> (Stack smashing protection kills PDO/ODBC queries).</li>
    1482. 

  1482. </ul></li>
    1483. 

  1483. <li>MySQLi:
    1484. 

  1484. <ul>
    1485. 

  1485.   <li><?php bugfix(65486); ?> (mysqli_poll() is broken on win x64).</li>
    1486. 

  1486. </ul></li>
    1487. 

  1487. <li>OPCache:
    1488. 

  1488. <ul>
    1489. 

  1489.   <li>Fixed revalidate_path=1 behavior to avoid caching of symlinks values.</li>
    1490. 

  1490.   <li>Fixed Issue #140: "opcache.enable_file_override" doesn't respect
    1491. 

  1491.     "opcache.revalidate_freq".</li>
    1492. 

  1492. </ul></li>
    1493. 

  1493. <li>SNMP:
    1494. 

  1494. <ul>
    1495. 

  1495.   <li>Fixed SNMP_ERR_TOOBIG handling for bulk walk operations.</li>
    1496. 

  1496. </ul></li>
    1497. 

  1497. <li>SOAP:
    1498. 

  1498. <ul>
    1499. 

  1499.   <li><?php bugfix(66112); ?> (Use after free condition in SOAP extension).</li>
    1500. 

  1500. </ul></li>
    1501. 

  1501. <li>Sockets:
    1502. 

  1502. <ul>
    1503. 

  1503.   <li><?php bugfix(65923); ?> (ext/socket assumes AI_V4MAPPED is defined).</li>
    1504. 

  1504. </ul></li>
    1505. 

  1505. <li>XSL:
    1506. 

  1506. <ul>
    1507. 

  1507.   <li><?php bugfix(49634); ?> (Segfault throwing an exception in a XSL registered function).</li>
    1508. 

  1508. </ul></li>
    1509. 

  1509. <li>ZIP:
    1510. 

  1510. <ul>
    1511. 

  1511.   <li><?php bugfix(66321); ?> (ZipArchive::open() ze_obj->filename_len not real).</li>
    1512. 

  1512. </ul></li>
    1513. 

  1513. </ul>
    1514. 

  1514. <!-- }}} --></section>
    1515. 

  1515. 

  1516. <section class="version" id="5.4.24"><!-- {{{ 5.4.24 -->
    1517. 

  1517. <h3>Version 5.4.24</h3>
    1518. 

  1518. <?php release_date('09-Jan-2014'); ?>
    1519. 

  1519. <ul><li>Core:
    1520. 

  1520. <ul>
    1521. 

  1521.   <li>Added validation of class names in the autoload process.</li>
    1522. 

  1522.   <li>Fixed invalid C code in zend_strtod.c.</li>
    1523. 

  1523.   <li><?php bugfix(61645); ?> (fopen and O_NONBLOCK).</li>
    1524. 

  1524. </ul></li>
    1525. 

  1525. <li>Date:
    1526. 

  1526. <ul>
    1527. 

  1527.   <li><?php bugfix(66060); ?> (Heap buffer over-read in DateInterval, CVE-2013-6712).</li>
    1528. 

  1528.   <li><?php bugfix(63391); ?> (Incorrect/inconsistent day of week prior to the year 1600).</li>
    1529. 

  1529.   <li><?php bugfix(61599); ?> (Wrong Day of Week).</li>
    1530. 

  1530. </ul></li>
    1531. 

  1531. <li>DOM:
    1532. 

  1532. <ul>
    1533. 

  1533.   <li><?php bugfix(65196); ?> (Passing DOMDocumentFragment to DOMDocument::saveHTML() Produces invalid Markup).</li>
    1534. 

  1534. </ul></li>
    1535. 

  1535. <li>Exif:
    1536. 

  1536. <ul>
    1537. 

  1537.   <li><?php bugfix(65873); ?> (Integer overflow in exif_read_data()).</li>
    1538. 

  1538. </ul></li>
    1539. 

  1539. <li>Filter:
    1540. 

  1540. <ul>
    1541. 

  1541.   <li><?php bugfix(66229); ?> (128.0.0.0/16 isn't reserved any longer).</li>
    1542. 

  1542. </ul></li>
    1543. 

  1543. <li>GD:
    1544. 

  1544. <ul>
    1545. 

  1545.   <li><?php bugfix(64405); ?> (Use freetype-config for determining freetype2 dir(s)).</li>
    1546. 

  1546. </ul></li>
    1547. 

  1547. <li>PDO_odbc:
    1548. 

  1548. <ul>
    1549. 

  1549.   <li><?php bugfix(66311); ?> (Stack smashing protection kills PDO/ODBC queries).</li>
    1550. 

  1550. </ul></li>
    1551. 

  1551. <li>SNMP:
    1552. 

  1552. <ul>
    1553. 

  1553.   <li>Fixed SNMP_ERR_TOOBIG handling for bulk walk operations.</li>
    1554. 

  1554. </ul></li>
    1555. 

  1555. <li>XSL:
    1556. 

  1556. <ul>
    1557. 

  1557.   <li><?php bugfix(49634); ?> (Segfault throwing an exception in a XSL registered function).</li>
    1558. 

  1558. </ul></li>
    1559. 

  1559. <li>ZIP:
    1560. 

  1560. <ul>
    1561. 

  1561.   <li>Fixed Bug #66321 (ZipArchive::open() ze_obj-&gt;filename_len not real).</li>
    1562. 

  1562. </ul></li>
    1563. 

  1563. </ul>
    1564. 

  1564. <!-- }}} --></section>
    1565. 

  1565. 

  1566. 

  1567. <section class="version" id="5.5.7"><!-- {{{ 5.5.7 -->
    1568. 

  1568. <h3>Version 5.5.7</h3>
    1569. 

  1569. <?php release_date('12-Dec-2013'); ?>
    1570. 

  1570. <ul><li>Core:
    1571. 

  1571. <ul>
    1572. 

  1572.   <li><?php bugfix(66094); ?> (unregister_tick_function tries to cast a Closure to a string).</li>
    1573. 

  1573.   <li><?php bugfix(65969); ?> (Chain assignment with T_LIST failure).</li>
    1574. 

  1574. </ul></li>
    1575. 

  1575. <li>CLI server:
    1576. 

  1576. <ul>
    1577. 

  1577.   <li>Added some MIME types to the CLI web server.</li>
    1578. 

  1578.   <li>Implemented FR #65917 (getallheaders() is not supported by the built-in web
    1579. 

  1579.     server) - also implements apache_response_headers()</li>
    1580. 

  1580. </ul></li>
    1581. 

  1581. <li>OPCache:
    1582. 

  1582. <ul>
    1583. 

  1583.   <li><?php bugfix(66176); ?> (Invalid constant substitution).</li>
    1584. 

  1584.   <li><?php bugfix(65915); ?> (Inconsistent results with require return value).</li>
    1585. 

  1585.   <li><?php bugfix(65559); ?> (Opcache: cache not cleared if changes occur while running).</li>
    1586. 

  1586. </ul></li>
    1587. 

  1587. <li>readline:
    1588. 

  1588. <ul>
    1589. 

  1589.   <li><?php bugfix(65714); ?> (PHP cli forces the tty to cooked mode).</li>
    1590. 

  1590. </ul></li>
    1591. 

  1591. <li>Openssl:
    1592. 

  1592. <ul>
    1593. 

  1593.   <li>Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420).</li>
    1594. 

  1594. </ul></li>
    1595. 

  1595. </ul>
    1596. 

  1596. <!-- }}} --></section>
    1597. 

  1597. 

  1598. <section class="version" id="5.5.6"><!-- {{{ 5.5.6 -->
    1599. 

  1599. <h3>Version 5.5.6</h3>
    1600. 

  1600. <?php release_date('14-Nov-2013'); ?>
    1601. 

  1601. <ul><li>Core:
    1602. 

  1602. <ul>
    1603. 

  1603.   <li>Improved performance of array_merge() and func_get_args() by eliminating useless copying.</li>
    1604. 

  1604.   <li><?php bugfix(65947); ?> (basename is no more working after fgetcsv in certain situation).</li>
    1605. 

  1605.   <li><?php bugfix(65939); ?> (Space before ";" breaks php.ini parsing).</li>
    1606. 

  1606.   <li><?php bugfix(65911); ?> (scope resolution operator - strange behavior with $this).</li>
    1607. 

  1607.   <li><?php bugfix(65936); ?> (dangling context pointer causes crash).</li>
    1608. 

  1608. </ul></li>
    1609. 

  1609. <li>FPM:
    1610. 

  1610. <ul>
    1611. 

  1611.   <li>Changed default listen() backlog to 65535.</li>
    1612. 

  1612. </ul></li>
    1613. 

  1613. <li>JSON:
    1614. 

  1614. <ul>
    1615. 

  1615.   <li><?php bugfix(64874); ?> (json_decode handles whitespace incorrectly).</li>
    1616. 

  1616. </ul></li>
    1617. 

  1617. <li>MySQLi:
    1618. 

  1618. <ul>
    1619. 

  1619.   <li><?php bugfix(66043); ?> (Segfault calling bind_param() on mysqli).</li>
    1620. 

  1620. </ul></li>
    1621. 

  1621. <li>OPCache:
    1622. 

  1622. <ul>
    1623. 

  1623.   <li>Increased limit for opcache.max_accelerated_files to 1,000,000.</li>
    1624. 

  1624.   <li>Fixed issue #115 (path issue when using phar).</li>
    1625. 

  1625.   <li>Fixed issue #149 (Phar mount points not working with OPcache enabled).</li>
    1626. 

  1626. </ul></li>
    1627. 

  1627. <li>ODBC:
    1628. 

  1628. <ul>
    1629. 

  1629.   <li><?php bugfix(65950); ?> (Field name truncation if the field name is bigger than 32 characters).</li>
    1630. 

  1630. </ul></li>
    1631. 

  1631. <li>PDO:
    1632. 

  1632. <ul>
    1633. 

  1633.   <li><?php bugfix(66033); ?> (Segmentation Fault when constructor of PDO statement throws an exception).</li>
    1634. 

  1634.   <li><?php bugfix(65946); ?> (sql_parser permanently converts values bound to strings).</li>
    1635. 

  1635. </ul></li>
    1636. 

  1636. <li>Standard:
    1637. 

  1637. <ul>
    1638. 

  1638.   <li><?php bugfix(64760); ?> (var_export() does not use full precision for floating-point numbers).</li>
    1639. 

  1639. </ul></li>
    1640. 

  1640. </ul>
    1641. 

  1641. <!-- }}} --></section>
    1642. 

  1642. 

  1643. <section class="version" id="5.4.23"><!-- {{{ 5.4.23 -->
    1644. 

  1644. <h3>Version 5.4.23</h3>
    1645. 

  1645. <?php release_date('12-Dec-2013'); ?>
    1646. 

  1646. <ul><li>Core:
    1647. 

  1647. <ul>
    1648. 

  1648.   <li><?php bugfix(66094); ?> (unregister_tick_function tries to cast a Closure to a string).</li>
    1649. 

  1649.   <li><?php bugfix(65947); ?> (basename is no more working after fgetcsv in certain situation).</li>
    1650. 

  1650. </ul></li>
    1651. 

  1651. <li>JSON:
    1652. 

  1652. <ul>
    1653. 

  1653.   <li>Fixed whitespace part of <?php bugl(64874); ?> ("json_decode handles whitespace and case-sensitivity incorrectly").</li>
    1654. 

  1654. </ul></li>
    1655. 

  1655. <li>MySQLi:
    1656. 

  1656. <ul>
    1657. 

  1657.   <li><?php bugfix(66043); ?> (Segfault calling bind_param() on mysqli).</li>
    1658. 

  1658. </ul></li>
    1659. 

  1659. <li>mysqlnd:
    1660. 

  1660. <ul>
    1661. 

  1661.   <li><?php bugfix(66124); ?> (mysqli under mysqlnd loses precision when bind_param with 'i').</li>
    1662. 

  1662.   <li><?php bugfix(66141); ?> (mysqlnd quote function is wrong with NO_BACKSLASH_ESCAPES after failed query).</li>
    1663. 

  1663. </ul></li>
    1664. 

  1664. <li>OpenSSL:
    1665. 

  1665. <ul>
    1666. 

  1666.   <li>Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420). (Stefan Esser).</li>
    1667. 

  1667. </ul></li>
    1668. 

  1668. <li>PDO:
    1669. 

  1669. <ul>
    1670. 

  1670.   <li><?php bugfix(65946); ?> (sql_parser permanently converts values bound to strings).</li>
    1671. 

  1671. </ul></li>
    1672. 

  1672. </ul>
    1673. 

  1673. <!-- }}} --></section>
    1674. 

  1674. 

  1675. <section class="version" id="5.4.22"><!-- {{{ 5.4.22 -->
    1676. 

  1676. <h3>Version 5.4.22</h3>
    1677. 

  1677. <?php release_date('14-Nov-2013'); ?>
    1678. 

  1678. <ul><li>Core:
    1679. 

  1679. <ul>
    1680. 

  1680.   <li><?php bugfix(65911); ?> (scope resolution operator - strange behavior with $this).</li>
    1681. 

  1681. </ul></li>
    1682. 

  1682. <li>CLI server:
    1683. 

  1683. <ul>
    1684. 

  1684.   <li><?php bugfix(65818); ?> (Segfault with built-in webserver and chunked transfer encoding).</li>
    1685. 

  1685. </ul></li>
    1686. 

  1686. <li>Exif:
    1687. 

  1687. <ul>
    1688. 

  1688.   <li>Fixed crash on unknown encoding.</li>
    1689. 

  1689. </ul></li>
    1690. 

  1690. <li>FTP:
    1691. 

  1691. <ul>
    1692. 

  1692.   <li><?php bugfix(65667); ?> (ftp_nb_continue produces segfault).</li>
    1693. 

  1693. </ul></li>
    1694. 

  1694. <li>ODBC:
    1695. 

  1695. <ul>
    1696. 

  1696.   <li><?php bugfix(65950); ?> (Field name truncation if the field name is bigger than 32 characters).</li>
    1697. 

  1697. </ul></li>
    1698. 

  1698. <li>Sockets:
    1699. 

  1699. <ul>
    1700. 

  1700.   <li><?php bugfix(65808); ?> (the socket_connect() won't work with IPv6 address).</li>
    1701. 

  1701. </ul></li>
    1702. 

  1702. <li>Standard:
    1703. 

  1703. <ul>
    1704. 

  1704.   <li><?php bugfix(64760); ?> (var_export() does not use full precision for floating-point numbers).</li>
    1705. 

  1705. </ul></li>
    1706. 

  1706. <li>XMLReader:
    1707. 

  1707. <ul>
    1708. 

  1708.   <li><?php bugfix(51936); ?> (Crash with clone XMLReader).</li>
    1709. 

  1709.   <li><?php bugfix(64230); ?> (XMLReader does not suppress errors).</li>
    1710. 

  1710. </ul></li>
    1711. 

  1711. </ul>
    1712. 

  1712. <!-- }}} --></section>
    1713. 

  1713. 

  1714. 

  1715. <section class="version" id="5.5.5"><!-- {{{ 5.5.5 -->
    1716. 

  1716. <h3>Version 5.5.5</h3>
    1717. 

  1717. <?php release_date('17-Oct-2013'); ?>
    1718. 

  1718. <ul><li>Core:
    1719. 

  1719. <ul>
    1720. 

  1720.   <li><?php bugfix(64979); ?> (Wrong behavior of static variables in closure generators).</li>
    1721. 

  1721.   <li><?php bugfix(65322); ?> (compile time errors won't trigger auto loading).</li>
    1722. 

  1722.   <li><?php bugfix(65821); ?> (By-ref foreach on property access of string offset segfaults).</li>
    1723. 

  1723. </ul></li>
    1724. 

  1724. <li>CLI Server:
    1725. 

  1725. <ul>
    1726. 

  1726.   <li><?php bugfix(65633); ?> (built-in server treat some http headers as case-sensitive).</li>
    1727. 

  1727.   <li><?php bugfix(65818); ?> (Segfault with built-in webserver and chunked transfer encoding).</li>
    1728. 

  1728.   <li>Added application/pdf to PHP CLI Web Server mime types</li>
    1729. 

  1729. </ul></li>
    1730. 

  1730. <li>Datetime:
    1731. 

  1731. <ul>
    1732. 

  1732.   <li><?php bugfix(64157); ?> (DateTime::createFromFormat() reports confusing error message).</li>
    1733. 

  1733.   <li><?php bugfix(65502); ?> (DateTimeImmutable::createFromFormat returns DateTime).</li>
    1734. 

  1734.   <li><?php bugfix(65548); ?> (Comparison for DateTimeImmutable doesn't work).</li>
    1735. 

  1735. </ul></li>
    1736. 

  1736. <li>DBA:
    1737. 

  1737. <ul>
    1738. 

  1738.   <li><?php bugfix(65708); ?> (dba functions cast $key param to string in-place, bypassing copy on write).</li>
    1739. 

  1739. </ul></li>
    1740. 

  1740. <li>Filter:
    1741. 

  1741. <ul>
    1742. 

  1742.   <li>Add RFC 6598 IPs to reserved addresses.</li>
    1743. 

  1743.   <li><?php bugfix(64441); ?> (FILTER_VALIDATE_URL rejects fully qualified domain names).</li>
    1744. 

  1744. </ul></li>
    1745. 

  1745. <li>FTP:
    1746. 

  1746. <ul>
    1747. 

  1747.   <li><?php bugfix(65667); ?> (ftp_nb_continue produces segfault).</li>
    1748. 

  1748. </ul></li>
    1749. 

  1749. <li>GD:
    1750. 

  1750. <ul>
    1751. 

  1751.   <li>Ensure that the defined interpolation method is used with the generic scaling methods.</li>
    1752. 

  1752. </ul></li>
    1753. 

  1753. <li>IMAP:
    1754. 

  1754. <ul>
    1755. 

  1755.   <li><?php bugfix(65721); ?> (configure script broken in 5.5.4 and 5.4.20 when enabling imap).</li>
    1756. 

  1756. </ul></li>
    1757. 

  1757. <li>OPCache:
    1758. 

  1758. <ul>
    1759. 

  1759.   <li><?php bugfix(65845); ?> (Error when Zend Opcache Optimizer is fully enabled).</li>
    1760. 

  1760.   <li><?php bugfix(65665); ?> (Exception not properly caught when opcache enabled).</li>
    1761. 

  1761.   <li><?php bugfix(65510); ?> (5.5.2 crashes in _get_zval_ptr_ptr_var).</li>
    1762. 

  1762.   <li>Fixed issue #135 (segfault in interned strings if initial memory is too low).</li>
    1763. 

  1763.   <li>Added function opcache_compile_file() to load PHP scripts into cache without execution.</li>
    1764. 

  1764.   <li>Added support for GNU Hurd.</li>
    1765. 

  1765. </ul></li>
    1766. 

  1766. <li>Sockets:
    1767. 

  1767. <ul>
    1768. 

  1768.   <li><?php bugfix(65808); ?> (the socket_connect() won't work with IPv6 address).</li>
    1769. 

  1769. </ul></li>
    1770. 

  1770. <li>SPL:
    1771. 

  1771. <ul>
    1772. 

  1772.   <li><?php bugfix(64782); ?> (SplFileObject constructor make $context optional / give it a default value).</li>
    1773. 

  1773. </ul></li>
    1774. 

  1774. <li>Standard:
    1775. 

  1775. <ul>
    1776. 

  1776.   <li><?php bugfix(61548); ?> content-type must appear at the end of headers for 201 Location to work in http.</li>
    1777. 

  1777. </ul></li>
    1778. 

  1778. <li>XMLReader:
    1779. 

  1779. <ul>
    1780. 

  1780.   <li><?php bugfix(51936); ?> Crash with clone XMLReader.</li>
    1781. 

  1781.   <li><?php bugfix(64230); ?> XMLReader does not suppress errors.</li>
    1782. 

  1782. </ul></li>
    1783. 

  1783. <li>Build system:
    1784. 

  1784. <ul>
    1785. 

  1785.   <li><?php bugfix(51076); ?> Race condition in shtool's mkdir -p implementation.</li>
    1786. 

  1786.   <li><?php bugfix(62396); ?> 'make test' crashes starting with 5.3.14 (missing gzencode()).</li>
    1787. 

  1787. </ul></li>
    1788. 

  1788. </ul>
    1789. 

  1789. <!-- }}} --></section>
    1790. 

  1790. 

  1791. <section class="version" id="5.4.21"><!-- {{{ 5.4.21 -->
    1792. 

  1792. <h3>Version 5.4.21</h3>
    1793. 

  1793. <?php release_date('17-Oct-2013'); ?>
    1794. 

  1794. <ul><li>Core:
    1795. 

  1795. <ul>
    1796. 

  1796.   <li><?php bugfix(65322); ?> (compile time errors won't trigger auto loading).</li>
    1797. 

  1797. </ul></li>
    1798. 

  1798. <li>CLI server:
    1799. 

  1799. <ul>
    1800. 

  1800.   <li><?php bugfix(65633); ?> (built-in server treat some http headers as case-sensitive).</li>
    1801. 

  1801. </ul></li>
    1802. 

  1802. <li>Datetime:
    1803. 

  1803. <ul>
    1804. 

  1804.   <li><?php bugfix(64157); ?> (DateTime::createFromFormat() reports confusing error message).</li>
    1805. 

  1805. </ul></li>
    1806. 

  1806. <li>DBA extension:
    1807. 

  1807. <ul>
    1808. 

  1808.   <li><?php bugfix(65708); ?> (dba functions cast $key param to string in-place, bypassing copy on write).</li>
    1809. 

  1809. </ul></li>
    1810. 

  1810. <li>Filter:
    1811. 

  1811. <ul>
    1812. 

  1812.   <li>Add RFC 6598 IPs to reserved addresses.</li>
    1813. 

  1813.   <li><?php bugfix(64441); ?> (FILTER_VALIDATE_URL rejects fully qualified domain names).</li>
    1814. 

  1814. </ul></li>
    1815. 

  1815. <li>IMAP:
    1816. 

  1816. <ul>
    1817. 

  1817.   <li><?php bugfix(65721); ?> (configure script broken in 5.5.4 and 5.4.20 when enabling imap).</li>
    1818. 

  1818. </ul></li>
    1819. 

  1819. <li>Standard:
    1820. 

  1820. <ul>
    1821. 

  1821.   <li><?php bugfix(61548); ?> (content-type must appear at the end of headers for 201 Location to work in http).</li>
    1822. 

  1822. </ul></li>
    1823. 

  1823. <li>Build system:
    1824. 

  1824. <ul>
    1825. 

  1825.   <li><?php bugfix(62396); ?> ('make test' crashes starting with 5.3.14 (missing gzencode())).</li>
    1826. 

  1826. </ul></li>
    1827. 

  1827. </ul>
    1828. 

  1828. <!-- }}} -->
    1829. 

  1829. </section>
    1830. 

  1830. 

  1831. <section class="version" id="5.5.4"><!-- {{{ 5.5.4 -->
    1832. 

  1832. <h3>Version 5.5.4</h3>
    1833. 

  1833. <?php release_date('19-Sep-2013'); ?>
    1834. 

  1834. <ul><li>Core:
    1835. 

  1835. <ul>
    1836. 

  1836.   <li><?php bugfix(60598); ?> (cli/apache sapi segfault on objects manipulation).</li>
    1837. 

  1837.   <li>Improved fputcsv() to allow specifying escape character.</li>
    1838. 

  1838.   <li><?php bugfix(65483); ?> (quoted-printable encode stream filter incorrectly encoding spaces).</li>
    1839. 

  1839.   <li><?php bugfix(65470); ?> (Segmentation fault in zend_error() with --enable-dtrace).</li>
    1840. 

  1840.   <li><?php bugfix(65490); ?> (Duplicate calls to get lineno &amp; filename for DTRACE_FUNCTION_*).</li>
    1841. 

  1841.   <li><?php bugfix(65225); ?> (PHP_BINARY incorrectly set).</li>
    1842. 

  1842.   <li><?php bugfix(62692); ?> (PHP fails to build with DTrace). </li>
    1843. 

  1843.   <li><?php bugfix(61759); ?> (class_alias() should accept classes with leading backslashes). </li>
    1844. 

  1844.   <li><?php bugfix(46311); ?> (Pointer aliasing issue results in miscompile on gcc4.4). </li>
    1845. 

  1845. </ul></li>
    1846. 

  1846. <li>cURL:
    1847. 

  1847. <ul>
    1848. 

  1848.   <li><?php bugfix(65458); ?> (curl memory leak).</li>
    1849. 

  1849. </ul></li>
    1850. 

  1850. <li>Datetime:
    1851. 

  1851. <ul>
    1852. 

  1852.   <li><?php bugfix(65554); ?> (createFromFormat broken when weekday name is followed by some delimiters).</li>
    1853. 

  1853.   <li><?php bugfix(65564); ?> (stack-buffer-overflow in DateTimeZone stuff caught by AddressSanitizer).</li>
    1854. 

  1854. </ul></li>
    1855. 

  1855. <li>OPCache:
    1856. 

  1856. <ul>
    1857. 

  1857.   <li><?php bugfix(65561); ?> (Zend Opcache on Solaris 11 x86 needs ZEND_MM_ALIGNMENT=4).</li>
    1858. 

  1858. </ul></li>
    1859. 

  1859. <li>Openssl:
    1860. 

  1860. <ul>
    1861. 

  1861.   <li><?php bugfix(64802); ?> (openssl_x509_parse fails to parse subject properly in some cases).</li>
    1862. 

  1862. </ul></li>
    1863. 

  1863. <li>Session:
    1864. 

  1864. <ul>
    1865. 

  1865.   <li><?php bugfix(65475); ?> (Session ID is not initialized properly when strict session is enabled).</li>
    1866. 

  1866.   <li><?php bugfix(51127); ?> and <?php bugl(65359); ?>, FR <?php bugl(25630); ?>/<?php bugl(43980); ?>/<?php bugl(54383); ?> (Added php_serialize session serialize handler that uses plain serialize())</li>
    1867. 

  1867. </ul></li>
    1868. 

  1868. <li>Standard:
    1869. 

  1869. <ul>
    1870. 

  1870.   <li> Fix issue with return types of password API helper functions. Found via static analysis by cjones.</li>
    1871. 

  1871. </ul></li>
    1872. 

  1872. </ul>
    1873. 

  1873. <!-- }}} --></section>
    1874. 

  1874. 

  1875. <section class="version" id="5.4.20"><!-- {{{ 5.4.20 -->
    1876. 

  1876. <h3>Version 5.4.20</h3>
    1877. 

  1877. <?php release_date('19-Sep-2013'); ?>
    1878. 

  1878. <ul><li>Core:
    1879. 

  1879. <ul>
    1880. 

  1880.   <li><?php bugfix(60598); ?> (cli/apache sapi segfault on objects manipulation).</li>
    1881. 

  1881.   <li><?php bugfix(65579); ?> (Using traits with get_class_methods causes segfault).</li>
    1882. 

  1882.   <li><?php bugfix(65490); ?> (Duplicate calls to get lineno &amp; filename for DTRACE_FUNCTION_*).</li>
    1883. 

  1883.   <li><?php bugfix(65483); ?> (quoted-printable encode stream filter incorrectly encoding spaces).</li>
    1884. 

  1884.   <li><?php bugfix(65481); ?> (shutdown segfault due to serialize).</li>
    1885. 

  1885.   <li><?php bugfix(65470); ?> (Segmentation fault in zend_error() with --enable-dtrace).</li>
    1886. 

  1886.   <li><?php bugfix(65372); ?> (Segfault in gc_zval_possible_root when return reference fails).</li>
    1887. 

  1887.   <li><?php bugfix(65304); ?> (Use of max int in array_sum).</li>
    1888. 

  1888.   <li><?php bugfix(65291); ?> (get_defined_constants() causes PHP to crash in a very limited case).</li>
    1889. 

  1889.   <li><?php bugfix(65225); ?> (PHP_BINARY incorrectly set).</li>
    1890. 

  1890.   <li>Improved fix for bug <?php bugl(63186); ?> (compile failure on netbsd).</li>
    1891. 

  1891.   <li><?php bugfix(62692); ?> (PHP fails to build with DTrace).</li>
    1892. 

  1892.   <li><?php bugfix(61759); ?> (class_alias() should accept classes with leading backslashes).</li>
    1893. 

  1893.   <li><?php bugfix(61345); ?> (CGI mode - make install don't work).</li>
    1894. 

  1894.   <li>Cherry-picked some DTrace build commits (allowing builds on Linux, bug <?php bugl(62691); ?> and bug <?php bugl(63706); ?>) from PHP 5.5 branch.</li>
    1895. 

  1895.   <li><?php bugfix(61268); ?> (--enable-dtrace leads make to clobber Zend/zend_dtrace.d)</li>
    1896. 

  1896. </ul></li>
    1897. 

  1897. <li>cURL:
    1898. 

  1898. <ul>
    1899. 

  1899.   <li><?php bugfix(65458); ?> (curl memory leak).</li>
    1900. 

  1900. </ul></li>
    1901. 

  1901. <li>Datetime:
    1902. 

  1902. <ul>
    1903. 

  1903.   <li><?php bugfix(65554); ?> (createFromFormat broken when weekday name is followed by some delimiters)</li>
    1904. 

  1904.   <li><?php bugfix(65564); ?> (stack-buffer-overflow in DateTimeZone stuff caught by AddressSanitizer)</li>
    1905. 

  1905. </ul></li>
    1906. 

  1906. <li>Openssl:
    1907. 

  1907. <ul>
    1908. 

  1908.   <li><?php bugfix(64802); ?> (openssl_x509_parse fails to parse subject properly in some cases).</li>
    1909. 

  1909. </ul></li>
    1910. 

  1910. <li>Session:
    1911. 

  1911. <ul>
    1912. 

  1912.   <li><?php bugfix(62129); ?> (rfc1867 crashes php even though turned off).</li>
    1913. 

  1913.   <li><?php bugfix(50308); ?> (session id not appended properly for empty anchor tags).</li>
    1914. 

  1914.   <li>Fixed possible buffer overflow under Windows. Note: Not a security fix.</li>
    1915. 

  1915.   <li>Changed session.auto_start to PHP_INI_PERDIR.</li>
    1916. 

  1916. </ul></li>
    1917. 

  1917. <li>SOAP:
    1918. 

  1918. <ul>
    1919. 

  1919.   <li><?php bugfix(65018); ?> (SoapHeader problems with SoapServer).</li>
    1920. 

  1920. </ul></li>
    1921. 

  1921. <li>SPL:
    1922. 

  1922. <ul>
    1923. 

  1923.   <li><?php bugfix(65328); ?> (Segfault when getting SplStack object Value).</li>
    1924. 

  1924. </ul></li>
    1925. 

  1925. <li>PDO:
    1926. 

  1926. <ul>
    1927. 

  1927.   <li><?php bugfix(64953); ?> (Postgres prepared statement positional parameter casting).</li>
    1928. 

  1928. </ul></li>
    1929. 

  1929. <li>Phar:
    1930. 

  1930. <ul>
    1931. 

  1931.   <li><?php bugfix(65028); ?> (Phar::buildFromDirectory creates corrupt archives for some specific contents).</li>
    1932. 

  1932. </ul></li>
    1933. 

  1933. <li>Pgsql:
    1934. 

  1934. <ul>
    1935. 

  1935.   <li><?php bugfix(65336); ?> (pg_escape_literal/identifier() silently returns false).</li>
    1936. 

  1936.   <li><?php bugfix(62978); ?> (Disallow possible SQL injections with pg_select()/pg_update() /pg_delete()/pg_insert()).</li>
    1937. 

  1937. </ul></li>
    1938. 

  1938. <li>Zlib:
    1939. 

  1939. <ul>
    1940. 

  1940.   <li><?php bugfix(65391); ?> (Unable to send vary header user-agent when ob_start('ob_gzhandler') is called).</li>
    1941. 

  1941. </ul></li>
    1942. 

  1942. </ul>
    1943. 

  1943. <!-- }}} --></section>
    1944. 

  1944. 

  1945. <section class="version" id="5.5.3"><!-- {{{ 5.5.3 -->
    1946. 

  1946. <h3>Version 5.5.3</h3>
    1947. 

  1947. <?php release_date('22-Aug-2013'); ?>
    1948. 

  1948. <ul><li>Openssl:
    1949. 

  1949. <ul>
    1950. 

  1950.   <li>Fixed UMR in fix for CVE-2013-4248.</li>
    1951. 

  1951. </ul></li>
    1952. 

  1952. </ul>
    1953. 

  1953. <!-- }}} --></section>
    1954. 

  1954. 

  1955. <section class="version" id="5.4.19"><!-- {{{ 5.4.19 -->
    1956. 

  1956. <h3>Version 5.4.19</h3>
    1957. 

  1957. <?php release_date('22-Aug-2013'); ?>
    1958. 

  1958. <ul><li>Core:
    1959. 

  1959. <ul>
    1960. 

  1960.   <li><?php bugfix(64503); ?> (Compilation fails with error: conflicting types for 'zendparse').</li>
    1961. 

  1961. </ul></li>
    1962. 

  1962. <li>Openssl:
    1963. 

  1963. <ul>
    1964. 

  1964.   <li>Fixed UMR in fix for CVE-2013-4248.</li>
    1965. 

  1965. </ul></li>
    1966. 

  1966. </ul>
    1967. 

  1967. <!-- }}} --></section>
    1968. 

  1968. 

  1969. <section class="version" id="5.5.2"><!-- {{{ 5.5.2 -->
    1970. 

  1970. <h3>Version 5.5.2</h3>
    1971. 

  1971. <?php release_date('15-Aug-2013'); ?>
    1972. 

  1972. <ul><li>Core:
    1973. 

  1973. <ul>
    1974. 

  1974.   <li><?php bugfix(65372); ?> (Segfault in gc_zval_possible_root when return reference fails).</li>
    1975. 

  1975.   <li>Fixed value of FILTER_SANITIZE_FULL_SPECIAL_CHARS constant (previously was erroneously set to FILTER_SANITIZE_SPECIAL_CHARS value). </li>
    1976. 

  1976.   <li><?php bugfix(65304); ?> (Use of max int in array_sum).</li>
    1977. 

  1977.   <li><?php bugfix(65291); ?> (get_defined_constants() causes PHP to crash in a very limited case).</li>
    1978. 

  1978.   <li><?php bugfix(62691); ?> (solaris sed has no -i switch).</li>
    1979. 

  1979.   <li><?php bugfix(61345); ?> (CGI mode - make install don't work).</li>
    1980. 

  1980.   <li><?php bugfix(61268); ?> (--enable-dtrace leads make to clobber Zend/zend_dtrace.d).</li>
    1981. 

  1981. </ul></li>
    1982. 

  1982. <li>DOM:
    1983. 

  1983. <ul>
    1984. 

  1984.   <li>Added flags option to DOMDocument::schemaValidate() and DOMDocument::schemaValidateSource(). Added LIBXML_SCHEMA_CREATE flag.</li>
    1985. 

  1985. </ul></li>
    1986. 

  1986. <li>OPcache:
    1987. 

  1987. <ul>
    1988. 

  1988.   <li>Added opcache.restrict_api configuration directive that may limit usage of OPcahce API functions only to patricular script(s).</li>
    1989. 

  1989.   <li>Added support for glob symbols in blacklist entries (?, *, **).</li>
    1990. 

  1990.   <li><?php bugfix(65338); ?> (Enabling both php_opcache and php_wincache AVs on shutdown).</li>
    1991. 

  1991. </ul></li>
    1992. 

  1992. <li>Openssl:
    1993. 

  1993. <ul>
    1994. 

  1994.   <li>Fixed handling null bytes in subjectAltName (CVE-2013-4248).</li>
    1995. 

  1995. </ul></li>
    1996. 

  1996. <li>PDO_mysql:
    1997. 

  1997. <ul>
    1998. 

  1998.   <li><?php bugfix(65299); ?> (pdo mysql parsing errors).</li>
    1999. 

  1999. </ul></li>
    2000. 

  2000. <li>Phar:
    2001. 

  2001. <ul>
    2002. 

  2002.   <li><?php bugfix(65028); ?> (Phar::buildFromDirectory creates corrupt archives for some specific contents).</li>
    2003. 

  2003. </ul></li>
    2004. 

  2004. <li>Pgsql:
    2005. 

  2005. <ul>
    2006. 

  2006.   <li><?php bugfix(62978); ?> (Disallow possible SQL injections with pg_select()/pg_update() /pg_delete()/pg_insert()).</li>
    2007. 

  2007.   <li><?php bugfix(65336); ?> (pg_escape_literal/identifier() silently returns false).</li>
    2008. 

  2008. </ul></li>
    2009. 

  2009. <li>Sessions:
    2010. 

  2010. <ul>
    2011. 

  2011.   <li>Implemented strict sessions RFC (https://wiki.php.net/rfc/strict_sessions) which protects against session fixation attacks and session collisions (CVE-2011-4718).</li>
    2012. 

  2012.   <li>Fixed possible buffer overflow under Windows. Note: Not a security fix.</li>
    2013. 

  2013.   <li>Changed session.auto_start to PHP_INI_PERDIR.</li>
    2014. 

  2014. </ul></li>
    2015. 

  2015. <li>SOAP:
    2016. 

  2016. <ul>
    2017. 

  2017.   <li><?php bugfix(65018); ?> (SoapHeader problems with SoapServer).</li>
    2018. 

  2018. </ul></li>
    2019. 

  2019. <li>SPL:
    2020. 

  2020. <ul>
    2021. 

  2021.   <li><?php bugfix(65328); ?> (Segfault when getting SplStack object Value).</li>
    2022. 

  2022.   <li>Added RecursiveTreeIterator setPostfix and getPostifx methods.</li>
    2023. 

  2023.   <li><?php bugfix(61697); ?> (spl_autoload_functions returns lambda functions incorrectly).</li>
    2024. 

  2024. </ul></li>
    2025. 

  2025. <li>Streams:
    2026. 

  2026. <ul>
    2027. 

  2027.   <li><?php bugfix(65268); ?> (select() implementation uses outdated tick API).</li>
    2028. 

  2028. </ul></li>
    2029. 

  2029. </ul>
    2030. 

  2030. <!-- }}} --></section>
    2031. 

  2031. 

  2032. <section class="version" id="5.4.18"><!-- {{{ 5.4.18 -->
    2033. 

  2033. <h3>Version 5.4.18</h3>
    2034. 

  2034. <?php release_date('15-Aug-2013'); ?>
    2035. 

  2035. <ul><li>Core:
    2036. 

  2036. <ul>
    2037. 

  2037.   <li>Fixed value of FILTER_SANITIZE_FULL_SPECIAL_CHARS constant (previously was erroneously set to FILTER_SANITIZE_SPECIAL_CHARS value).</li>
    2038. 

  2038.   <li><?php bugfix(65254); ?> (Exception not catchable when exception thrown in autoload with a namespace).</li>
    2039. 

  2039.   <li><?php bugfix(65108); ?> (is_callable() triggers Fatal Error).</li>
    2040. 

  2040.   <li><?php bugfix(65088); ?> (Generated configure script is malformed on OpenBSD).</li>
    2041. 

  2041.   <li><?php bugfix(62964); ?> (Possible XSS on "Registered stream filters" info).</li>
    2042. 

  2042.   <li><?php bugfix(62672); ?> (Error on serialize of ArrayObject).</li>
    2043. 

  2043.   <li><?php bugfix(62475); ?> (variant_* functions causes crash when null given as an argument).</li>
    2044. 

  2044.   <li><?php bugfix(60732); ?> (php_error_docref links to invalid pages).</li>
    2045. 

  2045.   <li><?php bugfix(65226); ?> (chroot() does not get enabled).</li>
    2046. 

  2046. </ul></li>
    2047. 

  2047. <li>CGI:
    2048. 

  2048. <ul>
    2049. 

  2049.   <li><?php bugfix(65143); ?> (Missing php-cgi man page).</li>
    2050. 

  2050. </ul></li>
    2051. 

  2051. <li>CLI server:
    2052. 

  2052. <ul>
    2053. 

  2053.   <li><?php bugfix(65066); ?> (Cli server not responsive when responding with 422 http status code).</li>
    2054. 

  2054. </ul></li>
    2055. 

  2055. <li>CURL:
    2056. 

  2056. <ul>
    2057. 

  2057.   <li><?php bugfix(62665); ?> (curl.cainfo doesn't appear in php.ini).</li>
    2058. 

  2058. </ul></li>
    2059. 

  2059. <li>FPM:
    2060. 

  2060. <ul>
    2061. 

  2061.   <li><?php bugfix(63983); ?> (enabling FPM borks compile on FreeBSD).</li>
    2062. 

  2062. </ul></li>
    2063. 

  2063. <li>FTP:
    2064. 

  2064. <ul>
    2065. 

  2065.   <li><?php bugfix(65228); ?> (FTPs memory leak with SSL).</li>
    2066. 

  2066. </ul></li>
    2067. 

  2067. <li>GMP:
    2068. 

  2068. <ul>
    2069. 

  2069.   <li><?php bugfix(65227); ?> (Memory leak in gmp_cmp second parameter).</li>
    2070. 

  2070. </ul></li>
    2071. 

  2071. <li>Imap:
    2072. 

  2072. <ul>
    2073. 

  2073.   <li><?php bugfix(64467); ?> (Segmentation fault after imap_reopen failure).</li>
    2074. 

  2074. </ul></li>
    2075. 

  2075. <li>Intl:
    2076. 

  2076. <ul>
    2077. 

  2077.   <li><?php bugfix(62759); ?> (Buggy grapheme_substr() on edge case).</li>
    2078. 

  2078.   <li><?php bugfix(61860); ?> (Offsets may be wrong for grapheme_stri* functions).</li>
    2079. 

  2079. </ul></li>
    2080. 

  2080. <li>mysqlnd:
    2081. 

  2081. <ul>
    2082. 

  2082.   <li>Fixed segfault in mysqlnd when doing long prepare. </li>
    2083. 

  2083. </ul></li>
    2084. 

  2084. <li>ODBC:
    2085. 

  2085. <ul>
    2086. 

  2086.   <li><?php bugfix(61387); ?> (NULL valued anonymous column causes segfault in odbc_fetch_array).</li>
    2087. 

  2087. </ul></li>
    2088. 

  2088. <li>Openssl:
    2089. 

  2089. <ul>
    2090. 

  2090.   <li>Fixed handling null bytes in subjectAltName (CVE-2013-4248).</li>
    2091. 

  2091. </ul></li>
    2092. 

  2092. <li>PDO:
    2093. 

  2093. <ul>
    2094. 

  2094.   <li>Allowed PDO_OCI to compile with Oracle Database 12c client libraries.</li>
    2095. 

  2095. </ul></li>
    2096. 

  2096. <li>PDO_dblib:
    2097. 

  2097. <ul>
    2098. 

  2098.   <li><?php bugfix(65219); ?> (PDO/dblib not working anymore ("use dbName" not sent)).</li>
    2099. 

  2099. </ul></li>
    2100. 

  2100. <li>PDO_pgsql:
    2101. 

  2101. <ul>
    2102. 

  2102.   <li>Fixed meta data retrieve when OID is larger than 2^31.</li>
    2103. 

  2103. </ul></li>
    2104. 

  2104. <li>Phar:
    2105. 

  2105. <ul>
    2106. 

  2106.   <li><?php bugfix(65142); ?> (Missing phar man page).</li>
    2107. 

  2107. </ul></li>
    2108. 

  2108. <li>Session:
    2109. 

  2109. <ul>
    2110. 

  2110.   <li><?php bugfix(62535); ?> ($_SESSION[$key]["cancel_upload"] doesn't work as documented).</li>
    2111. 

  2111.   <li><?php bugfix(35703); ?> (when session_name("123") consist only digits, should warning).</li>
    2112. 

  2112.   <li><?php bugfix(49175); ?> (mod_files.sh does not support hash bits).</li>
    2113. 

  2113. </ul></li>
    2114. 

  2114. <li>Sockets:
    2115. 

  2115. <ul>
    2116. 

  2116.   <li>Implemented FR <?php bugl(63472); ?> (Setting SO_BINDTODEVICE with socket_set_option).</li>
    2117. 

  2117. </ul></li>
    2118. 

  2118. <li>SPL:
    2119. 

  2119. <ul>
    2120. 

  2120.   <li><?php bugfix(65136); ?> (RecursiveDirectoryIterator segfault).</li>
    2121. 

  2121.   <li><?php bugfix(61828); ?> (Memleak when calling Directory(Recursive)Iterator /Spl(Temp)FileObject ctor twice).</li>
    2122. 

  2122.   <li><?php bugfix(60560); ?> (SplFixedArray un-/serialize, getSize(), count() return 0, keys are strings).</li>
    2123. 

  2123. </ul></li>
    2124. 

  2124. <li>XML:
    2125. 

  2125. <ul>
    2126. 

  2126.   <li><?php bugfix(65236); ?> (heap corruption in xml parser, CVE-2013-4113).</li>
    2127. 

  2127. </ul></li>
    2128. 

  2128. </ul>
    2129. 

  2129. <!-- }}} --></section>
    2130. 

  2130. 

  2131. 

  2132. <section class="version" id="5.5.1"><!-- {{{ 5.5.1 -->
    2133. 

  2133. <h3>Version 5.5.1</h3>
    2134. 

  2134. <?php release_date('18-Jul-2013'); ?>
    2135. 

  2135. <ul><li>Core:
    2136. 

  2136. <ul>
    2137. 

  2137.   <li><?php bugfix(65254); ?> (Exception not catchable when exception thrown in autoload with a namespace).</li>
    2138. 

  2138.   <li><?php bugfix(65088); ?> (Generated configure script is malformed on OpenBSD).</li>
    2139. 

  2139.   <li><?php bugfix(65108); ?> (is_callable() triggers Fatal Error).</li>
    2140. 

  2140.   <li><?php bugfix(65035); ?> (yield / exit segfault).</li>
    2141. 

  2141.   <li><?php bugfix(65161); ?> (Generator + autoload + syntax error = segfault).</li>
    2142. 

  2142.   <li><?php bugfix(65226); ?> (chroot() does not get enabled).</li>
    2143. 

  2143.   <li>hex2bin() raises E_WARNING for invalid hex string.</li>
    2144. 

  2144. </ul></li>
    2145. 

  2145. <li>OPcache:
    2146. 

  2146. <ul>
    2147. 

  2147.   <li><?php bugfix(64827); ?> (Segfault in zval_mark_grey (zend_gc.c)).</li>
    2148. 

  2148.   <li>OPcache is now compatible with LiteSpeed SAPI.</li>
    2149. 

  2149. </ul></li>
    2150. 

  2150. <li>CGI:
    2151. 

  2151. <ul>
    2152. 

  2152.   <li><?php bugfix(65143); ?> (Missing php-cgi man page).</li>
    2153. 

  2153. </ul></li>
    2154. 

  2154. <li>CLI server:
    2155. 

  2155. <ul>
    2156. 

  2156.   <li><?php bugfix(65066); ?> (Cli server not responsive when responding with 422 http status code).</li>
    2157. 

  2157. </ul></li>
    2158. 

  2158. <li>DateTime:
    2159. 

  2159. <ul>
    2160. 

  2160.   <li><?php bugfix(65184); ?> (strftime() returns insufficient-length string under multibyte locales).</li>
    2161. 

  2161. </ul></li>
    2162. 

  2162. <li>GD:
    2163. 

  2163. <ul>
    2164. 

  2164.   <li><?php bugfix(65070); ?> (bgcolor does not use the same format as the input image with imagerotate).</li>
    2165. 

  2165.   <li><?php bugfix(65060); ?> (imagecreatefrom... crashes with user streams).</li>
    2166. 

  2166.   <li><?php bugfix(65084); ?> (imagecreatefromjpeg fails with URL).</li>
    2167. 

  2167.   <li>Fix gdImageCreateFromWebpCtx and use same logic to load WebP image that other formats.</li>
    2168. 

  2168. </ul></li>
    2169. 

  2169. <li>Intl:
    2170. 

  2170. <ul>
    2171. 

  2171.   <li>Add IntlCalendar::setMinimalDaysInFirstWeek()/intlcal_set_minimal_days_in_first_week().</li>
    2172. 

  2172.   <li>Fixed trailing space in name of constant IntlCalendar::FIELD_FIELD_COUNT.</li>
    2173. 

  2173.   <li><?php bugfix(62759); ?> (Buggy grapheme_substr() on edge case).</li>
    2174. 

  2174.   <li><?php bugfix(61860); ?> (Offsets may be wrong for grapheme_stri* functions).</li>
    2175. 

  2175. </ul></li>
    2176. 

  2176. <li>OCI8:
    2177. 

  2177. <ul>
    2178. 

  2178.   <li>Bump PECL package info version check to allow PECL installs with PHP 5.5+.</li>
    2179. 

  2179. </ul></li>
    2180. 

  2180. <li>PDO:
    2181. 

  2181. <ul>
    2182. 

  2182.   <li>Allowed PDO_OCI to compile with Oracle Database 12c client libraries.</li>
    2183. 

  2183. </ul></li>
    2184. 

  2184. <li>Pgsql:
    2185. 

  2185. <ul>
    2186. 

  2186.   <li>pg_unescape_bytea() raises E_WARNING for invalid inputs.</li>
    2187. 

  2187. </ul></li>
    2188. 

  2188. <li>Phar:
    2189. 

  2189. <ul>
    2190. 

  2190.   <li><?php bugfix(65142); ?> (Missing phar man page).</li>
    2191. 

  2191. </ul></li>
    2192. 

  2192. <li>Session:
    2193. 

  2193. <ul>
    2194. 

  2194.   <li>Added optional create_sid() argument to session_set_save_handler(), SessionHandler and new SessionIdInterface.</li>
    2195. 

  2195. </ul></li>
    2196. 

  2196. <li>Sockets:
    2197. 

  2197. <ul>
    2198. 

  2198.   <li><?php bugl(63472); ?>Setting SO_BINDTODEVICE with socket_set_option.</li>
    2199. 

  2199.   <li>Allowed specifying paths in the abstract namespace for the functions socket_bind(), socket_connect() and socket_sendmsg().</li>
    2200. 

  2200.   <li><?php bugfix(65260); ?>sendmsg() ancillary data construction for SCM_RIGHTS is faulty.</li>
    2201. 

  2201. </ul></li>
    2202. 

  2202. <li>SPL:
    2203. 

  2203. <ul>
    2204. 

  2204.   <li><?php bugfix(65136); ?>RecursiveDirectoryIterator segfault.</li>
    2205. 

  2205.   <li><?php bugfix(61828); ?>Memleak when calling Directory(Recursive)Iterator/Spl(Temp)FileObject ctor twice.</li>
    2206. 

  2206. </ul></li>
    2207. 

  2207. <li>CGI/FastCGI SAPI:
    2208. 

  2208. <ul>
    2209. 

  2209.   <li>Added PHP_FCGI_BACKLOG, overrides the default listen backlog.</li>
    2210. 

  2210. </ul></li>
    2211. 

  2211. </ul>
    2212. 

  2212. <!-- }}} --></section>
    2213. 

  2213. 

  2214. <section class="version" id="5.3.28"><!-- {{{ 5.3.28 -->
    2215. 

  2215. <h3>Version 5.3.28</h3>
    2216. 

  2216. <?php release_date('12-Dec-2013'); ?>
    2217. 

  2217. <ul><li>Openssl:
    2218. 

  2218. <ul>
    2219. 

  2219.   <li>Fixed handling null bytes in subjectAltName (CVE-2013-4248).</li>
    2220. 

  2220.   <li>Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420). (Stefan Esser).</li>
    2221. 

  2221. </ul></li>
    2222. 

  2222. </ul>
    2223. 

  2223. <!-- }}} --></section>
    2224. 

  2224. 

  2225. <section class="version" id="5.3.27"><!-- {{{ 5.3.27 -->
    2226. 

  2226. <h3>Version 5.3.27</h3>
    2227. 

  2227. <?php release_date('11-Jul-2013'); ?>
    2228. 

  2228. <ul><li>Core:
    2229. 

  2229. <ul>
    2230. 

  2230.   <li><?php bugfix(64966); ?> (segfault in zend_do_fcall_common_helper_SPEC).</li>
    2231. 

  2231.   <li><?php bugfix(64960); ?> (Segfault in gc_zval_possible_root).</li>
    2232. 

  2232.   <li><?php bugfix(64934); ?> (Apache2 TS crash with get_browser()).</li>
    2233. 

  2233.   <li><?php bugfix(63186); ?> (compile failure on netbsd).</li>
    2234. 

  2234. </ul></li>
    2235. 

  2235. <li>DateTime:
    2236. 

  2236. <ul>
    2237. 

  2237.   <li><?php bugfix(53437); ?> (Crash when using unserialized DatePeriod instance).</li>
    2238. 

  2238. </ul></li>
    2239. 

  2239. <li>PDO_firebird:
    2240. 

  2240. <ul>
    2241. 

  2241.   <li><?php bugfix(64037); ?> (Firebird return wrong value for numeric field).</li>
    2242. 

  2242.   <li><?php bugfix(62024); ?> (Cannot insert second row with null using parametrized query).</li>
    2243. 

  2243. </ul></li>
    2244. 

  2244. <li>PDO_pgsql:
    2245. 

  2245. <ul>
    2246. 

  2246.   <li><?php bugfix(64949); ?> (Buffer overflow in _pdo_pgsql_error).</li>
    2247. 

  2247. </ul></li>
    2248. 

  2248. <li>pgsql:
    2249. 

  2249. <ul>
    2250. 

  2250.   <li><?php bugfix(64609); ?> (pg_convert enum type support).</li>
    2251. 

  2251. </ul></li>
    2252. 

  2252. <li>SPL:
    2253. 

  2253. <ul>
    2254. 

  2254.   <li><?php bugfix(64997); ?> (Segfault while using RecursiveIteratorIterator on 64-bits systems).</li>
    2255. 

  2255. </ul></li>
    2256. 

  2256. <li>XML:
    2257. 

  2257. <ul>
    2258. 

  2258.   <li><?php bugfix(65236); ?> (heap corruption in xml parser).</li>
    2259. 

  2259. </ul></li>
    2260. 

  2260. </ul>
    2261. 

  2261. <!-- }}} --></section>
    2262. 

  2262. 

  2263. <section class="version" id="5.5.0"><!-- {{{ 5.5.0 -->
    2264. 

  2264. <h3>Version 5.5.0</h3>
    2265. 

  2265. <?php release_date('20-Jun-2013'); ?>
    2266. 

  2266. <ul>
    2267. 

  2267. <li>Drop support for bison &lt; 2.4 when building PHP from GIT source</li>
    2268. 

  2268. </ul>
    2269. 

  2269. 

  2270. <ul>
    2271. 

  2271. <li>Improved Zend Engine:
    2272. 

  2272. <ul>
    2273. 

  2273.  <li>Added ARMv7/v8 versions of various Zend arithmetic functions that are implemented using inline assembler</li>
    2274. 

  2274.  <li>Added systemtap support by enabling systemtap compatible dtrace probes on linux</li>
    2275. 

  2275.  <li>Optimized access to temporary and compiled VM variables. 8% less memory reads</li>
    2276. 

  2276.  <li>The VM stacks for passing function arguments and syntaticaly nested calls
    2277. 

  2277.     were merged into a single stack. The stack size needed for op_array
    2278. 

  2278.     execution is calculated at compile time and preallocated at once. As result
    2279. 

  2279.     all the stack push operations don't require checks for stack overflow
    2280. 

  2280.     any more</li>
    2281. 

  2281. </ul></li>
    2282. 

  2282. </ul>
    2283. 

  2283. 

  2284. <ul>
    2285. 

  2285. <li>General improvements:
    2286. 

  2286. <ul>
    2287. 

  2287.  <li>Added generators and coroutines.</li>
    2288. 

  2288.  <li>Added "finally" keyword. </li>
    2289. 

  2289.  <li>Added simplified password hashing API.</li>
    2290. 

  2290.  <li>Added support for constant array/string dereferencing.</li>
    2291. 

  2291.  <li>Added Class Name Resolution As Scalar Via "class" Keyword</li>
    2292. 

  2292.  <li>Added support for using empty() on the result of function calls and other expressions</li>
    2293. 

  2293.  <li>Added support for non-scalar Iterator keys in foreach</li>
    2294. 

  2294.  <li>Added support for list in foreach</li>
    2295. 

  2295. </ul></li>
    2296. 

  2296. </ul>
    2297. 

  2297. 

  2298. <ul>
    2299. 

  2299. <li>Core:
    2300. 

  2300. <ul>
    2301. 

  2301.  <li>Added Zend Opcache extension and enable building it by default.</li>
    2302. 

  2302.  <li>Added array_column function which returns a column in a multidimensional array</li>
    2303. 

  2303.  <li>Added boolval()</li>
    2304. 

  2304.  <li>Added "Z" option to pack/unpack</li>
    2305. 

  2305.  <li>Added optional second argument for assert() to specify custom message</li>
    2306. 

  2306.  <li>Added support for changing the process's title in CLI/CLI-Server SAPIs. The implementation is more robust that the proctitle PECL module</li>
    2307. 

  2307.  <li>Improve set_exception_handler while doing reset</li>
    2308. 

  2308.  <li>Return previous handler when passing NULL to set_error_handler and set_exception_handler</li>
    2309. 

  2309.  <li>Implemented <?php bugl(64175); ?> (Added HTTP codes as of RFC 6585)</li>
    2310. 

  2310.  <li>Implemented <?php bugl(60738); ?> (Allow 'set_error_handler' to handle NULL)</li>
    2311. 

  2311.  <li>Implemented <?php bugl(60524); ?> (specify temp dir by php.ini)</li>
    2312. 

  2312.  <li>Implemented <?php bugl(46487); ?> (Dereferencing process-handles no longer waits on those processes)</li>
    2313. 

  2313.  <li><?php bugfix(65051); ?> (count() off by one inside unset())</li>
    2314. 

  2314.  <li><?php bugfix(64988); ?> (Class loading order affects E_STRICT warning)</li>
    2315. 

  2315.  <li><?php bugfix(64966); ?> (segfault in zend_do_fcall_common_helper_SPEC)</li>
    2316. 

  2316.  <li><?php bugfix(64960); ?> (Segfault in gc_zval_possible_root)</li>
    2317. 

  2317.  <li><?php bugfix(64936); ?> (doc comments picked up from previous scanner run)</li>
    2318. 

  2318.  <li><?php bugfix(64934); ?> (Apache2 TS crash with get_browser())</li>
    2319. 

  2319.  <li><?php bugfix(64879); ?> (Heap based buffer overflow in quoted_printable_encode, CVE 2013-2110)</li>
    2320. 

  2320.  <li><?php bugfix(64853); ?> (Use of no longer available ini directives causes crash on TS build)</li>
    2321. 

  2321.  <li><?php bugfix(64821); ?> (Custom Exceptions crash when internal properties overridden)</li>
    2322. 

  2322.  <li><?php bugfix(64720); ?> (SegFault on zend_deactivate).</li>
    2323. 

  2323.  <li><?php bugfix(64677); ?> (execution operator `` stealing surrounding arguments)</li>
    2324. 

  2324.  <li><?php bugfix(64660); ?> (Segfault on memory exhaustion within function definition)</li>
    2325. 

  2325.  <li><?php bugfix(64578); ?> (debug_backtrace in set_error_handler corrupts zend heap: segfault)</li>
    2326. 

  2326.  <li><?php bugfix(64565); ?> (copy doesn't report failure on partial copy)</li>
    2327. 

  2327.  <li><?php bugfix(64555); ?> (foreach no longer copies keys if they are interned)</li>
    2328. 

  2328.  <li><?php bugfix(47675); ?> and <?php bugfix(64577); ?> (fd leak on Solaris)</li>
    2329. 

  2329.  <li><?php bugfix(64544); ?> (Valgrind warnings after using putenv)</li>
    2330. 

  2330.  <li><?php bugfix(64515); ?> (Memoryleak when using the same variablename 2times in function declaration)</li>
    2331. 

  2331.  <li><?php bugfix(64503); ?> (Compilation fails with error: conflicting types for 'zendparse')</li>
    2332. 

  2332.  <li><?php bugfix(64239); ?> (Debug backtrace changed behavior since 5.4.10 or 5.4.11)</li>
    2333. 

  2333.  <li><?php bugfix(64523); ?> allow XOR in php.ini</li>
    2334. 

  2334.  <li><?php bugfix(64354); ?> (Unserialize array of objects whose class can't be autoloaded fail)</li>
    2335. 

  2335.  <li><?php bugfix(64370); ?> (microtime(true) less than $_SERVER['REQUEST_TIME_FLOAT'])</li>
    2336. 

  2336.  <li><?php bugfix(64166); ?> (quoted-printable-encode stream filter incorrectly discarding whitespace)</li>
    2337. 

  2337.  <li><?php bugfix(64142); ?> (dval to lval different behavior on ppc64)</li>
    2338. 

  2338.  <li><?php bugfix(64135); ?> (Exceptions from set_error_handler are not always propagated)</li>
    2339. 

  2339.  <li><?php bugfix(63980); ?> (object members get trimmed by zero bytes)</li>
    2340. 

  2340.  <li><?php bugfix(63874); ?> (Segfault if php_strip_whitespace has heredoc)</li>
    2341. 

  2341.  <li><?php bugfix(63830); ?> (Segfault on undefined function call in nested generator)</li>
    2342. 

  2342.  <li><?php bugfix(63822); ?> (Crash when using closures with ArrayAccess)</li>
    2343. 

  2343.  <li><?php bugfix(61681); ?> (Malformed grammar)</li>
    2344. 

  2344.  <li><?php bugfix(61038); ?> (unpack("a5", "str\0\0") does not work as expected)</li>
    2345. 

  2345.  <li><?php bugfix(61025); ?> (__invoke() visibility not honored)</li>
    2346. 

  2346.  <li><?php bugfix(60833); ?> (self, parent, static behave inconsistently case-sensitive)</li>
    2347. 

  2347.  <li><?php bugfix(52126); ?> timestamp for mail.log</li>
    2348. 

  2348.  <li><?php bugfix(49348); ?> (Uninitialized ++$foo->bar; does not cause a notice)</li>
    2349. 

  2349.  <li><?php bugfix(23955); ?> allow specifying Max-Age attribute in setcookie()</li>
    2350. 

  2350.  <li><?php bugfix(18556); ?> (Engine uses locale rules to handle class names)</li>
    2351. 

  2351.  <li>Fix undefined behavior when converting double variables to integers. The double is now always rounded towards zero, the remainder of its division by 2^32 or 2^64 (depending on sizeof(long)) is calculated and it's made signed assuming a two's complement representation</li>
    2352. 

  2352. </ul></li>
    2353. 

  2353. </ul>
    2354. 

  2354. 

  2355. <ul>
    2356. 

  2356. <li>Removed legacy features:
    2357. 

  2357. <ul>
    2358. 

  2358.  <li>Remove php_logo_guid(), php_egg_logo_guid(), php_real_logo_guid(), zend_logo_guid()</li>
    2359. 

  2359.  <li>Drop Windows XP and 2003 support</li>
    2360. 

  2360. </ul></li>
    2361. 

  2361. </ul>
    2362. 

  2362. 

  2363. <ul>
    2364. 

  2364. <li>Apache2 Handler SAPI:
    2365. 

  2365. <ul>
    2366. 

  2366.  <li>Enabled Apache 2.4 configure option for Windows.</li>
    2367. 

  2367. </ul></li>
    2368. 

  2368. </ul>
    2369. 

  2369. 

  2370. <ul>
    2371. 

  2371. <li>Calendar:
    2372. 

  2372. <ul>
    2373. 

  2373.  <li><?php bugfix(64895); ?> (Integer overflow in SndToJewish).</li>
    2374. 

  2374.  <li><?php bugfix(54254); ?> (cal_from_jd returns month = 6 when there is only one Adar).</li>
    2375. 

  2375. </ul></li>
    2376. 

  2376. </ul>
    2377. 

  2377. 

  2378. <ul>
    2379. 

  2379. <li>CLI server:
    2380. 

  2380. <ul>
    2381. 

  2381.   <li><?php bugfix(64128); ?> (buit-in web server is broken on ppc64).</li>
    2382. 

  2382. </ul></li>
    2383. 

  2383. </ul>
    2384. 

  2384. 

  2385. <ul>
    2386. 

  2386. <li>CURL:
    2387. 

  2387. <ul>
    2388. 

  2388.  <li>Remove curl stream wrappers.</li>
    2389. 

  2389.  <li>Implemented <?php bugl(46439); ?> - added CURLFile for safer file uploads</li>
    2390. 

  2390.  <li>Added support for CURLOPT_FTP_RESPONSE_TIMEOUT, CURLOPT_APPEND,
    2391. 

  2391.     CURLOPT_DIRLISTONLY, CURLOPT_NEW_DIRECTORY_PERMS, CURLOPT_NEW_FILE_PERMS,
    2392. 

  2392.     CURLOPT_NETRC_FILE, CURLOPT_PREQUOTE, CURLOPT_KRBLEVEL, CURLOPT_MAXFILESIZE,
    2393. 

  2393.     CURLOPT_FTP_ACCOUNT, CURLOPT_COOKIELIST, CURLOPT_IGNORE_CONTENT_LENGTH,
    2394. 

  2394.     CURLOPT_CONNECT_ONLY, CURLOPT_LOCALPORT, CURLOPT_LOCALPORTRANGE,
    2395. 

  2395.     CURLOPT_FTP_ALTERNATIVE_TO_USER, CURLOPT_SSL_SESSIONID_CACHE,
    2396. 

  2396.     CURLOPT_FTP_SSL_CCC, CURLOPT_HTTP_CONTENT_DECODING,
    2397. 

  2397.     CURLOPT_HTTP_TRANSFER_DECODING, CURLOPT_PROXY_TRANSFER_MODE,
    2398. 

  2398.     CURLOPT_ADDRESS_SCOPE, CURLOPT_CRLFILE, CURLOPT_ISSUERCERT,
    2399. 

  2399.     CURLOPT_USERNAME, CURLOPT_PASSWORD, CURLOPT_PROXYUSERNAME,
    2400. 

  2400.     CURLOPT_PROXYPASSWORD, CURLOPT_NOPROXY, CURLOPT_SOCKS5_GSSAPI_NEC,
    2401. 

  2401.     CURLOPT_SOCKS5_GSSAPI_SERVICE, CURLOPT_TFTP_BLKSIZE,
    2402. 

  2402.     CURLOPT_SSH_KNOWNHOSTS, CURLOPT_FTP_USE_PRET, CURLOPT_MAIL_FROM,
    2403. 

  2403.     CURLOPT_MAIL_RCPT, CURLOPT_RTSP_CLIENT_CSEQ, CURLOPT_RTSP_SERVER_CSEQ,
    2404. 

  2404.     CURLOPT_RTSP_SESSION_ID, CURLOPT_RTSP_STREAM_URI, CURLOPT_RTSP_TRANSPORT,
    2405. 

  2405.     CURLOPT_RTSP_REQUEST, CURLOPT_RESOLVE, CURLOPT_ACCEPT_ENCODING,
    2406. 

  2406.     CURLOPT_TRANSFER_ENCODING, CURLOPT_DNS_SERVERS and CURLOPT_USE_SSL</li>
    2407. 

  2407.  <li><?php bugfix(55635); ?> (CURLOPT_BINARYTRANSFER no longer used. The constant
    2408. 

  2408.     still exists for backward compatibility but is doing nothing)</li>
    2409. 

  2409.  <li><?php bugfix(54995); ?> (Missing CURLINFO_RESPONSE_CODE support)</li>
    2410. 

  2410.  <li>Added new functions curl_escape, curl_multi_setopt, curl_multi_strerror
    2411. 

  2411.     curl_pause, curl_reset, curl_share_close, curl_share_init,
    2412. 

  2412.     curl_share_setopt curl_strerror and curl_unescape</li>
    2413. 

  2413.  <li>Addes new curl options CURLOPT_TELNETOPTIONS, CURLOPT_GSSAPI_DELEGATION,
    2414. 

  2414.     CURLOPT_ACCEPTTIMEOUT_MS, CURLOPT_SSL_OPTIONS, CURLOPT_TCP_KEEPALIVE,
    2415. 

  2415.     CURLOPT_TCP_KEEPIDLE and CURLOPT_TCP_KEEPINTVL</li>
    2416. 

  2416. </ul></li>
    2417. 

  2417. </ul>
    2418. 

  2418. 

  2419. <ul>
    2420. 

  2420. <li>DateTime:
    2421. 

  2421. <ul>
    2422. 

  2422.  <li>Added DateTimeImmutable - a variant of DateTime that only returns the
    2423. 

  2423.     modified state instead of changing itself.</li>
    2424. 

  2424.  <li><?php bugfix(64825); ?> (Invalid free when unserializing DateTimeZone).</li>
    2425. 

  2425.  <li><?php bugfix(64359); ?> (strftime crash with VS2012)</li>
    2426. 

  2426.  <li><?php bugfix(62852); ?> (Unserialize Invalid Date causes crash)</li>
    2427. 

  2427.  <li><?php bugfix(61642); ?> (modify("+5 weekdays") returns Sunday)</li>
    2428. 

  2428.  <li><?php bugfix(60774); ?> (DateInterval::format("%a") is always zero when an
    2429. 

  2429.     interval is created using the createFromDateString method)</li>
    2430. 

  2430.  <li><?php bugfix(54567); ?> (DateTimeZone serialize/unserialize)</li>
    2431. 

  2431.  <li><?php bugfix(53437); ?> (Crash when using unserialized DatePeriod instance)</li>
    2432. 

  2432. </ul></li>
    2433. 

  2433. </ul>
    2434. 

  2434. 

  2435. <ul>
    2436. 

  2436. <li>dba:
    2437. 

  2437. <ul>
    2438. 

  2438.  <li><?php bugfix(62489); ?> (dba_insert not working as expected)</li>
    2439. 

  2439. </ul></li>
    2440. 

  2440. </ul>
    2441. 

  2441. 

  2442. <ul>
    2443. 

  2443. <li>Filter:
    2444. 

  2444. <ul>
    2445. 

  2445.  <li>Implemented <?php bugl(49180); ?> added MAC address validation.</li>
    2446. 

  2446. </ul></li>
    2447. 

  2447. </ul>
    2448. 

  2448. 

  2449. <ul>
    2450. 

  2450. <li>Fileinfo:
    2451. 

  2451. <ul>
    2452. 

  2452.  <li>Upgraded libmagic to 5.14.</li>
    2453. 

  2453.  <li><?php bugfix(64830); ?> (mimetype detection segfaults on mp3 file)</li>
    2454. 

  2454.  <li><?php bugfix(63590); ?> (Different results in TS and NTS under Windows)</li>
    2455. 

  2455.  <li><?php bugfix(63248); ?> (Load multiple magic files from a directory under Windows)</li>
    2456. 

  2456. </ul></li>
    2457. 

  2457. </ul>
    2458. 

  2458. 

  2459. <ul>
    2460. 

  2460. <li>FPM:
    2461. 

  2461. <ul>
    2462. 

  2462.  <li>Add --with-fpm-systemd option to report health to systemd, and
    2463. 

  2463.     systemd_interval option to configure this. The service can now use
    2464. 

  2464.     Type=notify in the systemd unit file.</li>
    2465. 

  2465.  <li>Ignore QUERY_STRING when sent in SCRIPT_FILENAME</li>
    2466. 

  2466.  <li>Log a warning when a syscall fails</li>
    2467. 

  2467.  <li>Implemented <?php bugl(64764); ?> (add support for FPM init.d script)</li>
    2468. 

  2468.  <li><?php bugfix(64915); ?> (error_log ignored when daemonize=0)</li>
    2469. 

  2469.  <li><?php bugfix(63999); ?> (php with fpm fails to build on Solaris 10 or 11)</li>
    2470. 

  2470.  <li>Fixed some possible memory or resource leaks and possible null dereference
    2471. 

  2471.     detected by code coverity scan</li>
    2472. 

  2472. </ul></li>
    2473. 

  2473. </ul>
    2474. 

  2474. 

  2475. <ul>
    2476. 

  2476. <li>GD:
    2477. 

  2477. <ul>
    2478. 

  2478.  <li><?php bugfix(64962); ?> (imagerotate produces corrupted image).</li>
    2479. 

  2479.  <li><?php bugfix(64961); ?> (segfault in imagesetinterpolation)</li>
    2480. 

  2480.  <li>Fix build with system libgd &gt;= 2.1 which is now the minimal
    2481. 

  2481.     version required (as build with previous version is broken).
    2482. 

  2482.     No change when bundled libgd is used</li>
    2483. 

  2483.  <li>Upgraded libgd to 2.1</li>
    2484. 

  2484. </ul></li>
    2485. 

  2485. </ul>
    2486. 

  2486. 

  2487. <ul>
    2488. 

  2488. <li>hash:
    2489. 

  2489. <ul>
    2490. 

  2490.  <li>Added support for PBKDF2 via hash_pbkdf2().</li>
    2491. 

  2491.  <li><?php bugfix(64745); ?> (hash_pbkdf2() truncates data when using default length
    2492. 

  2492.     and hex output)</li>
    2493. 

  2493. </ul></li>
    2494. 

  2494. </ul>
    2495. 

  2495. 

  2496. <ul>
    2497. 

  2497. <li>intl:
    2498. 

  2498. <ul>
    2499. 

  2499.  <li>Added UConverter wrapper.</li>
    2500. 

  2500.  <li>The intl extension now requires ICU 4.0+</li>
    2501. 

  2501.  <li>Added intl.use_exceptions INI directive, which controls what happens when
    2502. 

  2502.     global errors are set together with intl.error_level</li>
    2503. 

  2503.  <li>MessageFormatter::format() and related functions now accepted named
    2504. 

  2504.     arguments and mixed numeric/named arguments in ICU 4.8+</li>
    2505. 

  2505.  <li>MessageFormatter::format() and related functions now don't error out when
    2506. 

  2506.     an insufficient argument count is provided. Instead, the placeholders will
    2507. 

  2507.     remain unsubstituted</li>
    2508. 

  2508.  <li>MessageFormatter::parse() and MessageFormat::format() (and their static
    2509. 

  2509.     equivalents) don't throw away better than second precision in the arguments</li>
    2510. 

  2510.  <li>IntlDateFormatter::__construct and datefmt_create() now accept for the
    2511. 

  2511.     $timezone argument time zone identifiers, IntlTimeZone objects, DateTimeZone
    2512. 

  2512.     objects and NULL</li>
    2513. 

  2513.  <li>IntlDateFormatter::__construct and datefmt_create() no longer accept invalid
    2514. 

  2514.     timezone identifiers or empty strings</li>
    2515. 

  2515.  <li>The default time zone used in IntlDateFormatter::__construct and
    2516. 

  2516.     datefmt_create() (when the corresponding argument is not passed or NULL is
    2517. 

  2517.     passed) is now the one given by date_default_timezone_get(), not the
    2518. 

  2518.     default ICU time zone</li>
    2519. 

  2519.  <li>The time zone passed to the IntlDateFormatter is ignored if it is NULL and
    2520. 

  2520.     if the calendar passed is an IntlCalendar object -- in this case, the
    2521. 

  2521.     IntlCalendar's time zone will be used instead. Otherwise, the time zone
    2522. 

  2522.     specified in the $timezone argument is used instead. This does not affect
    2523. 

  2523.     old code, as IntlCalendar was introduced in this version</li>
    2524. 

  2524.  <li>IntlDateFormatter::__construct and datefmt_create() now accept for the
    2525. 

  2525.     $calendar argument also IntlCalendar objects</li>
    2526. 

  2526.  <li>IntlDateFormatter::getCalendar() and datefmt_get_calendar() return false
    2527. 

  2527.     if the IntlDateFormatter was set up with an IntlCalendar instead of the
    2528. 

  2528.     constants IntlDateFormatter::GREGORIAN/TRADITIONAL. IntlCalendar did not
    2529. 

  2529.     exist before this version</li>
    2530. 

  2530.  <li>IntlDateFormatter::setCalendar() and datefmt_set_calendar() now also accept
    2531. 

  2531.     an IntlCalendar object, in which case its time zone is taken. Passing a
    2532. 

  2532.     constant is still allowed, and still keeps the time zone</li>
    2533. 

  2533.  <li>IntlDateFormatter::setTimeZoneID() and datefmt_set_timezone_id() are
    2534. 

  2534.     deprecated. Use IntlDateFormatter::setTimeZone() or datefmt_set_timezone()
    2535. 

  2535.     instead</li>
    2536. 

  2536.  <li>IntlDateFormatter::format() and datefmt_format() now also accept an
    2537. 

  2537.     IntlCalendar object for formatting</li>
    2538. 

  2538.  <li>Added the classes: IntlCalendar, IntlGregorianCalendar, IntlTimeZone,
    2539. 

  2539.     IntlBreakIterator, IntlRuleBasedBreakIterator and
    2540. 

  2540.     IntlCodePointBreakIterator</li>
    2541. 

  2541.  <li>Added the functions: intlcal_get_keyword_values_for_locale(),
    2542. 

  2542.     intlcal_get_now(), intlcal_get_available_locales(), intlcal_get(),
    2543. 

  2543.     intlcal_get_time(), intlcal_set_time(), intlcal_add(),
    2544. 

  2544.     intlcal_set_time_zone(), intlcal_after(), intlcal_before(), intlcal_set(),
    2545. 

  2545.     intlcal_roll(), intlcal_clear(), intlcal_field_difference(),
    2546. 

  2546.     intlcal_get_actual_maximum(), intlcal_get_actual_minimum(),
    2547. 

  2547.     intlcal_get_day_of_week_type(), intlcal_get_first_day_of_week(),
    2548. 

  2548.     intlcal_get_greatest_minimum(), intlcal_get_least_maximum(),
    2549. 

  2549.     intlcal_get_locale(), intlcal_get_maximum(),
    2550. 

  2550.     intlcal_get_minimal_days_in_first_week(), intlcal_get_minimum(),
    2551. 

  2551.     intlcal_get_time_zone(), intlcal_get_type(),
    2552. 

  2552.     intlcal_get_weekend_transition(), intlcal_in_daylight_time(),
    2553. 

  2553.     intlcal_is_equivalent_to(), intlcal_is_lenient(), intlcal_is_set(),
    2554. 

  2554.     intlcal_is_weekend(), intlcal_set_first_day_of_week(),
    2555. 

  2555.     intlcal_set_lenient(), intlcal_equals(),
    2556. 

  2556.     intlcal_get_repeated_wall_time_option(),
    2557. 

  2557.     intlcal_get_skipped_wall_time_option(),
    2558. 

  2558.     intlcal_set_repeated_wall_time_option(),
    2559. 

  2559.     intlcal_set_skipped_wall_time_option(), intlcal_from_date_time(),
    2560. 

  2560.     intlcal_to_date_time(), intlcal_get_error_code(),
    2561. 

  2561.     intlcal_get_error_message(), intlgregcal_create_instance(),
    2562. 

  2562.     intlgregcal_set_gregorian_change(), intlgregcal_get_gregorian_change() and
    2563. 

  2563.     intlgregcal_is_leap_year()</li>
    2564. 

  2564.  <li>Added the functions: intltz_create_time_zone(), intltz_create_default(),
    2565. 

  2565.     intltz_get_id(), intltz_get_gmt(), intltz_get_unknown(),
    2566. 

  2566.     intltz_create_enumeration(), intltz_count_equivalent_ids(),
    2567. 

  2567.     intltz_create_time_zone_id_enumeration(), intltz_get_canonical_id(),
    2568. 

  2568.     intltz_get_region(), intltz_get_tz_data_version(),
    2569. 

  2569.     intltz_get_equivalent_id(), intltz_use_daylight_time(), intltz_get_offset(),
    2570. 

  2570.     intltz_get_raw_offset(), intltz_has_same_rules(), intltz_get_display_name(),
    2571. 

  2571.     intltz_get_dst_savings(), intltz_from_date_time_zone(),
    2572. 

  2572.     intltz_to_date_time_zone(), intltz_get_error_code(),
    2573. 

  2573.     intltz_get_error_message()</li>
    2574. 

  2574.  <li>Added the methods: IntlDateFormatter::formatObject(),
    2575. 

  2575.     IntlDateFormatter::getCalendarObject(), IntlDateFormatter::getTimeZone(),
    2576. 

  2576.     IntlDateFormatter::setTimeZone()</li>
    2577. 

  2577.  <li>Added the functions: datefmt_format_object(), datefmt_get_calendar_object(),
    2578. 

  2578.     datefmt_get_timezone(), datefmt_set_timezone(),
    2579. 

  2579.     datefmt_get_calendar_object(), intlcal_create_instance()</li>
    2580. 

  2580. </ul></li>
    2581. 

  2581. </ul>
    2582. 

  2582. 

  2583. <ul>
    2584. 

  2584. <li>mbstring:
    2585. 

  2585. <ul>
    2586. 

  2586.  <li><?php bugfix(64769); ?> (mbstring PHPTs crash on Windows x64).</li>
    2587. 

  2587. </ul></li>
    2588. 

  2588. </ul>
    2589. 

  2589. 

  2590. <ul>
    2591. 

  2591. <li>MCrypt:
    2592. 

  2592. <ul>
    2593. 

  2593.  <li>mcrypt_ecb(), mcrypt_cbc(), mcrypt_cfb() and mcrypt_ofb() now throw E_DEPRECATED.</li>
    2594. 

  2594. </ul></li>
    2595. 

  2595. </ul>
    2596. 

  2596. 

  2597. <ul>
    2598. 

  2598. <li>mysql:
    2599. 

  2599. <ul>
    2600. 

  2600.  <li>This extension is now deprecated, and deprecation warnings will be generated
    2601. 

  2601.     when connections are established to databases via mysql_connect(),
    2602. 

  2602.     mysql_pconnect(), or through implicit connection: use MySQLi or PDO_MySQL
    2603. 

  2603.     instead</li>
    2604. 

  2604.  <li>Dropped support for LOAD DATA LOCAL INFILE handlers when using libmysql.
    2605. 

  2605.     Known for stability problems</li>
    2606. 

  2606.  <li>Added support for SHA256 authentication available with MySQL 5.6.6+</li>
    2607. 

  2607. </ul></li>
    2608. 

  2608. </ul>
    2609. 

  2609. 

  2610. <ul>
    2611. 

  2611. <li>mysqli:
    2612. 

  2612. <ul>
    2613. 

  2613.  <li>Added mysqli_begin_transaction()/mysqli::begin_transaction(). Implemented
    2614. 

  2614.     all options, per MySQL 5.6, which can be used with START TRANSACTION, COMMIT
    2615. 

  2615.     and ROLLBACK through options to mysqli_commit()/mysqli_rollback() and their
    2616. 

  2616.     respective OO counterparts. They work in libmysql and mysqlnd mode</li>
    2617. 

  2617.  <li>Added mysqli_savepoint(), mysqli_release_savepoint()</li>
    2618. 

  2618.  <li><?php bugfix(64726); ?> (Segfault when calling fetch_object on a use_result and DB
    2619. 

  2619.     pointer has closed)</li>
    2620. 

  2620.  <li><?php bugfix(64394); ?> (MYSQL_OPT_CAN_HANDLE_EXPIRED_PASSWORDS undeclared when
    2621. 

  2621.     using Connector/C)</li>
    2622. 

  2622. </ul></li>
    2623. 

  2623. </ul>
    2624. 

  2624. 

  2625. <ul>
    2626. 

  2626. <li>mysqlnd:
    2627. 

  2627. <ul>
    2628. 

  2628.  <li>Add new begin_transaction() call to the connection object. Implemented all
    2629. 

  2629.     options, per MySQL 5.6, which can be used with START TRANSACTION, COMMIT
    2630. 

  2630.     and ROLLBACK</li>
    2631. 

  2631.  <li>Added mysqlnd_savepoint(), mysqlnd_release_savepoint()</li>
    2632. 

  2632.  <li><?php bugfix(63530); ?> (mysqlnd_stmt::bind_one_parameter crashes, uses wrong alloc
    2633. 

  2633.     for stmt-&gt;param_bind)</li>
    2634. 

  2634.  <li>Fixed return value of mysqli_stmt_affected_rows() in the time after
    2635. 

  2635.     prepare() and before execute()</li>
    2636. 

  2636. </ul></li>
    2637. 

  2637. </ul>
    2638. 

  2638. 

  2639. <ul>
    2640. 

  2640. <li>PCRE:
    2641. 

  2641. <ul>
    2642. 

  2642.  <li>Merged PCRE 8.32</li>
    2643. 

  2643.  <li>Deprecated the /e modifier</li>
    2644. 

  2644.  <li><?php bugfix(63284); ?> (Upgrade PCRE to 8.31)</li>
    2645. 

  2645. </ul></li>
    2646. 

  2646. </ul>
    2647. 

  2647. 

  2648. <ul>
    2649. 

  2649. <li>PDO:
    2650. 

  2650. <ul>
    2651. 

  2651.  <li><?php bugfix(63176); ?> (Segmentation fault when instantiate 2 persistent PDO to the same db server)</li>
    2652. 

  2652. </ul></li>
    2653. 

  2653. </ul>
    2654. 

  2654. 

  2655. <ul>
    2656. 

  2656. <li>PDO_DBlib:
    2657. 

  2657. <ul>
    2658. 

  2658.  <li><?php bugfix(63638); ?> (Cannot connect to SQL Server 2008 with PDO dblib)</li>
    2659. 

  2659.  <li><?php bugfix(64338); ?> (pdo_dblib can't connect to Azure SQL)</li>
    2660. 

  2660.  <li><?php bugfix(64808); ?> (FreeTDS PDO getColumnMeta on a prepared but not executed statement crashes)</li>
    2661. 

  2661. </ul></li>
    2662. 

  2662. </ul>
    2663. 

  2663. 

  2664. <ul>
    2665. 

  2665. <li>PDO_pgsql:
    2666. 

  2666. <ul>
    2667. 

  2667.  <li><?php bugfix(64949); ?> (Buffer overflow in _pdo_pgsql_error)</li>
    2668. 

  2668. </ul></li>
    2669. 

  2669. </ul>
    2670. 

  2670. 

  2671. <ul>
    2672. 

  2672. <li>PDO_mysql:
    2673. 

  2673. <ul>
    2674. 

  2674.  <li><?php bugfix(48724); ?> (getColumnMeta() doesn't return native_type for BIT, TINYINT and YEAR)</li>
    2675. 

  2675. </ul></li>
    2676. 

  2676. </ul>
    2677. 

  2677. 

  2678. <ul>
    2679. 

  2679. <li>pgsql:
    2680. 

  2680. <ul>
    2681. 

  2681.  <li>Added pg_escape_literal() and pg_escape_identifier()</li>
    2682. 

  2682.  <li><?php bugfix(46408); ?> Locale number format settings can cause pg_query_params to break with numerics</li>
    2683. 

  2683. </ul></li>
    2684. 

  2684. </ul>
    2685. 

  2685. 

  2686. <ul>
    2687. 

  2687. <li>Phar:
    2688. 

  2688. <ul>
    2689. 

  2689.  <li>Fixed timestamp update on Phar contents modification</li>
    2690. 

  2690. </ul></li>
    2691. 

  2691. </ul>
    2692. 

  2692. 

  2693. <ul>
    2694. 

  2694. <li>readline:
    2695. 

  2695. <ul>
    2696. 

  2696.  <li><?php bugfix(55694); ?> (Expose additional readline variable to prevent default filename completion)</li>
    2697. 

  2697. </ul></li>
    2698. 

  2698. </ul>
    2699. 

  2699. 

  2700. <ul>
    2701. 

  2701. <li>Reflection:
    2702. 

  2702. <ul>
    2703. 

  2703.  <li><?php bugfix(64007); ?> (There is an ability to create instance of Generator by hand)</li>
    2704. 

  2704. </ul></li>
    2705. 

  2705. </ul>
    2706. 

  2706. 

  2707. <ul>
    2708. 

  2708. <li>Sockets:
    2709. 

  2709. <ul>
    2710. 

  2710.  <li>Added socket_cmsg_space(), socket_sendmsg(), and socket_recvmsg() functions</li>
    2711. 

  2711.  <li><?php bugfix(64508); ?> (Fails to build with --disable-ipv6)</li>
    2712. 

  2712.  <li><?php bugfix(64287); ?> (sendmsg/recvmsg shutdown handler causes segfault)</li>
    2713. 

  2713. </ul></li>
    2714. 

  2714. </ul>
    2715. 

  2715. 

  2716. <ul>
    2717. 

  2717. <li>SPL:
    2718. 

  2718. <ul>
    2719. 

  2719.  <li><?php bugfix(64997); ?> (Segfault while using RecursiveIteratorIterator on 64-bits systems)</li>
    2720. 

  2720.  <li><?php bugfix(64264); ?> (SPLFixedArray toArray problem)</li>
    2721. 

  2721.  <li><?php bugfix(64228); ?> (RecursiveDirectoryIterator always assumes SKIP_DOTS)</li>
    2722. 

  2722.  <li><?php bugfix(64106); ?> (Segfault on SplFixedArray[][x] = y when extended)</li>
    2723. 

  2723.  <li><?php bugfix(60560); ?> (SplFixedArray un-/serialize, getSize(), count() return 0, keys are strings)</li>
    2724. 

  2724.  <li><?php bugfix(52861); ?> (unset fails with ArrayObject and deep arrays)</li>
    2725. 

  2725.  <li>Implement <?php bugl(48358); ?> (Add SplDoublyLinkedList::add() to insert an element at a given offset)</li>
    2726. 

  2726. </ul></li>
    2727. 

  2727. </ul>
    2728. 

  2728. 

  2729. <ul>
    2730. 

  2730. <li>SNMP:
    2731. 

  2731. <ul>
    2732. 

  2732.  <li><?php bugfix(64765); ?> (Some IPv6 addresses get interpreted wrong)</li>
    2733. 

  2733.  <li><?php bugfix(64159); ?> (Truncated snmpget)</li>
    2734. 

  2734.  <li><?php bugfix(64124); ?> (IPv6 malformed)</li>
    2735. 

  2735.  <li><?php bugfix(61981); ?> (OO API, walk: $suffix_as_key is not working correctly)</li>
    2736. 

  2736. </ul></li>
    2737. 

  2737. </ul>
    2738. 

  2738. 

  2739. <ul>
    2740. 

  2740. <li>SOAP:
    2741. 

  2741. <ul>
    2742. 

  2742.  <li>Added SoapClient constructor option 'ssl_method' to specify ssl method</li>
    2743. 

  2743. </ul></li>
    2744. 

  2744. </ul>
    2745. 

  2745. 

  2746. <ul>
    2747. 

  2747. <li>Streams:
    2748. 

  2748. <ul>
    2749. 

  2749.  <li><?php bugfix(64770); ?> (stream_select() fails with pipes returned by proc_open() on Windows x64)</li>
    2750. 

  2750.  <li>Fixed Windows x64 version of stream_socket_pair() and improved error handling</li>
    2751. 

  2751. </ul></li>
    2752. 

  2752. </ul>
    2753. 

  2753. 

  2754. <ul>
    2755. 

  2755. <li>Tokenizer:
    2756. 

  2756. <ul>
    2757. 

  2757.  <li><?php bugfix(60097); ?> (token_get_all fails to lex nested heredoc)</li>
    2758. 

  2758. </ul></li>
    2759. 

  2759. </ul>
    2760. 

  2760. 

  2761. <ul>
    2762. 

  2762. <li>Zip:
    2763. 

  2763. <ul>
    2764. 

  2764.  <li>Upgraded libzip to 0.10.1</li>
    2765. 

  2765.  <li><?php bugfix(64452); ?> (Zip crash intermittently)</li>
    2766. 

  2766.  <li><?php bugfix(64342); ?> (ZipArchive::addFile() has to check for file existence)</li>
    2767. 

  2767. </ul></li>
    2768. 

  2768. </ul>
    2769. 

  2769. 

  2770. <!-- }}} --></section>
    2771. 

  2771. 

  2772. <section class="version" id="5.4.17"><!-- {{{ 5.4.17 -->
    2773. 

  2773. <h3>Version 5.4.17</h3>
    2774. 

  2774. <?php release_date('04-Jul-2013'); ?>
    2775. 

  2775. <ul><li>Core:
    2776. 

  2776. <ul>
    2777. 

  2777.   <li><?php bugfix(64988); ?> (Class loading order affects E_STRICT warning).</li>
    2778. 

  2778.   <li><?php bugfix(64966); ?> (segfault in zend_do_fcall_common_helper_SPEC).</li>
    2779. 

  2779.   <li><?php bugfix(64960); ?> (Segfault in gc_zval_possible_root).</li>
    2780. 

  2780.   <li><?php bugfix(64936); ?> (doc comments picked up from previous scanner run).</li>
    2781. 

  2781.   <li><?php bugfix(64934); ?> (Apache2 TS crash with get_browser()).</li>
    2782. 

  2782.   <li><?php bugfix(64166); ?> (quoted-printable-encode stream filter incorrectly discarding whitespace).</li>
    2783. 

  2783. </ul></li>
    2784. 

  2784. <li>DateTime:
    2785. 

  2785. <ul>
    2786. 

  2786.   <li><?php bugfix(53437); ?> (Crash when using unserialized DatePeriod instance).</li>
    2787. 

  2787. </ul></li>
    2788. 

  2788. <li>FPM:
    2789. 

  2789. <ul>
    2790. 

  2790.   <li><?php bugfix(64915); ?> (error_log ignored when daemonize=0).</li>
    2791. 

  2791.   <li>Implemented FR <?php bugl(64764); ?> (add support for FPM init.d script).</li>
    2792. 

  2792. </ul></li>
    2793. 

  2793. <li>PDO:
    2794. 

  2794. <ul>
    2795. 

  2795.   <li><?php bugfix(63176); ?> (Segmentation fault when instantiate 2 persistent PDO to the same db server).</li>
    2796. 

  2796. </ul></li>
    2797. 

  2797. <li>PDO_DBlib:
    2798. 

  2798. <ul>
    2799. 

  2799.   <li><?php bugfix(63638); ?> (Cannot connect to SQL Server 2008 with PDO dblib).</li>
    2800. 

  2800.   <li><?php bugfix(64338); ?> (pdo_dblib can't connect to Azure SQL).</li>
    2801. 

  2801.   <li><?php bugfix(64808); ?> (FreeTDS PDO getColumnMeta on a prepared but not executed statement crashes).</li>
    2802. 

  2802. </ul></li>
    2803. 

  2803. <li>PDO_firebird:
    2804. 

  2804. <ul>
    2805. 

  2805.   <li><?php bugfix(64037); ?> (Firebird return wrong value for numeric field).</li>
    2806. 

  2806.   <li><?php bugfix(62024); ?> (Cannot insert second row with null using parametrized query).</li>
    2807. 

  2807. </ul></li>
    2808. 

  2808. <li>PDO_mysql:
    2809. 

  2809. <ul>
    2810. 

  2810.   <li><?php bugfix(48724); ?> (getColumnMeta() doesn't return native_type for BIT, TINYINT and YEAR).</li>
    2811. 

  2811. </ul></li>
    2812. 

  2812. <li>PDO_pgsql:
    2813. 

  2813. <ul>
    2814. 

  2814.   <li><?php bugfix(64949); ?> (Buffer overflow in _pdo_pgsql_error).</li>
    2815. 

  2815. </ul></li>
    2816. 

  2816. <li>pgsql:
    2817. 

  2817. <ul>
    2818. 

  2818.   <li><?php bugfix(64609); ?> (pg_convert enum type support).</li>
    2819. 

  2819. </ul></li>
    2820. 

  2820. <li>Readline:
    2821. 

  2821. <ul>
    2822. 

  2822.   <li>Implement FR <?php bugl(55694); ?> (Expose additional readline variable to prevent default filename completion).</li>
    2823. 

  2823. </ul></li>
    2824. 

  2824. <li>SPL:
    2825. 

  2825. <ul>
    2826. 

  2826.   <li><?php bugfix(64997); ?> (Segfault while using RecursiveIteratorIterator on 64-bits systems).</li>
    2827. 

  2827. </ul></li>
    2828. 

  2828. </ul>
    2829. 

  2829. <!-- }}} --></section>
    2830. 

  2830. 

  2831. <section class="version" id="5.4.16"><!-- {{{ 5.4.16 -->
    2832. 

  2832. <h3>Version 5.4.16</h3>
    2833. 

  2833. <?php release_date('06-Jun-2013'); ?>
    2834. 

  2834. <ul>
    2835. 

  2835. <li>Core:
    2836. 

  2836. <ul>
    2837. 

  2837.  <li><?php bugfix(64879); ?> (Heap based buffer overflow in quoted_printable_encode, CVE-2013-2110).</li>
    2838. 

  2838.  <li><?php bugfix(64853); ?> (Use of no longer available ini directives causes crash on TS build).</li>
    2839. 

  2839.  <li><?php bugfix(64729); ?> (compilation failure on x32). </li>
    2840. 

  2840.  <li><?php bugfix(64720); ?> (SegFault on zend_deactivate). </li>
    2841. 

  2841.  <li><?php bugfix(64660); ?> (Segfault on memory exhaustion within function definition).</li>
    2842. 

  2842. </ul>
    2843. 

  2843. </li>
    2844. 

  2844. <li>Calendar:
    2845. 

  2845. <ul>
    2846. 

  2846.  <li><?php bugfix(64895); ?> (Integer overflow in SndToJewish).</li>
    2847. 

  2847. </ul>
    2848. 

  2848. </li>
    2849. 

  2849. <li>Fileinfo:
    2850. 

  2850. <ul>
    2851. 

  2851.  <li><?php bugfix(64830); ?> (mimetype detection segfaults on mp3 file).</li>
    2852. 

  2852. </ul>
    2853. 

  2853. </li>
    2854. 

  2854. <li>FPM:
    2855. 

  2855. <ul>
    2856. 

  2856.  <li>Ignore QUERY_STRING when sent in SCRIPT_FILENAME.</li>
    2857. 

  2857.  <li>Fixed some possible memory or resource leaks and possible null dereference detected by code coverity scan.</li>
    2858. 

  2858.  <li>Log a warning when a syscall fails.</li>
    2859. 

  2859.  <li>Add --with-fpm-systemd option to report health to systemd, and systemd_interval option to configure this. The service can now use Type=notify in the systemd unit file.</li>
    2860. 

  2860. </ul>
    2861. 

  2861. </li>
    2862. 

  2862. <li>MySQLi
    2863. 

  2863. <ul>
    2864. 

  2864.   <li><?php bugfix(64726); ?> (Segfault when calling fetch_object on a use_result and DB pointer has closed).</li>
    2865. 

  2865. </ul>
    2866. 

  2866. </li>
    2867. 

  2867. <li>Phar:
    2868. 

  2868. <ul>
    2869. 

  2869.  <li><?php bugfix(64214); ?> (PHAR PHPTs intermittently crash when run on DFS, SMB or with non std tmp dir).</li>
    2870. 

  2870. </ul>
    2871. 

  2871. </li>
    2872. 

  2872. <li>SNMP:
    2873. 

  2873. <ul>
    2874. 

  2874.  <li><?php bugfix(64765); ?> (Some IPv6 addresses get interpreted wrong).</li>
    2875. 

  2875.  <li><?php bugfix(64159); ?> (Truncated snmpget).</li>
    2876. 

  2876. </ul>
    2877. 

  2877. </li>
    2878. 

  2878. <li>Streams:
    2879. 

  2879. <ul>
    2880. 

  2880.  <li><?php bugfix(64770); ?> (stream_select() fails with pipes returned by proc_open() on Windows x64).</li>
    2881. 

  2881. </ul>
    2882. 

  2882. </li>
    2883. 

  2883. <li>Zend Engine:
    2884. 

  2884. <ul>
    2885. 

  2885.  <li><?php bugfix(64821); ?> (Custom Exceptions crash when internal properties overridden).</li>
    2886. 

  2886. </ul>
    2887. 

  2887. </li>
    2888. 

  2888. </ul>
    2889. 

  2889. <!-- }}} --></section>
    2890. 

  2890. 

  2891. <section class="version" id="5.3.26"><!-- {{{ 5.3.26 -->
    2892. 

  2892. <h3>Version 5.3.26</h3>
    2893. 

  2893. <?php release_date('06-Jun-2013'); ?>
    2894. 

  2894. <ul>
    2895. 

  2895. <li>Core:
    2896. 

  2896. <ul>
    2897. 

  2897.  <li><?php bugfix(64879); ?> (Heap based buffer overflow in quoted_printable_encode, CVE-2013-2110).</li>
    2898. 

  2898. </ul>
    2899. 

  2899. </li>
    2900. 

  2900. <li>Calendar:
    2901. 

  2901. <ul>
    2902. 

  2902.  <li><?php bugfix(64895); ?> (Integer overflow in SndToJewish).</li>
    2903. 

  2903. </ul>
    2904. 

  2904. </li>
    2905. 

  2905. <li>FPM:
    2906. 

  2906. <ul>
    2907. 

  2907.  <li>Fixed some possible memory or resource leaks and possible null dereference detected by code coverity scan.</li>
    2908. 

  2908.  <li>Log a warning when a syscall fails.</li>
    2909. 

  2909. </ul>
    2910. 

  2910. </li>
    2911. 

  2911. <li>MySQLi:
    2912. 

  2912. <ul>
    2913. 

  2913.  <li><?php bugfix(64726); ?> (Segfault when calling fetch_object on a use_result and DB pointer has closed).</li>
    2914. 

  2914. </ul>
    2915. 

  2915. </li>
    2916. 

  2916. <li>Phar:
    2917. 

  2917. <ul>
    2918. 

  2918.  <li><?php bugfix(64214); ?> (PHAR PHPTs intermittently crash when run on DFS, SMB or with non std tmp dir).</li>
    2919. 

  2919. </ul>
    2920. 

  2920. </li>
    2921. 

  2921. <li>Streams:
    2922. 

  2922. <ul>
    2923. 

  2923.  <li><?php bugfix(64770); ?> (stream_select() fails with pipes returned by proc_open() on Windows x64).</li>
    2924. 

  2924. </ul>
    2925. 

  2925. </li>
    2926. 

  2926. <li>Zend Engine:
    2927. 

  2927. <ul>
    2928. 

  2928.  <li><?php bugfix(64821); ?> (Custom Exception crash when internal properties overridden).</li>
    2929. 

  2929. </ul>
    2930. 

  2930. </li>
    2931. 

  2931. </ul>
    2932. 

  2932. <!-- }}} --></section>
    2933. 

  2933. 

  2934. 

  2935. <section class="version" id="5.4.15"><!-- {{{ 5.4.15 -->
    2936. 

  2936. <h3>Version 5.4.15</h3>
    2937. 

  2937. <?php release_date('09-May-2013'); ?>
    2938. 

  2938. <ul>
    2939. 

  2939. <li>Core:
    2940. 

  2940. <ul>
    2941. 

  2941.   <li> <?php bugfix(64578); ?> (debug_backtrace in set_error_handler corrupts zend heap: segfault). </li>
    2942. 

  2942.   <li> <?php bugfix(64458); ?> (dns_get_record result with string of length -1). </li>
    2943. 

  2943.   <li> <?php bugfix(64433); ?> (follow_location parameter of context is ignored for most response codes). </li>
    2944. 

  2944.   <li> <?php bugfix(47675); ?> (fd leak on Solaris).</li>
    2945. 

  2945.   <li> <?php bugfix(64577); ?> (fd leak on Solaris).</li>
    2946. 

  2946. </ul></li>
    2947. 

  2947. <li>Fileinfo:
    2948. 

  2948. <ul>
    2949. 

  2949.   <li> Upgraded libmagic to 5.14. </li>
    2950. 

  2950. </ul></li>
    2951. 

  2951. <li>Streams:
    2952. 

  2952. <ul>
    2953. 

  2953.   <li> Fixed Windows x64 version of stream_socket_pair() and improved error handling.</li>
    2954. 

  2954. </ul></li>
    2955. 

  2955. <li>Zip:
    2956. 

  2956. <ul>
    2957. 

  2957.   <li> <?php bugfix(64342); ?> (ZipArchive::addFile() has to check for file existence).</li>
    2958. 

  2958. </ul></li>
    2959. 

  2959. </ul>
    2960. 

  2960. <!-- }}} --></section>
    2961. 

  2961. 

  2962. 

  2963. <section class="version" id="5.3.25"><!-- {{{ 5.3.25 -->
    2964. 

  2964. <h3>Version 5.3.25</h3>
    2965. 

  2965. <?php release_date('09-May-2013'); ?>
    2966. 

  2966. <ul>
    2967. 

  2967. <li>Core:
    2968. 

  2968. <ul>
    2969. 

  2969.   <li> <?php bugfix(64578); ?> (debug_backtrace in set_error_handler corrupts zend heap: segfault). </li>
    2970. 

  2970.   <li> <?php bugfix(64458); ?> (dns_get_record result with string of length -1). </li>
    2971. 

  2971.   <li> <?php bugfix(47675); ?> (fd leak on Solaris).</li>
    2972. 

  2972.   <li> <?php bugfix(64577); ?> (fd leak on Solaris).</li>
    2973. 

  2973. </ul></li>
    2974. 

  2974. <li>Streams:
    2975. 

  2975. <ul>
    2976. 

  2976.   <li> Fixed Windows x64 version of stream_socket_pair() and improved error handling.</li>
    2977. 

  2977. </ul></li>
    2978. 

  2978. <li>Zip:
    2979. 

  2979. <ul>
    2980. 

  2980.   <li> <?php bugfix(64342); ?> (ZipArchive::addFile() has to check for file existence).</li>
    2981. 

  2981. </ul></li>
    2982. 

  2982. </ul>
    2983. 

  2983. <!-- }}} --></section>
    2984. 

  2984. 

  2985. 

  2986. <section class="version" id="5.4.14"><!-- {{{ 5.4.14 -->
    2987. 

  2987. <h3>Version 5.4.14</h3>
    2988. 

  2988. <?php echo release_date('11-April-2013'); ?>
    2989. 

  2989. <ul>
    2990. 

  2990. <li>Core:
    2991. 

  2991. <ul>
    2992. 

  2992.  <li><?php bugfix(64529); ?> (Ran out of opcode space).</li>
    2993. 

  2993.  <li><?php bugfix(64515); ?> (Memoryleak when using the same variablename two times in function declaration).</li>
    2994. 

  2994.  <li><?php bugfix(64432); ?> (more empty delimiter warning in strX methods).</li>
    2995. 

  2995.  <li><?php bugfix(64417); ?> (ArrayAccess::&amp;offsetGet() in a trait causes fatal error).</li>
    2996. 

  2996.  <li><?php bugfix(64370); ?> (microtime(true) less than $_SERVER['REQUEST_TIME_FLOAT']).</li>
    2997. 

  2997.  <li><?php bugfix(64239); ?> (Debug backtrace changed behavior since 5.4.10 or 5.4.11).</li>
    2998. 

  2998.  <li><?php bugfix(63976); ?> (Parent class incorrectly using child constant in class property).</li>
    2999. 

  2999.  <li><?php bugfix(63914); ?> (zend_do_fcall_common_helper_SPEC does not handle exceptions properly).</li>
    3000. 

  3000.  <li><?php bugfix(62343); ?> (Show class_alias In get_declared_classes()).</li>
    3001. 

  3001. </ul></li>
    3002. 

  3002. 

  3003. <li>PCRE:
    3004. 

  3004. <ul>
    3005. 

  3005.  <li>Merged PCRE 8.32.</li>
    3006. 

  3006. </ul></li>
    3007. 

  3007. 

  3008. <li>SNMP:
    3009. 

  3009. <ul>
    3010. 

  3010.  <li><?php bugfix(61981); ?> (OO API, walk: $suffix_as_key is not working correctly).</li>
    3011. 

  3011. </ul></li>
    3012. 

  3012. 

  3013. <li>Zip:
    3014. 

  3014. <ul>
    3015. 

  3015.  <li><?php bugfix(64452); ?> (Zip crash intermittently). (Anatol)</li>
    3016. 

  3016. </ul></li>
    3017. 

  3017. </ul>
    3018. 

  3018. <!-- }}} --></section>
    3019. 

  3019. 

  3020. <section class="version" id="5.3.24"><!-- {{{ 5.3.24 -->
    3021. 

  3021. <h3>Version 5.3.24</h3>
    3022. 

  3022. <?php release_date('11-Apr-2013'); ?>
    3023. 

  3023. <ul>
    3024. 

  3024. <li>Core:
    3025. 

  3025. <ul>
    3026. 

  3026.  <li><?php bugfix(64370); ?> (microtime(true) less than $_SERVER['REQUEST_TIME_FLOAT']).</li>
    3027. 

  3027.  <li><?php bugfix(63914); ?> (zend_do_fcall_common_helper_SPEC does not handle exceptions properly).</li>
    3028. 

  3028.  <li><?php bugfix(62343); ?> (Show class_alias In get_declared_classes()).</li>
    3029. 

  3029. </ul></li>
    3030. 

  3030. 

  3031. <li>PCRE:
    3032. 

  3032. <ul>
    3033. 

  3033.  <li>Merged PCRE 8.32.</li>
    3034. 

  3034. </ul></li>
    3035. 

  3035. 

  3036. <li>mysqlnd:
    3037. 

  3037. <ul>
    3038. 

  3038.  <li><?php bugfix(63530); ?> (mysqlnd_stmt::bind_one_parameter crashes, uses wrong alloc for stmt->param_bind).</li>
    3039. 

  3039. </ul></li>
    3040. 

  3040. 

  3041. <li>DateTime:
    3042. 

  3042. <ul>
    3043. 

  3043.  <li><?php bugfix(62852); ?> (Unserialize Invalid Date causes crash).</li>
    3044. 

  3044. </ul></li>
    3045. 

  3045. 

  3046. <li>Zip:
    3047. 

  3047. <ul>
    3048. 

  3048.  <li><?php bugfix(64452); ?> (Zip crash intermittently).</li>
    3049. 

  3049. </ul></li>
    3050. 

  3050. </ul>
    3051. 

  3051. <!-- }}} --></section>
    3052. 

  3052. 

  3053. <section class="version" id="5.4.13"><!-- {{{ 5.4.13 -->
    3054. 

  3054. <h3>Version 5.4.13</h3>
    3055. 

  3055. <?php echo release_date('14-March-2013'); ?>
    3056. 

  3056. <ul>
    3057. 

  3057. <li>Core:
    3058. 

  3058. <ul>
    3059. 

  3059.  <li><?php bugfix(64235); ?> (Insteadof not work for class method in 5.4.11).</li>
    3060. 

  3060.  <li>Implemented FR <?php bugl(64175); ?> (Added HTTP codes as of RFC 6585).</li>
    3061. 

  3061.  <li><?php bugfix(64142); ?> (dval to lval different behavior on ppc64). </li>
    3062. 

  3062.  <li><?php bugfix(64070); ?> (Inheritance with Traits failed with error).</li>
    3063. 

  3063. </ul></li>
    3064. 

  3064. <li>CLI server:
    3065. 

  3065. <ul>
    3066. 

  3066.  <li><?php bugfix(64128); ?> (buit-in web server is broken on ppc64).</li>
    3067. 

  3067. </ul></li>
    3068. 

  3068. <li>Mbstring:
    3069. 

  3069. <ul>
    3070. 

  3070.  <li>mb_split() can now handle empty matches like preg_split() does.</li>
    3071. 

  3071. </ul></li>
    3072. 

  3072. <li>OpenSSL:
    3073. 

  3073. <ul>
    3074. 

  3074.  <li><?php bugfix(61930); ?> (openssl corrupts ssl key resource when using
    3075. 

  3075.     openssl_get_publickey()). </li>
    3076. 

  3076. </ul></li>
    3077. 

  3077. <li>PDO_mysql:
    3078. 

  3078. <ul>
    3079. 

  3079.  <li><?php bugfix(60840); ?> (undefined symbol: mysqlnd_debug_std_no_trace_funcs).</li>
    3080. 

  3080. </ul></li>
    3081. 

  3081. <li>Phar:
    3082. 

  3082. <ul>
    3083. 

  3083.  <li>Fixed timestamp update on Phar contents modification.</li>
    3084. 

  3084. </ul></li>
    3085. 

  3085. <li>SOAP:
    3086. 

  3086. <ul>
    3087. 

  3087.  <li>Added check that soap.wsdl_cache_dir conforms to open_basedir
    3088. 

  3088.     (CVE-2013-1635). </li>
    3089. 

  3089.  <li>Disabled external entities loading (CVE-2013-1643, CVE-2013-1824).</li>
    3090. 

  3090. </ul></li>
    3091. 

  3091. <li>SPL:
    3092. 

  3092. <ul>
    3093. 

  3093.  <li><?php bugfix(64264); ?> (SPLFixedArray toArray problem). </li>
    3094. 

  3094.  <li><?php bugfix(64228); ?> (RecursiveDirectoryIterator always assumes SKIP_DOTS).</li>
    3095. 

  3095.  <li><?php bugfix(64106); ?> (Segfault on SplFixedArray[][x] = y when extended). </li>
    3096. 

  3096.  <li><?php bugfix(52861); ?> (unset fails with ArrayObject and deep arrays).</li>
    3097. 

  3097. </ul></li>
    3098. 

  3098. <li>SNMP:
    3099. 

  3099. <ul>
    3100. 

  3100.  <li><?php bugfix(64124); ?> (IPv6 malformed).</li>
    3101. 

  3101. </ul></li>
    3102. 

  3102. </ul>
    3103. 

  3103. <!-- }}} --></section>
    3104. 

  3104. 

  3105. <section class="version" id="5.3.23"><!-- {{{ 5.3.23 -->
    3106. 

  3106. <h3>Version 5.3.23</h3>
    3107. 

  3107. <?php echo release_date('14-March-2013'); ?>
    3108. 

  3108. <ul>
    3109. 

  3109. <li>Phar:
    3110. 

  3110. <ul>
    3111. 

  3111.  <li>Fixed timestamp update on Phar contents modification.</li>
    3112. 

  3112. </ul></li>
    3113. 

  3113. <li>SOAP
    3114. 

  3114. <ul>
    3115. 

  3115.  <li>Added check that soap.wsdl_cache_dir conforms to open_basedir
    3116. 

  3116.     (CVE-2013-1635). </li>
    3117. 

  3117.  <li>Disabled external entities loading (CVE-2013-1643, CVE-2013-1824).</li>
    3118. 

  3118. </ul></li>
    3119. 

  3119. <li>SPL:
    3120. 

  3120. <ul>
    3121. 

  3121.  <li><?php bugfix(64264); ?> (SPLFixedArray toArray problem). </li>
    3122. 

  3122.  <li><?php bugfix(64228); ?> (RecursiveDirectoryIterator always assumes SKIP_DOTS).</li>
    3123. 

  3123.  <li><?php bugfix(64106); ?> (Segfault on SplFixedArray[][x] = y when extended). </li>
    3124. 

  3124.  <li><?php bugfix(52861); ?> (unset fails with ArrayObject and deep arrays).</li>
    3125. 

  3125. </ul></li>
    3126. 

  3126. </ul>
    3127. 

  3127. <!-- }}} --></section>
    3128. 

  3128. 

  3129. <section class="version" id="5.4.12"><!-- {{{ 5.4.12 -->
    3130. 

  3130. <h3>Version 5.4.12</h3>
    3131. 

  3131. <?php echo release_date('21-February-2013'); ?>
    3132. 

  3132. <ul>
    3133. 

  3133. <li>Core:
    3134. 

  3134. <ul>
    3135. 

  3135.   <li><?php bugfix(64099); ?> (Wrong TSRM usage in zend_register_class alias).</li>
    3136. 

  3136.   <li><?php bugfix(64011); ?> (get_html_translation_table() output incomplete with HTML_ENTITIES and ISO-8859-1).</li>
    3137. 

  3137.   <li><?php bugfix(63982); ?> (isset() inconsistently produces a fatal error on protected property).</li>
    3138. 

  3138.   <li><?php bugfix(63943); ?> (Bad warning text from strpos() on empty needle).</li>
    3139. 

  3139.   <li><?php bugfix(63899); ?> (Use after scope error in zend_compile).</li>
    3140. 

  3140.   <li><?php bugfix(63893); ?> (Poor efficiency of strtr() using array with keys of very different length).</li>
    3141. 

  3141.   <li><?php bugfix(63882); ?> (zend_std_compare_objects crash on recursion).</li>
    3142. 

  3142.   <li><?php bugfix(63462); ?> (Magic methods called twice for unset protected properties).</li>
    3143. 

  3143.   <li><?php bugfix(62524); ?> (fopen follows redirects for non-3xx statuses).</li>
    3144. 

  3144.   <li>Support BITMAPV5HEADER in getimagesize().</li>
    3145. 

  3145. </ul></li>
    3146. 

  3146. </ul>
    3147. 

  3147. 

  3148. <ul>
    3149. 

  3149. <li>Date:
    3150. 

  3150. <ul>
    3151. 

  3151.   <li><?php bugfix(63699); ?> (Performance improvements for various ext/date functions).</li>
    3152. 

  3152.   <li><?php bugfix(55397); ?> Comparsion of incomplete DateTime causes SIGSEGV.</li>
    3153. 

  3153. </ul></li>
    3154. 

  3154. </ul>
    3155. 

  3155. 

  3156. <ul>
    3157. 

  3157. <li>FPM:
    3158. 

  3158. <ul>
    3159. 

  3159.   <li><?php bugfix(63999); ?> (php with fpm fails to build on Solaris 10 or 11).</li>
    3160. 

  3160. </ul></li>
    3161. 

  3161. </ul>
    3162. 

  3162. 

  3163. <ul>
    3164. 

  3164. <li>Litespeed:
    3165. 

  3165. <ul>
    3166. 

  3166.   <li><?php bugfix(63228); ?> (-Werror=format-security error in lsapi code).</li>
    3167. 

  3167. </ul></li>
    3168. 

  3168. </ul>
    3169. 

  3169. 

  3170. <ul>
    3171. 

  3171. <li>sqlite3:
    3172. 

  3172. <ul>
    3173. 

  3173.   <li><?php bugfix(63921); ?> (sqlite3::bindvalue and relative PHP functions aren't using sqlite3_*_int64 API).</li>
    3174. 

  3174. </ul></li>
    3175. 

  3175. </ul>
    3176. 

  3176. 

  3177. <ul>
    3178. 

  3178. <li>PDO_OCI:
    3179. 

  3179. <ul>
    3180. 

  3180.   <li><?php bugfix(57702); ?> (Multi-row BLOB fetches).</li>
    3181. 

  3181.   <li><?php bugfix(52958); ?> (Segfault in PDO_OCI on cleanup after running a long testsuite).</li>
    3182. 

  3182. </ul></li>
    3183. 

  3183. </ul>
    3184. 

  3184. 

  3185. <ul>
    3186. 

  3186. <li>PDO_sqlite:
    3187. 

  3187. <ul>
    3188. 

  3188.   <li><?php bugfix(63916); ?> (PDO::PARAM_INT casts to 32bit int internally even on 64bit builds in pdo_sqlite).</li>
    3189. 

  3189. </ul></li>
    3190. 

  3190. </ul>
    3191. 

  3191. <!-- }}} --></section>
    3192. 

  3192. 

  3193. <section class="version" id="5.3.22"><!-- {{{ 5.3.22 -->
    3194. 

  3194. <h3>Version 5.3.22</h3>
    3195. 

  3195. <?php echo release_date('21-February-2013'); ?>
    3196. 

  3196. <ul>
    3197. 

  3197. <li>Zend Engine:
    3198. 

  3198. <ul>
    3199. 

  3199.   <li><?php bugfix(64099); ?> (Wrong TSRM usage in zend_Register_class alias).</li>
    3200. 

  3200.   <li><?php bugfix(63899); ?> (Use after scope error in zend_compile).</li>
    3201. 

  3201. </ul></li>
    3202. 

  3202. </ul>
    3203. 

  3203. 

  3204. <ul>
    3205. 

  3205. <li>Core:
    3206. 

  3206. <ul>
    3207. 

  3207.   <li><?php bugfix(63943); ?> (Bad warning text from strpos() on empty needle).</li>
    3208. 

  3208. </ul></li>
    3209. 

  3209. </ul>
    3210. 

  3210. 

  3211. <ul>
    3212. 

  3212. <li>Date:
    3213. 

  3213. <ul>
    3214. 

  3214.   <li><?php bugfix(55397); ?> (comparsion of incomplete DateTime causes SIGSEGV).</li>
    3215. 

  3215. </ul></li>
    3216. 

  3216. </ul>
    3217. 

  3217. 

  3218. <ul>
    3219. 

  3219. <li>FPM:
    3220. 

  3220. <ul>
    3221. 

  3221.   <li><?php bugfix(63999); ?> (php with fpm fails to build on Solaris 10 or 11).</li>
    3222. 

  3222. </ul></li>
    3223. 

  3223. </ul>
    3224. 

  3224. 

  3225. <ul>
    3226. 

  3226. <li>SPL:
    3227. 

  3227. <ul>
    3228. 

  3228.   <li><?php bugfix(64106); ?> (Segfault on SplFixedArray[][x] = y when extended). </li>
    3229. 

  3229. </ul></li>
    3230. 

  3230. </ul>
    3231. 

  3231. <!-- }}} --></section>
    3232. 

  3232. 

  3233. <section class="version" id="5.4.11"><!-- {{{ 5.4.11 -->
    3234. 

  3234. <h3>Version 5.4.11</h3>
    3235. 

  3235. <?php echo release_date('17-January-2013'); ?>
    3236. 

  3236. <ul>
    3237. 

  3237. <li>Core:
    3238. 

  3238. <ul>
    3239. 

  3239.   <li><?php bugfix(63762); ?> (Sigsegv when Exception::$trace is changed by user).</li>
    3240. 

  3240.   <li><?php bugfix(43177); ?> (Errors in eval()'ed code produce status code 500).</li>
    3241. 

  3241. </ul></li>
    3242. 

  3242. </ul>
    3243. 

  3243.  
    3244. 

  3244. <ul>
    3245. 

  3245. <li>Filter:
    3246. 

  3246. <ul>
    3247. 

  3247.   <li><?php bugfix(63757); ?> (getenv() produces memory leak with CGI SAPI).</li>
    3248. 

  3248.   <li><?php bugfix(54096); ?> (FILTER_VALIDATE_INT does not accept +0 and -0).</li>
    3249. 

  3249. </ul></li>
    3250. 

  3250. </ul>
    3251. 

  3251.  
    3252. 

  3252. <ul>
    3253. 

  3253. <li>JSON:
    3254. 

  3254. <ul>
    3255. 

  3255.   <li><?php bugfix(63737); ?> (json_decode does not properly decode with options parameter).</li>
    3256. 

  3256. </ul></li>
    3257. 

  3257. </ul>
    3258. 

  3258.  
    3259. 

  3259. <ul>
    3260. 

  3260. <li>CLI server:
    3261. 

  3261. <ul>
    3262. 

  3262.   <li>Update list of common mime types. Added webm, ogv, ogg.</li>
    3263. 

  3263. </ul></li>
    3264. 

  3264. </ul>
    3265. 

  3265.  
    3266. 

  3266. <ul>
    3267. 

  3267. <li>cURL extension:
    3268. 

  3268. <ul>
    3269. 

  3269.   <li>Fixed bug (segfault due to libcurl connection caching).</li>
    3270. 

  3270.   <li><?php bugfix(63859); ?> (Memory leak when reusing curl-handle).</li>
    3271. 

  3271.   <li><?php bugfix(63795); ?> (CURL &gt;= 7.28.0 no longer support value 1 for CURLOPT_SSL_VERIFYHOST).</li>
    3272. 

  3272.   <li><?php bugfix(63352); ?> (Can't enable hostname validation when using curl stream wrappers).</li>
    3273. 

  3273.   <li><?php bugfix(55438); ?> (Curlwapper is not sending http header randomly).</li>
    3274. 

  3274. </ul></li>
    3275. 

  3275. </ul>
    3276. 

  3276. <!-- }}} --></section>
    3277. 

  3277. 

  3278. <section class="version" id="5.3.21"><!-- {{{ 5.3.21 -->
    3279. 

  3279. <h3>Version 5.3.21</h3>
    3280. 

  3280. <?php echo release_date('17-January-2013'); ?>
    3281. 

  3281. <ul>
    3282. 

  3282. <li>Zend Engine:
    3283. 

  3283. <ul>
    3284. 

  3284.   <li><?php bugfix(63762); ?> (Sigsegv when Exception::$trace is changed by user).</li>
    3285. 

  3285. </ul></li>
    3286. 

  3286. </ul>
    3287. 

  3287.  
    3288. 

  3288. <ul>
    3289. 

  3289. <li>cURL extension:
    3290. 

  3290. <ul>
    3291. 

  3291.   <li>Fixed bug (segfault due to libcurl connection caching).</li>
    3292. 

  3292.   <li><?php bugfix(63795); ?> (CURL &gt;= 7.28.0 no longer support value 1 for CURLOPT_SSL_VERIFYHOST).</li>
    3293. 

  3293.   <li><?php bugfix(63352); ?> (Can't enable hostname validation when using curl stream wrappers).</li>
    3294. 

  3294.   <li><?php bugfix(55438); ?> (Curlwapper is not sending http header randomly).</li>
    3295. 

  3295. </ul></li>
    3296. 

  3296. </ul>
    3297. 

  3297. <!-- }}} --></section>
    3298. 

  3298. 

  3299. 

  3300. 

  3301. <section class="version" id="5.4.10"><!-- {{{ 5.4.10 -->
    3302. 

  3302. <h3>Version 5.4.10</h3>
    3303. 

  3303. <?php echo release_date('20-December-2012'); ?>
    3304. 

  3304. <ul>
    3305. 

  3305. <li>Core:
    3306. 

  3306. <ul>
    3307. 

  3307.   <li><?php bugfix(63635); ?> (Segfault in gc_collect_cycles).</li>
    3308. 

  3308.   <li><?php bugfix(63512); ?> (parse_ini_file() with INI_SCANNER_RAW removes quotes from value).</li>
    3309. 

  3309.   <li><?php bugfix(63468); ?> (wrong called method as callback with inheritance).</li>
    3310. 

  3310.   <li><?php bugfix(63451); ?> (config.guess file does not have AIX 7 defined, shared objects are not created).</li>
    3311. 

  3311.   <li><?php bugfix(61557); ?> (Crasher in tt-rss backend.php).</li>
    3312. 

  3312.   <li><?php bugfix(61272); ?> (ob_start callback gets passed empty string).</li>
    3313. 

  3313. </ul></li>
    3314. 

  3314. </ul>
    3315. 

  3315.  
    3316. 

  3316. <ul>
    3317. 

  3317. <li>Date:
    3318. 

  3318. <ul>
    3319. 

  3319.   <li><?php bugfix(63666); ?> (Poor date() performance).</li>
    3320. 

  3320.   <li><?php bugfix(63435); ?> (Datetime::format('u') sometimes wrong by 1 microsecond).</li>
    3321. 

  3321. </ul></li>
    3322. 

  3322. </ul>
    3323. 

  3323. 

  3324. <ul>
    3325. 

  3325. <li>Imap:
    3326. 

  3326. <ul>
    3327. 

  3327.   <li><?php bugfix(63126); ?> (DISABLE_AUTHENTICATOR ignores array).</li>
    3328. 

  3328. </ul></li>
    3329. 

  3329. </ul>
    3330. 

  3330. 

  3331. <ul>
    3332. 

  3332. <li>Json:
    3333. 

  3333. <ul>
    3334. 

  3334.   <li><?php bugfix(63588); ?> (use php_next_utf8_char and remove duplicate implementation).</li>
    3335. 

  3335. </ul></li>
    3336. 

  3336. </ul>
    3337. 

  3337. 

  3338. <ul>
    3339. 

  3339. <li>MySQLi:
    3340. 

  3340. <ul>
    3341. 

  3341.   <li><?php bugfix(63361); ?> (missing header).</li>
    3342. 

  3342. </ul></li>
    3343. 

  3343. </ul>
    3344. 

  3344. 

  3345. <ul>
    3346. 

  3346. <li>MySQLnd:
    3347. 

  3347. <ul>
    3348. 

  3348.   <li><?php bugfix(63398); ?> (Segfault when polling closed link).</li>
    3349. 

  3349. </ul></li>
    3350. 

  3350. </ul>
    3351. 

  3351. 

  3352. <ul>
    3353. 

  3353. <li>Fileinfo:
    3354. 

  3354. <ul>
    3355. 

  3355.   <li><?php bugfix(63590); ?> (Different results in TS and NTS under Windows).</li>
    3356. 

  3356. </ul></li>
    3357. 

  3357. </ul>
    3358. 

  3358. 

  3359. <ul>
    3360. 

  3360. <li>FPM:
    3361. 

  3361. <ul>
    3362. 

  3362.   <li><?php bugfix(63581); ?> Possible null dereference and buffer overflow.</li>
    3363. 

  3363. </ul></li>
    3364. 

  3364. </ul>
    3365. 

  3365. 

  3366. <ul>
    3367. 

  3367. <li>Pdo_sqlite:
    3368. 

  3368. <ul>
    3369. 

  3369.   <li><?php bugfix(63149); ?> getColumnMeta should return the table name when system SQLite used.</li>
    3370. 

  3370. </ul></li>
    3371. 

  3371. </ul>
    3372. 

  3372. 

  3373. <ul>
    3374. 

  3374. <li>Apache2 Handler SAPI:
    3375. 

  3375. <ul>
    3376. 

  3376.   <li>Enabled Apache 2.4 configure option for Windows.</li>
    3377. 

  3377. </ul></li>
    3378. 

  3378. </ul>
    3379. 

  3379. 

  3380. <ul>
    3381. 

  3381. <li>Reflection:
    3382. 

  3382. <ul>
    3383. 

  3383.   <li><?php bugfix(63614); ?> (Fatal error on Reflection).</li>
    3384. 

  3384. </ul></li>
    3385. 

  3385. </ul>
    3386. 

  3386. 

  3387. <ul>
    3388. 

  3388. <li>SOAP:
    3389. 

  3389. <ul>
    3390. 

  3390.   <li><?php bugfix(63271); ?> (SOAP wsdl cache is not enabled after initial requests).</li>
    3391. 

  3391. </ul></li>
    3392. 

  3392. </ul>
    3393. 

  3393. 

  3394. <ul>
    3395. 

  3395. <li>Sockets:
    3396. 

  3396. <ul>
    3397. 

  3397.   <li><?php bugfix(49341); ?> (Add SO_REUSEPORT support for socket_set_option()).</li>
    3398. 

  3398. </ul></li>
    3399. 

  3399. </ul>
    3400. 

  3400. <!-- }}} --></section>
    3401. 

  3401. 

  3402. <section class="version" id="5.3.20"><!-- {{{ 5.3.20 -->
    3403. 

  3403. <h3>Version 5.3.20</h3>
    3404. 

  3404. <?php echo release_date('20-December-2012'); ?>
    3405. 

  3405. <ul>
    3406. 

  3406. <li>Zend Engine:
    3407. 

  3407. <ul>
    3408. 

  3408.   <li><?php bugfix(63635); ?> (Segfault in gc_collect_cycles).</li>
    3409. 

  3409.   <li><?php bugfix(63512); ?> (parse_ini_file() with INI_SCANNER_RAW removes quotes from value).</li>
    3410. 

  3410.   <li><?php bugfix(63468); ?> (wrong called method as callback with inheritance).</li>
    3411. 

  3411. </ul></li>
    3412. 

  3412. </ul>
    3413. 

  3413. 

  3414. <ul>
    3415. 

  3415. <li>Core:
    3416. 

  3416. <ul>
    3417. 

  3417.   <li><?php bugfix(63451); ?> (config.guess file does not have AIX 7 defined, shared objects are not created).</li>
    3418. 

  3418.   <li><?php bugfix(63377); ?> (Segfault on output buffer).</li>
    3419. 

  3419. </ul></li>
    3420. 

  3420. </ul>
    3421. 

  3421. 

  3422. <ul>
    3423. 

  3423. <li>Apache2 Handler SAPI:
    3424. 

  3424. <ul>
    3425. 

  3425.   <li>Enabled Apache 2.4 configure option for Windows.</li>
    3426. 

  3426. </ul></li>
    3427. 

  3427. </ul>
    3428. 

  3428. 

  3429. <ul>
    3430. 

  3430. <li>Date:
    3431. 

  3431. <ul>
    3432. 

  3432.   <li><?php bugfix(63435); ?> (Datetime::format('u') sometimes wrong by 1 microsecond).</li>
    3433. 

  3433. </ul></li>
    3434. 

  3434. </ul>
    3435. 

  3435. 

  3436. <ul>
    3437. 

  3437. <li>Fileinfo:
    3438. 

  3438. <ul>
    3439. 

  3439.   <li><?php bugfix(63248); ?> (Load multiple magic files from a directory under Windows).</li>
    3440. 

  3440.   <li><?php bugfix(63590); ?> (Different results in TS and NTS under Windows).</li>
    3441. 

  3441. </ul></li>
    3442. 

  3442. </ul>
    3443. 

  3443. 

  3444. <ul>
    3445. 

  3445. <li>FPM:
    3446. 

  3446. <ul>
    3447. 

  3447.   <li><?php bugfix(63581); ?> (Possible null dereference and buffer overflow).</li>
    3448. 

  3448. </ul></li>
    3449. 

  3449. </ul>
    3450. 

  3450. 

  3451. <ul>
    3452. 

  3452. <li>Imap:
    3453. 

  3453. <ul>
    3454. 

  3454.   <li><?php bugfix(63126); ?> (DISABLE_AUTHENTICATOR ignores array).</li>
    3455. 

  3455. </ul></li>
    3456. 

  3456. </ul>
    3457. 

  3457. 

  3458. <ul>
    3459. 

  3459. <li>MySQLnd:
    3460. 

  3460. <ul>
    3461. 

  3461.   <li><?php bugfix(63398); ?> (Segfault when polling closed link).</li>
    3462. 

  3462. </ul></li>
    3463. 

  3463. </ul>
    3464. 

  3464. 

  3465. <ul>
    3466. 

  3466. <li>Reflection:
    3467. 

  3467. <ul>
    3468. 

  3468.   <li><?php bugfix(63614); ?> (Fatal error on Reflection).</li>
    3469. 

  3469. </ul></li>
    3470. 

  3470. </ul>
    3471. 

  3471. 

  3472. <ul>
    3473. 

  3473. <li>SOAP:
    3474. 

  3474. <ul>
    3475. 

  3475.   <li><?php bugfix(63271); ?> (SOAP wsdl cache is not enabled after initial requests).</li>
    3476. 

  3476. </ul></li>
    3477. 

  3477. </ul>
    3478. 

  3478. 

  3479. <!-- }}} --></section>
    3480. 

  3480. 

  3481. 

  3482. <section class="version" id="5.4.9"><!-- {{{ 5.4.9 -->
    3483. 

  3483. <h3>Version 5.4.9</h3>
    3484. 

  3484. <?php echo release_date('22-November-2012'); ?>
    3485. 

  3485. <ul>
    3486. 

  3486. <li>Core:
    3487. 

  3487. <ul>
    3488. 

  3488.   <li><?php bugfix(63305); ?> (zend_mm_heap corrupted with traits).</li>
    3489. 

  3489.   <li><?php bugfix(63369); ?> ((un)serialize() leaves dangling pointers, causes crashes).</li>
    3490. 

  3490.   <li><?php bugfix(63241); ?> (PHP fails to open Windows deduplicated files).</li>
    3491. 

  3491.   <li><?php bugfix(62444); ?> (Handle leak in is_readable on windows). </li>
    3492. 

  3492. </ul></li>
    3493. 

  3493. </ul>
    3494. 

  3494. 

  3495. <ul>
    3496. 

  3496. <li>Curl:
    3497. 

  3497. <ul>
    3498. 

  3498.   <li><?php bugfix(63363); ?> (Curl silently accepts boolean true for SSL_VERIFYHOST).</li>
    3499. 

  3499. </ul></li>
    3500. 

  3500. </ul>
    3501. 

  3501. 

  3502. <ul>
    3503. 

  3503. <li>Fileinfo:
    3504. 

  3504. <ul>
    3505. 

  3505.   <li><?php bugfix(63248); ?> (Load multiple magic files from a directory under Windows).</li>
    3506. 

  3506. </ul></li>
    3507. 

  3507. </ul>
    3508. 

  3508. 

  3509. <ul>
    3510. 

  3510. <li>Libxml
    3511. 

  3511. <ul>
    3512. 

  3512.   <li><?php bugfix(63389); ?> (Missing context check on libxml_set_streams_context()
    3513. 

  3513.     causes memleak).</li>
    3514. 

  3514. </ul></li>
    3515. 

  3515. </ul>
    3516. 

  3516. 

  3517. <ul>
    3518. 

  3518. <li>Mbstring:
    3519. 

  3519. <ul>
    3520. 

  3520.   <li><?php bugfix(63447); ?> (max_input_vars doesn't filter variables when
    3521. 

  3521.     mbstring.encoding_translation = On).</li>
    3522. 

  3522. </ul></li>
    3523. 

  3523. </ul>
    3524. 

  3524. 

  3525. <ul>
    3526. 

  3526. <li>OCI8:
    3527. 

  3527. <ul>
    3528. 

  3528.   <li><?php bugfix(63265); ?> (Add ORA-00028 to the PHP_OCI_HANDLE_ERROR macro)</li>
    3529. 

  3529. </ul></li>
    3530. 

  3530. </ul>
    3531. 

  3531. 

  3532. <ul>
    3533. 

  3533. <li>PCRE:
    3534. 

  3534. <ul>
    3535. 

  3535.   <li><?php bugfix(63180); ?> (Corruption of hash tables).</li>
    3536. 

  3536.   <li><?php bugfix(63055); ?> (Segfault in zend_gc with SF2 testsuite).</li>
    3537. 

  3537.   <li><?php bugfix(63284); ?> (Upgrade PCRE to 8.31).</li>
    3538. 

  3538. </ul></li>
    3539. 

  3539. </ul>
    3540. 

  3540. 

  3541. <ul>
    3542. 

  3542. <li>PDO:
    3543. 

  3543. <ul>
    3544. 

  3544.   <li><?php bugfix(63235); ?> (buffer overflow in use of SQLGetDiagRec).</li>
    3545. 

  3545. </ul></li>
    3546. 

  3546. </ul>
    3547. 

  3547. 

  3548. <ul>
    3549. 

  3549. <li>PDO_pgsql:
    3550. 

  3550. <ul>
    3551. 

  3551.   <li><?php bugfix(62593); ?> (Emulate prepares behave strangely with PARAM_BOOL).</li>
    3552. 

  3552. </ul></li>
    3553. 

  3553. </ul>
    3554. 

  3554. 

  3555. <ul>
    3556. 

  3556. <li>Phar:
    3557. 

  3557. <ul>
    3558. 

  3558.   <li><?php bugfix(63297); ?> (Phar fails to write an openssl based signature).</li>
    3559. 

  3559. </ul></li>
    3560. 

  3560. </ul>
    3561. 

  3561. 

  3562. <ul>
    3563. 

  3563. <li>Streams:
    3564. 

  3564. <ul>
    3565. 

  3565.   <li><?php bugfix(63240); ?> (stream_get_line() return contains delimiter string).</li>
    3566. 

  3566. </ul></li>
    3567. 

  3567. </ul>
    3568. 

  3568. 

  3569. <ul>
    3570. 

  3570. <li>Reflection:
    3571. 

  3571. <ul>
    3572. 

  3572.   <li><?php bugfix(63399); ?>  (ReflectionClass::getTraitAliases() incorrectly resolves traitnames).</li>
    3573. 

  3573. </ul></li>
    3574. 

  3574. </ul>
    3575. 

  3575. <!-- }}} --></section>
    3576. 

  3576. 

  3577. <section class="version" id="5.3.19"><!-- {{{ 5.3.19 -->
    3578. 

  3578. <h3>Version 5.3.19</h3>
    3579. 

  3579. <?php echo release_date('22-November-2012'); ?>
    3580. 

  3580. <ul>
    3581. 

  3581. <li>Core:
    3582. 

  3582. <ul>
    3583. 

  3583.   <li><?php bugfix(63241); ?> (PHP fails to open Windows deduplicated files).</li>
    3584. 

  3584.   <li><?php bugfix(62444); ?> (Handle leak in is_readable on windows).</li>
    3585. 

  3585. </ul></li>
    3586. 

  3586. </ul>
    3587. 

  3587. 

  3588. <ul>
    3589. 

  3589. <li>Libxml:
    3590. 

  3590. <ul>
    3591. 

  3591.   <li><?php bugfix(63389); ?> (Missing context check on libxml_set_streams_context() causes memleak).</li>
    3592. 

  3592. </ul></li>
    3593. 

  3593. </ul>
    3594. 

  3594. 

  3595. <ul>
    3596. 

  3596. <li>Mbstring:
    3597. 

  3597. <ul>
    3598. 

  3598.   <li><?php bugfix(63447); ?> (max_input_vars doesn't filter variables when
    3599. 

  3599.     mbstring.encoding_translation = On).</li>
    3600. 

  3600. </ul></li>
    3601. 

  3601. </ul>
    3602. 

  3602. 

  3603. <ul>
    3604. 

  3604. <li>MySQL:
    3605. 

  3605. <ul>
    3606. 

  3606.   <li>Fixed compilation failure on mixed 32/64 bit systems.</li>
    3607. 

  3607. </ul></li>
    3608. 

  3608. </ul>
    3609. 

  3609. 

  3610. <ul>
    3611. 

  3611. <li>OCI8:
    3612. 

  3612. <ul>
    3613. 

  3613.   <li><?php bugfix(63265); ?> (Add ORA-00028 to the PHP_OCI_HANDLE_ERROR macro)</li>
    3614. 

  3614. </ul></li>
    3615. 

  3615. </ul>
    3616. 

  3616. 

  3617. <ul>
    3618. 

  3618. <li>PCRE:
    3619. 

  3619. <ul>
    3620. 

  3620.   <li><?php bugfix(63055); ?> (Segfault in zend_gc with SF2 testsuite).</li>
    3621. 

  3621.   <li><?php bugfix(63284); ?> (Upgrade PCRE to 8.31).</li>
    3622. 

  3622. </ul></li>
    3623. 

  3623. </ul>
    3624. 

  3624. 

  3625. <ul>
    3626. 

  3626. <li>PDO:
    3627. 

  3627. <ul>
    3628. 

  3628.   <li><?php bugfix(63235); ?> (buffer overflow in use of SQLGetDiagRec).</li>
    3629. 

  3629. </ul></li>
    3630. 

  3630. </ul>
    3631. 

  3631. 

  3632. <ul>
    3633. 

  3633. <li>PDO_pgsql:
    3634. 

  3634. <ul>
    3635. 

  3635.   <li><?php bugfix(62593); ?> (Emulate prepares behave strangely with PARAM_BOOL).</li>
    3636. 

  3636. </ul></li>
    3637. 

  3637. </ul>
    3638. 

  3638. 

  3639. <ul>
    3640. 

  3640. <li>Phar:
    3641. 

  3641. <ul>
    3642. 

  3642.   <li><?php bugfix(63297); ?> (Phar fails to write an openssl based signature).</li>
    3643. 

  3643. </ul></li>
    3644. 

  3644. </ul>
    3645. 

  3645. 

  3646. <ul>
    3647. 

  3647. <li>Streams:
    3648. 

  3648. <ul>
    3649. 

  3649.   <li><?php bugfix(63240); ?> (stream_get_line() return contains delimiter string).</li>
    3650. 

  3650. </ul></li>
    3651. 

  3651. </ul>
    3652. 

  3652. <!-- }}} --></section>
    3653. 

  3653. 

  3654. <section class="version" id="5.4.8"><!-- {{{ 5.4.8 -->
    3655. 

  3655. <h3>Version 5.4.8</h3>
    3656. 

  3656. <?php echo release_date('18-October-2012'); ?>
    3657. 

  3657. <ul>
    3658. 

  3658. <li>CLI server
    3659. 

  3659. <ul>
    3660. 

  3660.   <li>Changed response to unknown HTTP method to 501 according to RFC.</li>
    3661. 

  3661.   <li>Support HTTP PATCH method.</li>
    3662. 

  3662. </ul></li>
    3663. 

  3663. </ul>
    3664. 

  3664. 

  3665. <ul>
    3666. 

  3666. <li>Core
    3667. 

  3667. <ul>
    3668. 

  3668.   <li>Added optional second argument for assert() to specify custom message.</li>
    3669. 

  3669.   <li>Support building PHP with the native client toolchain.</li>
    3670. 

  3670.   <li>Added --offline option for tests.</li>
    3671. 

  3671.   <li><?php bugfix(63162); ?> (parse_url does not match password component).</li>
    3672. 

  3672.   <li><?php bugfix(63111); ?> (is_callable() lies for abstract static method).</li>
    3673. 

  3673.   <li><?php bugfix(63093); ?> (Segfault while load extension failed in zts-build).</li>
    3674. 

  3674.   <li><?php bugfix(62976); ?> (Notice: could not be converted to int when comparing some builtin classes).</li>
    3675. 

  3675.   <li><?php bugfix(62955); ?> (Only one directive is loaded from "Per Directory Values" Windows registry).</li>
    3676. 

  3676.   <li><?php bugfix(62907); ?> (Double free when use traits).</li>
    3677. 

  3677.   <li><?php bugfix(61767); ?> (Shutdown functions not called in certain error situation).</li>
    3678. 

  3678.   <li><?php bugfix(60909); ?> (custom error handler throwing Exception + fatal error = no shutdown function).</li>
    3679. 

  3679.   <li><?php bugfix(60723); ?> (error_log error time has changed to UTC ignoring default timezone).</li>
    3680. 

  3680. </ul></li>
    3681. 

  3681. </ul>
    3682. 

  3682. 

  3683. <ul>
    3684. 

  3684. <li>cURL
    3685. 

  3685. <ul>
    3686. 

  3686.   <li><?php bugfix(62085); ?> (file_get_contents a remote file by Curl wrapper will cause cpu Soaring).</li>
    3687. 

  3687. </ul></li>
    3688. 

  3688. </ul>
    3689. 

  3689. 

  3690. <ul>
    3691. 

  3691. <li>Date
    3692. 

  3692. <ul>
    3693. 

  3693.   <li><?php bugfix(62896); ?> ("DateTime-&gt;modify('+0 days')" modifies DateTime object)</li>
    3694. 

  3694.   <li><?php bugfix(62561); ?> (DateTime add 'P1D' adds 25 hours).</li>
    3695. 

  3695. </ul></li>
    3696. 

  3696. </ul>
    3697. 

  3697. 

  3698. <ul>
    3699. 

  3699. <li>DOM
    3700. 

  3700. <ul>
    3701. 

  3701.   <li><?php bugfix(63015); ?> (Incorrect arginfo for DOMErrorHandler).</li>
    3702. 

  3702. </ul></li>
    3703. 

  3703. </ul>
    3704. 

  3704. 

  3705. <ul>
    3706. 

  3706. <li>FPM
    3707. 

  3707. <ul>
    3708. 

  3708.   <li><?php bugfix(62954); ?> (startup problems fpm / php-fpm).</li>
    3709. 

  3709.   <li><?php bugfix(62886); ?> (PHP-FPM may segfault/hang on startup).</li>
    3710. 

  3710.   <li><?php bugfix(63085); ?> (Systemd integration and daemonize).</li>
    3711. 

  3711.   <li><?php bugfix(62947); ?> (Unneccesary warnings on FPM).</li>
    3712. 

  3712.   <li><?php bugfix(62887); ?> (Only /status?plain&amp;full gives "last request cpu").</li>
    3713. 

  3713.   <li><?php bugfix(62216); ?> (Add PID to php-fpm init.d script).</li>
    3714. 

  3714. </ul></li>
    3715. 

  3715. </ul>
    3716. 

  3716. 

  3717. <ul>
    3718. 

  3718. <li>OpenSSL
    3719. 

  3719. <ul>
    3720. 

  3720.   <li>Implemented FR <?php bugl(61421); ?> (OpenSSL signature verification missing RMD160, SHA224, SHA256, SHA384, SHA512).</li>
    3721. 

  3721. </ul></li>
    3722. 

  3722. </ul>
    3723. 

  3723. 

  3724. <ul>
    3725. 

  3725. <li>SOA
    3726. 

  3726. <ul>
    3727. 

  3727.   <li><?php bugfix(50997); ?> (SOAP Error when trying to submit 2nd Element of a choice).</li>
    3728. 

  3728. </ul></li>
    3729. 

  3729. </ul>
    3730. 

  3730. 

  3731. <ul>
    3732. 

  3732. <li>SPL
    3733. 

  3733. <ul>
    3734. 

  3734.   <li>Bug #62987 (Assigning to ArrayObject[null][something] overrides all undefined variables).</li>
    3735. 

  3735. </ul></li>
    3736. 

  3736. </ul>
    3737. 

  3737. 

  3738. <ul>
    3739. 

  3739. <li>mbstring
    3740. 

  3740. <ul>
    3741. 

  3741.   <li>Allow passing null as a default value to mb_substr() and mb_strcut(). Patch by Alexander Moskaliov via GitHub PR #133.</li>
    3742. 

  3742. </ul></li>
    3743. 

  3743. </ul>
    3744. 

  3744. 

  3745. <ul>
    3746. 

  3746. <li>Filter extension
    3747. 

  3747. <ul>
    3748. 

  3748.   <li>Bug #49510: Boolean validation fails with FILTER_NULL_ON_FAILURE with empty string or false.</li>
    3749. 

  3749. </ul></li>
    3750. 

  3750. </ul>
    3751. 

  3751. 

  3752. <ul>
    3753. 

  3753. <li>Socket
    3754. 

  3754. <ul>
    3755. 

  3755.   <li><?php bugfix(63000); ?> (MCAST_JOIN_GROUP on OSX is broken, merge of PR 185 by Igor Wiedler).</li>
    3756. 

  3756. </ul></li>
    3757. 

  3757. </ul>
    3758. 

  3758. <!-- }}} --></section>
    3759. 

  3759. 

  3760. <section class="version" id="5.3.18"><!-- {{{ 5.3.18 -->
    3761. 

  3761. <h3>Version 5.3.18</h3>
    3762. 

  3762. <?php echo release_date('18-October-2012'); ?>
    3763. 

  3763. <ul>
    3764. 

  3764. <li>Core
    3765. 

  3765. <ul>
    3766. 

  3766.   <li><?php bugfix(63111); ?> (is_callable() lies for abstract static method).</li>
    3767. 

  3767.   <li><?php bugfix(63093); ?> (Segfault while load extension failed in zts-build).</li>
    3768. 

  3768.   <li><?php bugfix(62976); ?> (Notice: could not be converted to int when comparing some builtin classes).</li>
    3769. 

  3769.   <li><?php bugfix(61767); ?> (Shutdown functions not called in certain error situation).</li>
    3770. 

  3770.   <li><?php bugfix(61442); ?> (exception threw in __autoload can not be catched).</li>
    3771. 

  3771.   <li><?php bugfix(60909); ?> (custom error handler throwing Exception + fatal error = no shutdown function).</li>
    3772. 

  3772. </ul></li>
    3773. 

  3773. </ul>
    3774. 

  3774. 

  3775. <ul>
    3776. 

  3776. <li>cURL
    3777. 

  3777. <ul>
    3778. 

  3778.   <li><?php bugfix(62085); ?> (file_get_contents a remote file by Curl wrapper will cause cpu Soaring).</li>
    3779. 

  3779. </ul></li>
    3780. 

  3780. </ul>
    3781. 

  3781. 

  3782. <ul>
    3783. 

  3783. <li>FPM
    3784. 

  3784. <ul>
    3785. 

  3785.   <li><?php bugfix(62954); ?> (startup problems fpm / php-fpm).</li>
    3786. 

  3786.   <li><?php bugfix(62886); ?> (PHP-FPM may segfault/hang on startup).</li>
    3787. 

  3787.   <li><?php bugfix(63085); ?> (Systemd integration and daemonize).</li>
    3788. 

  3788.   <li><?php bugfix(62947); ?> (Unneccesary warnings on FPM).</li>
    3789. 

  3789.   <li><?php bugfix(62887); ?> (Only /status?plain&amp;full gives "last request cpu").</li>
    3790. 

  3790.   <li><?php bugfix(62216); ?> (Add PID to php-fpm init.d script).</li>
    3791. 

  3791. </ul></li>
    3792. 

  3792. </ul>
    3793. 

  3793. 

  3794. <ul>
    3795. 

  3795. <li>Intl
    3796. 

  3796. <ul>
    3797. 

  3797.   <li>Fix bug #62915 (defective cloning in several intl classes).</li>
    3798. 

  3798. </ul></li>
    3799. 

  3799. </ul>
    3800. 

  3800. 

  3801. <ul>
    3802. 

  3802. <li>SOAP
    3803. 

  3803. <ul>
    3804. 

  3804.   <li><?php bugfix(50997); ?> (SOAP Error when trying to submit 2nd Element of a choice).</li>
    3805. 

  3805. </ul></li>
    3806. 

  3806. </ul>
    3807. 

  3807. 

  3808. <ul>
    3809. 

  3809. <li>SPL
    3810. 

  3810. <ul>
    3811. 

  3811.   <li>Bug #62987 (Assigning to ArrayObject[null][something] overrides all undefined variables).</li>
    3812. 

  3812. </ul></li>
    3813. 

  3813. </ul>
    3814. 

  3814. <!-- }}} --></section>
    3815. 

  3815. 

  3816. <section class="version" id="5.4.7"><!-- {{{ 5.4.7 -->
    3817. 

  3817. <h3>Version 5.4.7</h3>
    3818. 

  3818. <?php echo release_date('13-September-2012'); ?>
    3819. 

  3819. <ul>
    3820. 

  3820. <li>Core
    3821. 

  3821. <ul>
    3822. 

  3822.     <li>Fixed bug (segfault while build with zts and GOTO vm-kind)</li>
    3823. 

  3823.     <li><?php bugfix(62955); ?> (Only one directive is loaded from "Per Directory Values" Windows registry)</li>
    3824. 

  3824.     <li><?php bugfix(62844); ?> (parse_url() does not recognize //)</li>
    3825. 

  3825.     <li><?php bugfix(62829); ?> (stdint.h included on platform where HAVE_STDINT_H is not set)</li>
    3826. 

  3826.     <li><?php bugfix(62763); ?> (register_shutdown_function and extending class)</li>
    3827. 

  3827.     <li><?php bugfix(62725); ?> (Calling exit() in a shutdown function does not return the exit value)</li>
    3828. 

  3828.     <li><?php bugfix(62744); ?> (dangling pointers made by zend_disable_class)</li>
    3829. 

  3829.     <li><?php bugfix(62716); ?> (munmap() is called with the incorrect length)</li>
    3830. 

  3830.     <li><?php bugfix(62358); ?> (Segfault when using traits a lot)</li>
    3831. 

  3831.     <li><?php bugfix(62328); ?> (implementing __toString and a cast to string fails)</li>
    3832. 

  3832.     <li><?php bugfix(51363); ?> (Fatal error raised by var_export() not caught by error handler)</li>
    3833. 

  3833.     <li><?php bugfix(40459); ?> (Stat and Dir stream wrapper methods do not call constructor)</li>
    3834. 

  3834. </ul></li>
    3835. 

  3835. </ul>
    3836. 

  3836. 

  3837. <ul>
    3838. 

  3838. <li>CURL
    3839. 

  3839. <ul>
    3840. 

  3840.     <li><?php bugfix(62912); ?> (CURLINFO_PRIMARY_* AND CURLINFO_LOCAL_* not exposed)</li>
    3841. 

  3841.     <li><?php bugfix(62839); ?> (curl_copy_handle segfault with CURLOPT_FILE)</li>
    3842. 

  3842. </ul></li>
    3843. 

  3843. </ul>
    3844. 

  3844. 

  3845. <ul>
    3846. 

  3846. <li>DateTime
    3847. 

  3847. <ul>
    3848. 

  3848.     <li><?php bugfix(62852); ?> (Unserialize invalid DateTime causes crash)</li>
    3849. 

  3849. </ul></li>
    3850. 

  3850. </ul>
    3851. 

  3851. 

  3852. <ul>
    3853. 

  3853. <li>Intl
    3854. 

  3854. <ul>
    3855. 

  3855.     <li>Fixed Spoofchecker not being registered on ICU 49.1</li>
    3856. 

  3856.     <li>Fix bug #62933 (ext/intl compilation error on icu 3.4.1)</li>
    3857. 

  3857.     <li>Fix bug #62915 (defective cloning in several intl classes)</li>
    3858. 

  3858. </ul></li>
    3859. 

  3859. </ul>
    3860. 

  3860. 

  3861. <ul>
    3862. 

  3862. <li>Installation
    3863. 

  3863. <ul>
    3864. 

  3864.     <li><?php bugfix(62460); ?> (php binaries installed as binary.dSYM)</li>
    3865. 

  3865. </ul></li>
    3866. 

  3866. </ul>
    3867. 

  3867. 

  3868. <ul>
    3869. 

  3869. <li>PCRE
    3870. 

  3870. <ul>
    3871. 

  3871.     <li><?php bugfix(55856); ?> (preg_replace should fail on trailing garbage)</li>
    3872. 

  3872. </ul></li>
    3873. 

  3873. </ul>
    3874. 

  3874. 

  3875. <ul>
    3876. 

  3876. <li>PDO
    3877. 

  3877. <ul>
    3878. 

  3878.     <li><?php bugfix(62685); ?> (Wrong return datatype in PDO::inTransaction())</li>
    3879. 

  3879. </ul></li>
    3880. 

  3880. </ul>
    3881. 

  3881. 

  3882. <ul>
    3883. 

  3883. <li>Reflection
    3884. 

  3884. <ul>
    3885. 

  3885.     <li><?php bugfix(62892); ?> (ReflectionClass::getTraitAliases crashes on importing trait methods as private)</li>
    3886. 

  3886.     <li><?php bugfix(62715); ?> (ReflectionParameter::isDefaultValueAvailable() wrong result)</li>
    3887. 

  3887. </ul></li>
    3888. 

  3888. </ul>
    3889. 

  3889. 

  3890. <ul>
    3891. 

  3891. <li>Session
    3892. 

  3892. <ul>
    3893. 

  3893.     <li>Fixed bug (segfault due to retval is not initialized)</li>
    3894. 

  3894.     <li>Fixed bug (segfault due to PS(mod_user_implemented) not be reseted when close handler call exit)</li>
    3895. 

  3895. </ul></li>
    3896. 

  3896. </ul>
    3897. 

  3897. 

  3898. <ul>
    3899. 

  3899. <li>SPL
    3900. 

  3900. <ul>
    3901. 

  3901.     <li><?php bugfix(62904); ?> (Crash when cloning an object which inherits SplFixedArray)</li>
    3902. 

  3902.     <li>Implemented FR <?php bugl(62840); ?> (Add sort flag to ArrayObject::ksort)</li>
    3903. 

  3903. </ul></li>
    3904. 

  3904. </ul>
    3905. 

  3905. 

  3906. <ul>
    3907. 

  3907. <li>Standard
    3908. 

  3908. <ul>
    3909. 

  3909.     <li><?php bugfix(62836); ?> (Seg fault or broken object references on unserialize())</li>
    3910. 

  3910. </ul></li>
    3911. 

  3911. </ul>
    3912. 

  3912. 

  3913. <ul>
    3914. 

  3914. <li>FPM
    3915. 

  3915. <ul>
    3916. 

  3916.     <li>Merged PR 121 by minitux to add support for slow request counting on PHP FPM status page</li>
    3917. 

  3917. </ul></li>
    3918. 

  3918. </ul>
    3919. 

  3919. <!-- }}} --></section>
    3920. 

  3920. 

  3921. <section class="version" id="5.3.17"><!-- {{{ 5.3.17 -->
    3922. 

  3922. <h3>Version 5.3.17</h3>
    3923. 

  3923. <?php echo release_date('13-September-2012'); ?>
    3924. 

  3924. <ul>
    3925. 

  3925. <li>Core
    3926. 

  3926. <ul>
    3927. 

  3927.     <li>Fixed bug (segfault while build with zts and GOTO vm-kind)</li>
    3928. 

  3928.     <li><?php bugfix(62955); ?> (Only one directive is loaded from "Per Directory Values" Windows registry)</li>
    3929. 

  3929.     <li><?php bugfix(62763); ?> (register_shutdown_function and extending class)</li>
    3930. 

  3930.     <li><?php bugfix(62744); ?> (dangling pointers made by zend_disable_class)</li>
    3931. 

  3931.     <li><?php bugfix(62716); ?> (munmap() is called with the incorrect length)</li>
    3932. 

  3932.     <li>Fixed bug ##62460 (php binaries installed as binary.dSYM)</li>
    3933. 

  3933. </ul></li>
    3934. 

  3934. </ul>
    3935. 

  3935. 

  3936. <ul>
    3937. 

  3937. <li>CURL
    3938. 

  3938. <ul>
    3939. 

  3939.     <li><?php bugfix(62839); ?> (curl_copy_handle segfault with CURLOPT_FILE)</li>
    3940. 

  3940. </ul></li>
    3941. 

  3941. </ul>
    3942. 

  3942. 

  3943. <ul>
    3944. 

  3944. <li>DateTime
    3945. 

  3945. <ul>
    3946. 

  3946.     <li><?php bugfix(62852); ?> (Unserialize invalid DateTime causes crash)</li>
    3947. 

  3947. </ul></li>
    3948. 

  3948. </ul>
    3949. 

  3949. 

  3950. <ul>
    3951. 

  3951. <li>Intl
    3952. 

  3952. <ul>
    3953. 

  3953.     <li>Fix null pointer dereferences in some classes of ext/intl</li>
    3954. 

  3954. </ul></li>
    3955. 

  3955. </ul>
    3956. 

  3956. 

  3957. <ul>
    3958. 

  3958. <li>MySQLnd
    3959. 

  3959. <ul>
    3960. 

  3960.     <li><?php bugfix(62885); ?> (mysqli_poll - Segmentation fault)</li>
    3961. 

  3961. </ul></li>
    3962. 

  3962. </ul>
    3963. 

  3963. 

  3964. <ul>
    3965. 

  3965. <li>PDO
    3966. 

  3966. <ul>
    3967. 

  3967.     <li><?php bugfix(62685); ?> (Wrong return datatype in PDO::inTransaction())</li>
    3968. 

  3968. </ul></li>
    3969. 

  3969. </ul>
    3970. 

  3970. 

  3971. <ul>
    3972. 

  3972. <li>Session
    3973. 

  3973. <ul>
    3974. 

  3974.     <li>Fixed bug (segfault due to retval is not initialized)</li>
    3975. 

  3975. </ul></li>
    3976. 

  3976. </ul>
    3977. 

  3977. 

  3978. <ul>
    3979. 

  3979. <li>SPL
    3980. 

  3980. <ul>
    3981. 

  3981.     <li><?php bugfix(62904); ?> (Crash when cloning an object which inherits SplFixedArray)</li>
    3982. 

  3982. </ul></li>
    3983. 

  3983. </ul>
    3984. 

  3984. 

  3985. <ul>
    3986. 

  3986. <li>Enchant
    3987. 

  3987. <ul>
    3988. 

  3988.     <li><?php bugfix(62838); ?> (enchant_dict_quick_check() destroys zval, but fails to initialize it)</li>
    3989. 

  3989. </ul></li>
    3990. 

  3990. </ul>
    3991. 

  3991. <!-- }}} --></section>
    3992. 

  3992. 

  3993. <section class="version" id="5.4.6"><!-- {{{ 5.4.6 -->
    3994. 

  3994. <h3>Version 5.4.6</h3>
    3995. 

  3995. <?php echo release_date('16-August-2012'); ?>
    3996. 

  3996. <ul>
    3997. 

  3997. <li>CLI Server
    3998. 

  3998. <ul>
    3999. 

  3999.     <li>Implemented FR <?php bugl(62700); ?> (have the console output 'Listening on http://localhost:8000').</li>
    4000. 

  4000. </ul></li>
    4001. 

  4001. </ul>
    4002. 

  4002. 

  4003. <ul>
    4004. 

  4004. <li>Core
    4005. 

  4005. <ul>
    4006. 

  4006.   <li><?php bugfix(62661); ?> (Interactive php-cli crashes if include() is used in auto_prepend_file).</li>
    4007. 

  4007.   <li><?php bugfix(62653); ?>: (unset($array[$float]) causes a crash).</li>
    4008. 

  4008.   <li><?php bugfix(62565); ?> (Crashes due non-initialized internal properties_table).</li>
    4009. 

  4009.   <li><?php bugfix(60194); ?> (--with-zend-multibyte and --enable-debug reports LEAK with run-test.php).</li>
    4010. 

  4010. </ul></li>
    4011. 

  4011. </ul>
    4012. 

  4012. 

  4013. <ul>
    4014. 

  4014. <li>CURL
    4015. 

  4015. <ul>
    4016. 

  4016.   <li><?php bugfix(62499); ?> (curl_setopt($ch, CURLOPT_COOKIEFILE, "") returns false).</li>
    4017. 

  4017. </ul></li>
    4018. 

  4018. </ul>
    4019. 

  4019. 

  4020. <ul>
    4021. 

  4021. <li>DateTime
    4022. 

  4022. <ul>
    4023. 

  4023.   <li><?php bugfix(62500); ?> (Segfault in DateInterval class when extended).</li>
    4024. 

  4024. </ul></li>
    4025. 

  4025. </ul>
    4026. 

  4026. 

  4027. <ul>
    4028. 

  4028. <li>Fileinfo
    4029. 

  4029. <ul>
    4030. 

  4030.   <li><?php bugfix(61964); ?> (finfo_open with directory causes invalid free).</li>
    4031. 

  4031. </ul></li>
    4032. 

  4032. </ul>
    4033. 

  4033. 

  4034. <ul>
    4035. 

  4035. <li>Intl
    4036. 

  4036. <ul>
    4037. 

  4037.   <li><?php bugfix(62564); ?> (Extending MessageFormatter and adding property causes crash).</li>
    4038. 

  4038. </ul></li>
    4039. 

  4039. </ul>
    4040. 

  4040. 

  4041. <ul>
    4042. 

  4042. <li>MySQLnd
    4043. 

  4043. <ul>
    4044. 

  4044.   <li><?php bugfix(62594); ?> (segfault in mysqlnd_res_meta::set_mode).</li>
    4045. 

  4045. </ul></li>
    4046. 

  4046. </ul>
    4047. 

  4047. 

  4048. <ul>
    4049. 

  4049. <li>readline
    4050. 

  4050. <ul>
    4051. 

  4051.   <li><?php bugfix(62612); ?> (readline extension compilation fails with sapi/cli/cli.h: No such file).</li>
    4052. 

  4052. </ul></li>
    4053. 

  4053. </ul>
    4054. 

  4054. 

  4055. <ul>
    4056. 

  4056. <li>Reflection
    4057. 

  4057. <ul>
    4058. 

  4058.   <li>Implemented FR <?php bugl(61602); ?> (Allow access to name of constant used as default value).</li>
    4059. 

  4059. </ul></li>
    4060. 

  4060. </ul>
    4061. 

  4061. 

  4062. <ul>
    4063. 

  4063. <li>SimpleXML
    4064. 

  4064. <ul>
    4065. 

  4065.   <li>Implemented FR <?php bugl(55218); ?> (Get namespaces from current node).</li>
    4066. 

  4066. </ul></li>
    4067. 

  4067. </ul>
    4068. 

  4068. 

  4069. <ul>
    4070. 

  4070. <li>SPL
    4071. 

  4071. <ul>
    4072. 

  4072.   <li><?php bugfix(62616); ?> (ArrayIterator::count() from IteratorIterator instance gives Segmentation fault).</li>
    4073. 

  4073.   <li><?php bugfix(61527); ?> (ArrayIterator gives misleading notice on next() when moved to the end).</li>
    4074. 

  4074. </ul></li>
    4075. 

  4075. </ul>
    4076. 

  4076. 

  4077. <ul>
    4078. 

  4078. <li>Streams
    4079. 

  4079. <ul>
    4080. 

  4080.   <li><?php bugfix(62597); ?> (segfault in php_stream_wrapper_log_error with ZTS build).</li>
    4081. 

  4081. </ul></li>
    4082. 

  4082. </ul>
    4083. 

  4083. 

  4084. <ul>
    4085. 

  4085. <li>Zlib
    4086. 

  4086. <ul>
    4087. 

  4087.   <li><?php bugfix(55544); ?> (ob_gzhandler always conflicts with zlib.output_compression).</li>
    4088. 

  4088. </ul></li>
    4089. 

  4089. </ul>
    4090. 

  4090. <!-- }}} --></section>
    4091. 

  4091. 

  4092. <section class="version" id="5.3.16"><!-- {{{ 5.3.16 -->
    4093. 

  4093. <h3>Version 5.3.16</h3>
    4094. 

  4094. <?php echo release_date('16-August-2012'); ?>
    4095. 

  4095. <ul>
    4096. 

  4096. <li>Core
    4097. 

  4097. <ul>
    4098. 

  4098.   <li><?php bugfix(62763); ?> (register_shutdown_function and extending class).</li>
    4099. 

  4099.   <li><?php bugfix(62744); ?> (dangling pointers made by zend_disable_class).</li>
    4100. 

  4100.   <li><?php bugfix(62716); ?> (munmap() is called with the incorrect length).</li>
    4101. 

  4101.   <li><?php bugfix(62460); ?> (php binaries installed as binary.dSYM).</li>
    4102. 

  4102.   <li><?php bugfix(60194); ?> (--with-zend-multibyte and --enable-debug reports LEAK with run-test.php).</li>
    4103. 

  4103. </ul></li>
    4104. 

  4104. </ul>
    4105. 

  4105. 

  4106. <ul>
    4107. 

  4107. <li>CURL
    4108. 

  4108. <ul>
    4109. 

  4109.   <li><?php bugfix(62839); ?> (curl_copy_handle segfault with CURLOPT_FILE).</li>
    4110. 

  4110.   <li><?php bugfix(62499); ?> (curl_setopt($ch, CURLOPT_COOKIEFILE, "") returns false).</li>
    4111. 

  4111. </ul></li>
    4112. 

  4112. </ul>
    4113. 

  4113. 

  4114. <ul>
    4115. 

  4115. <li>DateTime
    4116. 

  4116. <ul>
    4117. 

  4117.   <li><?php bugfix(62500); ?> (Segfault in DateInterval class when extended).</li>
    4118. 

  4118. </ul></li>
    4119. 

  4119. </ul>
    4120. 

  4120. 

  4121. <ul>
    4122. 

  4122. <li>Enchant
    4123. 

  4123. <ul>
    4124. 

  4124.   <li><?php bugfix(62838); ?> (enchant_dict_quick_check() destroys zval, but fails to initialize it).</li>
    4125. 

  4125. </ul></li>
    4126. 

  4126. </ul>
    4127. 

  4127. 

  4128. <ul>
    4129. 

  4129. <li>PDO
    4130. 

  4130. <ul>
    4131. 

  4131.   <li><?php bugfix(62685); ?> (Wrong return datatype in PDO::inTransaction()).</li>
    4132. 

  4132. </ul></li>
    4133. 

  4133. </ul>
    4134. 

  4134. 

  4135. <ul>
    4136. 

  4136. <li>Reflection
    4137. 

  4137. <ul>
    4138. 

  4138.   <li><?php bugfix(62715); ?> (ReflectionParameter::isDefaultValueAvailable() wrong result).</li>
    4139. 

  4139. </ul></li>
    4140. 

  4140. </ul>
    4141. 

  4141. 

  4142. <ul>
    4143. 

  4143. <li>Session
    4144. 

  4144. <ul>
    4145. 

  4145.   <li>Fixed bug (segfault due to retval is not initialized).</li>
    4146. 

  4146. </ul></li>
    4147. 

  4147. </ul>
    4148. 

  4148. 

  4149. <ul>
    4150. 

  4150. <li>SPL
    4151. 

  4151. <ul>
    4152. 

  4152.   <li><?php bugfix(62616); ?> (ArrayIterator::count() from IteratorIterator instance gives Segmentation fault).</li>
    4153. 

  4153. </ul></li>
    4154. 

  4154. </ul>
    4155. 

  4155. <!-- }}} --></section>
    4156. 

  4156. 

  4157. <section class="version" id="5.4.5"><!-- {{{ 5.4.5 -->
    4158. 

  4158. <h3>Version 5.4.5</h3>
    4159. 

  4159. <?php echo release_date('19-July-2012'); ?>
    4160. 

  4160. <ul>
    4161. 

  4161. <li>Core
    4162. 

  4162. <ul>
    4163. 

  4163.   <li><?php bugfix(62443); ?> (Crypt SHA256/512 Segfaults With Malformed Salt)</li>
    4164. 

  4164.   <li><?php bugfix(62432); ?> (ReflectionMethod random corrupt memory on high concurrent)</li>
    4165. 

  4165.   <li><?php bugfix(62373); ?> (serialize() generates wrong reference to the object).</li>
    4166. 

  4166.   <li><?php bugfix(62357); ?> (compile failure: (S) Arguments missing for built-in function __memcmp)</li>
    4167. 

  4167.   <li><?php bugfix(61998); ?> (Using traits with method aliases appears to result in crash during execution)</li>
    4168. 

  4168.   <li><?php bugfix(51094); ?> (parse_ini_file() with INI_SCANNER_RAW cuts a value that includes a semi-colon)</li>
    4169. 

  4169.   <li>Fixed potential overflow in _php_stream_scandir (CVE-2012-2688)</li>
    4170. 

  4170. </ul></li>
    4171. 

  4171. </ul>
    4172. 

  4172. 

  4173. <ul>
    4174. 

  4174. <li>EXIF
    4175. 

  4175. <ul>
    4176. 

  4176.   <li>Fixed information leak in ext exif</li>
    4177. 

  4177. </ul></li>
    4178. 

  4178. </ul>
    4179. 

  4179. 

  4180. <ul>
    4181. 

  4181. <li>FPM
    4182. 

  4182. <ul>
    4183. 

  4183.   <li><?php bugfix(62205); ?> (php-fpm segfaults (null passed to strstr)</li>
    4184. 

  4184.   <li><?php bugfix(62160); ?> (Add process.priority to set nice(2) priorities)</li>
    4185. 

  4185.   <li><?php bugfix(62153); ?> (when using unix sockets, multiples FPM instances)</li>
    4186. 

  4186.   <li><?php bugfix(62033); ?> (php-fpm exits with status 0 on some failures to start)</li>
    4187. 

  4187.   <li><?php bugfix(61839); ?> (Unable to cross-compile PHP with --enable-fpm)</li>
    4188. 

  4188.   <li><?php bugfix(61835); ?> (php-fpm is not allowed to run as root)</li>
    4189. 

  4189.   <li><?php bugfix(61295); ?> (php-fpm should not fail with commented 'user'</li>
    4190. 

  4190.   <li><?php bugfix(61218); ?> (FPM drops connection while receiving some binary values in FastCGI requests)</li>
    4191. 

  4191.   <li><?php bugfix(61045); ?> (fpm don't send error log to fastcgi clients). (fat) for non-root start)</li>
    4192. 

  4192.   <li><?php bugfix(61026); ?> (FPM pools can listen on the same address). (fat) can be launched without errors)</li>
    4193. 

  4193. </ul></li>
    4194. 

  4194. </ul>
    4195. 

  4195. 

  4196. <ul>
    4197. 

  4197. <li>Iconv
    4198. 

  4198. <ul>
    4199. 

  4199. <li><?php bugfix(55042); ?> (Erealloc in iconv.c unsafe)</li>
    4200. 

  4200. </ul></li>
    4201. 

  4201. </ul>
    4202. 

  4202. 

  4203. <ul>
    4204. 

  4204. <li>Intl
    4205. 

  4205. <ul>
    4206. 

  4206.   <li><?php bugfix(62083); ?> (grapheme_extract() memory leaks)</li>
    4207. 

  4207.   <li><?php bugfix(62081); ?> (IntlDateFormatter constructor leaks memory when called twice)</li>
    4208. 

  4208.   <li><?php bugfix(62070); ?> (Collator::getSortKey() returns garbage)</li>
    4209. 

  4209.   <li><?php bugfix(62017); ?> (datefmt_create with incorrectly encoded timezone leaks pattern)</li>
    4210. 

  4210.   <li><?php bugfix(60785); ?> (memory leak in IntlDateFormatter constructor)</li>
    4211. 

  4211.   <li>ResourceBundle constructor now accepts NULL for the first two arguments</li>
    4212. 

  4212. </ul></li>
    4213. 

  4213. </ul>
    4214. 

  4214. 

  4215. <ul>
    4216. 

  4216. <li>JSON
    4217. 

  4217. <ul>
    4218. 

  4218.   <li><?php bugfix(61359); ?> (json_encode() calls too many reallocs)</li>
    4219. 

  4219. </ul></li>
    4220. 

  4220. </ul>
    4221. 

  4221. 

  4222. <ul>
    4223. 

  4223. <li>libxml
    4224. 

  4224. <ul>
    4225. 

  4225.   <li><?php bugfix(62266); ?> (Custom extension segfaults during xmlParseFile with FPM SAPI)</li>
    4226. 

  4226. </ul></li>
    4227. 

  4227. </ul>
    4228. 

  4228. 

  4229. <ul>
    4230. 

  4230. <li>Phar
    4231. 

  4231. <ul>
    4232. 

  4232.   <li><?php bugfix(62227); ?> (Invalid phar stream path causes crash)</li>
    4233. 

  4233. </ul></li>
    4234. 

  4234. </ul>
    4235. 

  4235. 

  4236. <ul>
    4237. 

  4237. <li>Readline
    4238. 

  4238. <ul>
    4239. 

  4239.   <li><?php bugfix(62186); ?> (readline fails to compile - void function should not return a value)</li>
    4240. 

  4240. </ul></li>
    4241. 

  4241. </ul>
    4242. 

  4242. 

  4243. <ul>
    4244. 

  4244. <li>Reflection
    4245. 

  4245. <ul>
    4246. 

  4246.   <li><?php bugfix(62384); ?> (Attempting to invoke a Closure more than once causes segfault)</li>
    4247. 

  4247.   <li><?php bugfix(62202); ?> (ReflectionParameter::getDefaultValue() memory leaks with constant)</li>
    4248. 

  4248. </ul></li>
    4249. 

  4249. </ul>
    4250. 

  4250. 

  4251. <ul>
    4252. 

  4252. <li>Sockets
    4253. 

  4253. <ul>
    4254. 

  4254.   <li><?php bugfix(62025); ?> (__ss_family was changed on AIX 5.3)</li>
    4255. 

  4255. </ul></li>
    4256. 

  4256. </ul>
    4257. 

  4257. 

  4258. <ul>
    4259. 

  4259. <li>SPL
    4260. 

  4260. <ul>
    4261. 

  4261.   <li><?php bugfix(62433); ?> (Inconsistent behavior of RecursiveDirectoryIterator to dot files)</li>
    4262. 

  4262.   <li><?php bugfix(62262); ?> (RecursiveArrayIterator does not implement Countable)</li>
    4263. 

  4263. </ul></li>
    4264. 

  4264. </ul>
    4265. 

  4265. 

  4266. <ul>
    4267. 

  4267. <li>XML Writer
    4268. 

  4268. <ul>
    4269. 

  4269.   <li><?php bugfix(62064); ?> (memory leak in the XML Writer module)</li>
    4270. 

  4270. </ul></li>
    4271. 

  4271. </ul>
    4272. 

  4272. 

  4273. <ul>
    4274. 

  4274. <li>Zip
    4275. 

  4275. <ul>
    4276. 

  4276.   <li>Upgraded libzip to 0.10.</li>
    4277. 

  4277. </ul></li>
    4278. 

  4278. </ul>
    4279. 

  4279. <!-- }}} --></section>
    4280. 

  4280. 

  4281. <section class="version" id="5.3.15"><!-- {{{ 5.3.15 -->
    4282. 

  4282. <h3>Version 5.3.15</h3>
    4283. 

  4283. <?php echo release_date('19-July-2012'); ?>
    4284. 

  4284. <ul>
    4285. 

  4285. <li>Zend Engine
    4286. 

  4286. <ul>
    4287. 

  4287.   <li><?php bugfix(51094); ?> (parse_ini_file() with INI_SCANNER_RAW cuts a value that includes a semi-colon)</li>
    4288. 

  4288. </ul></li>
    4289. 

  4289. </ul>
    4290. 

  4290. 

  4291. <ul>
    4292. 

  4292. <li>COM
    4293. 

  4293. <ul>
    4294. 

  4294.   <li><?php bugfix(62146); ?> com_dotnet cannot be built shared</li>
    4295. 

  4295. </ul></li>
    4296. 

  4296. </ul>
    4297. 

  4297. 

  4298. <ul>
    4299. 

  4299. <li>Core
    4300. 

  4300. <ul>
    4301. 

  4301.   <li>Fixed potential overflow in _php_stream_scandir, CVE-2012-2688</li>
    4302. 

  4302.   <li><?php bugfix(62432); ?> (ReflectionMethod random corrupt memory on high concurrent)</li>
    4303. 

  4303.   <li><?php bugfix(62443); ?> (Crypt SHA256/512 Segfaults With Malformed Salt)</li>
    4304. 

  4304. </ul></li>
    4305. 

  4305. </ul>
    4306. 

  4306. 

  4307. <ul>
    4308. 

  4308. <li>Fileinfo
    4309. 

  4309. <ul>
    4310. 

  4310.   <li>Fixed magic file regex support</li>
    4311. 

  4311. </ul></li>
    4312. 

  4312. </ul>
    4313. 

  4313. 

  4314. <ul>
    4315. 

  4315. <li>FPM
    4316. 

  4316. <ul>
    4317. 

  4317.   <li><?php bugfix(61045); ?> (fpm don't send error log to fastcgi clients)</li>
    4318. 

  4318.   <li><?php bugfix(61835); ?> (php-fpm is not allowed to run as root)</li>
    4319. 

  4319.   <li><?php bugfix(61295); ?> (php-fpm should not fail with commented 'user' for non-root start)</li>
    4320. 

  4320.   <li><?php bugfix(61026); ?> (FPM pools can listen on the same address)</li>
    4321. 

  4321.   <li><?php bugfix(62033); ?> (php-fpm exits with status 0 on some failures to start)</li>
    4322. 

  4322.   <li><?php bugfix(62153); ?> (when using unix sockets, multiples FPM instances can be launched without errors)</li>
    4323. 

  4323.   <li><?php bugfix(62160); ?> (Add process.priority to set nice(2) priorities)</li>
    4324. 

  4324.   <li><?php bugfix(61218); ?> (FPM drops connection while receiving some binary values in FastCGI requests)</li>
    4325. 

  4325.   <li><?php bugfix(62205); ?> (php-fpm segfaults (null passed to strstr))</li>
    4326. 

  4326. </ul></li>
    4327. 

  4327. </ul>
    4328. 

  4328. 

  4329. <ul>
    4330. 

  4330. <li>Intl
    4331. 

  4331. <ul>
    4332. 

  4332.   <li><?php bugfix(62083); ?> (grapheme_extract() memory leaks)</li>
    4333. 

  4333.   <li><?php bugfix(62081); ?> (IntlDateFormatter constructor leaks memory when called twice)</li>
    4334. 

  4334.   <li><?php bugfix(62070); ?> (Collator::getSortKey() returns garbage)</li>
    4335. 

  4335.   <li><?php bugfix(62017); ?> (datefmt_create with incorrectly encoded timezone leaks pattern)</li>
    4336. 

  4336.   <li><?php bugfix(60785); ?> (memory leak in IntlDateFormatter constructor)</li>
    4337. 

  4337. </ul></li>
    4338. 

  4338. </ul>
    4339. 

  4339. 

  4340. <ul>
    4341. 

  4341. <li>JSON
    4342. 

  4342. <ul>
    4343. 

  4343.   <li>Reverted fix for bug #61537</li>
    4344. 

  4344. </ul></li>
    4345. 

  4345. </ul>
    4346. 

  4346. 

  4347. <ul>
    4348. 

  4348. <li>Phar
    4349. 

  4349. <ul>
    4350. 

  4350.   <li><?php bugfix(62227); ?> (Invalid phar stream path causes crash)</li>
    4351. 

  4351. </ul></li>
    4352. 

  4352. </ul>
    4353. 

  4353. 

  4354. <ul>
    4355. 

  4355. <li>Reflection
    4356. 

  4356. <ul>
    4357. 

  4357.   <li><?php bugfix(62384); ?> (Attempting to invoke a Closure more than once causes segfault)</li>
    4358. 

  4358.   <li><?php bugfix(62202); ?> (ReflectionParameter::getDefaultValue() memory leaks with constant)</li>
    4359. 

  4359. </ul></li>
    4360. 

  4360. </ul>
    4361. 

  4361. 

  4362. <ul>
    4363. 

  4363. <li>SPL
    4364. 

  4364. <ul>
    4365. 

  4365.   <li><?php bugfix(62262); ?> (RecursiveArrayIterator does not implement Countable)</li>
    4366. 

  4366. </ul></li>
    4367. 

  4367. </ul>
    4368. 

  4368. 

  4369. <ul>
    4370. 

  4370. <li>SQLite
    4371. 

  4371. <ul>
    4372. 

  4372.   <li>Fixed open_basedir bypass, CVE-2012-3365</li>
    4373. 

  4373. </ul></li>
    4374. 

  4374. </ul>
    4375. 

  4375. 

  4376. <ul>
    4377. 

  4377. <li>XML Write
    4378. 

  4378. <ul>
    4379. 

  4379.   <li><?php bugfix(62064); ?> (memory leak in the XML Writer module)</li>
    4380. 

  4380. </ul></li>
    4381. 

  4381. </ul>
    4382. 

  4382. 

  4383. <ul>
    4384. 

  4384. <li>Zip
    4385. 

  4385. <ul>
    4386. 

  4386.   <li>Upgraded libzip to 0.10</li>
    4387. 

  4387. </ul></li>
    4388. 

  4388. </ul>
    4389. 

  4389. <!-- }}} --></section>
    4390. 

  4390. 

  4391. <section class="version" id="5.4.4"><!-- {{{ 5.4.4 -->
    4392. 

  4392. <h3>Version 5.4.4</h3>
    4393. 

  4393. <?php echo release_date('06-June-2012'); ?>
    4394. 

  4394. <ul>
    4395. 

  4395. <li>CLI SAPI
    4396. 

  4396. <ul>
    4397. 

  4397.   <li>Implemented FR <?php bugl(61977); ?> (Need CLI web-server support for files with .htm &amp; svg extensions)</li>
    4398. 

  4398.   <li>Improved performance while sending error page, this also fixed bug <?php bugfix(61785); ?>
    4399. 

  4399.   (Memory leak when access a non-exists file without router)</li>
    4400. 

  4400.   <li><?php bugfix(61546); ?> (functions related to current script failed when chdir() in cli sapi)</li>
    4401. 

  4401. </ul></li>
    4402. 

  4402. </ul>
    4403. 

  4403. 

  4404. <ul>
    4405. 

  4405. <li>Core
    4406. 

  4406. <ul>
    4407. 

  4407.   <li>Fixed missing bound check in iptcparse()</li>
    4408. 

  4408.   <li>Fixed CVE-2012-2143</li>
    4409. 

  4409.   <li><?php bugfix(62097); ?> (fix for for bug #54547)</li>
    4410. 

  4410.   <li><?php bugfix(62005); ?> (unexpected behavior when incrementally assigning to a member of a null object)</li>
    4411. 

  4411.   <li><?php bugfix(61978); ?> (Object recursion not detected for classes that implement JsonSerializable)</li>
    4412. 

  4412.   <li><?php bugfix(61991); ?> (long overflow in realpath_cache_get())</li>
    4413. 

  4413.   <li><?php bugfix(61922); ?> (ZTS build doesn't accept zend.script_encoding config)</li>
    4414. 

  4414.   <li><?php bugfix(61827); ?> (incorrect \e processing on Windows)</li>
    4415. 

  4415.   <li><?php bugfix(61782); ?> (__clone/__destruct do not match other methods when checking access controls)</li>
    4416. 

  4416.   <li><?php bugfix(61761); ?> ('Overriding' a private static method with a different signature causes crash)</li>
    4417. 

  4417.   <li><?php bugfix(61730); ?> (Segfault from array_walk modifying an array passed by reference)</li>
    4418. 

  4418.   <li><?php bugfix(61728); ?> (PHP crash when calling ob_start in request_shutdown phase)</li>
    4419. 

  4419.   <li><?php bugfix(61660); ?> (bin2hex(hex2bin($data)) != $data)</li>
    4420. 

  4420.   <li><?php bugfix(61650); ?> (ini parser crashes when using ${xxxx} ini variables (without apache2))</li>
    4421. 

  4421.   <li><?php bugfix(61605); ?> (header_remove() does not remove all headers)</li>
    4422. 

  4422.   <li><?php bugfix(54547); ?> (wrong equality of string numbers)</li>
    4423. 

  4423.   <li><?php bugfix(54197); ?> ([PATH=] sections incompatibility with user_ini.filename set to null)</li>
    4424. 

  4424.   <li>Changed php://fd to be available only for CLI</li>
    4425. 

  4425. </ul></li>
    4426. 

  4426. </ul>
    4427. 

  4427. 

  4428. <ul>
    4429. 

  4429. <li>CURL
    4430. 

  4430. <ul>
    4431. 

  4431.   <li><?php bugfix(61948); ?> (CURLOPT_COOKIEFILE '' raises open_basedir restriction)</li>
    4432. 

  4432. </ul></li>
    4433. 

  4433. </ul>
    4434. 

  4434. 

  4435. <ul>
    4436. 

  4436. <li>COM
    4437. 

  4437. <ul>
    4438. 

  4438.   <li><?php bugfix(62146); ?> com_dotnet cannot be built shared</li>
    4439. 

  4439. </ul></li>
    4440. 

  4440. </ul>
    4441. 

  4441. 

  4442. <ul>
    4443. 

  4443. <li>Fileinfo
    4444. 

  4444. <ul>
    4445. 

  4445.   <li><?php bugfix(61812); ?> (Uninitialised value used in libmagic)</li>
    4446. 

  4446. </ul></li>
    4447. 

  4447. </ul>
    4448. 

  4448. 

  4449. <ul>
    4450. 

  4450. <li>FPM
    4451. 

  4451. <ul>
    4452. 

  4452.   <li><?php bugfix(61812); ?> (Uninitialised value used in libmagic)</li>
    4453. 

  4453.   <li><?php bugfix(61565); ?> where php_stream_open_wrapper_ex tries to open a directory descriptor under windows</li>
    4454. 

  4454.   <li><?php bugfix(61566); ?> failure caused by the posix lseek and read versions under windows in cdf_read()</li>
    4455. 

  4455. </ul></li>
    4456. 

  4456. </ul>
    4457. 

  4457. 

  4458. <ul>
    4459. 

  4459. <li>Iconv
    4460. 

  4460. <ul>
    4461. 

  4461.   <li>Fixed a bug that iconv extension fails to link to the correct library when another extension makes use of a library that links to the iconv library. See <a href="https://bugs.gentoo.org/show_bug.cgi?id=364139">https://bugs.gentoo.org/show_bug.cgi?id=364139</a> for detail</li>
    4462. 

  4462. </ul></li>
    4463. 

  4463. </ul>
    4464. 

  4464. 

  4465. <ul>
    4466. 

  4466. <li>Intl
    4467. 

  4467. <ul>
    4468. 

  4468.   <li><?php bugfix(62082); ?> (Memory corruption in internal function get_icu_disp_value_src_php()</li>
    4469. 

  4469. </ul></li>
    4470. 

  4470. </ul>
    4471. 

  4471. 

  4472. <ul>
    4473. 

  4473. <li>JSON
    4474. 

  4474. <ul>
    4475. 

  4475.   <li><?php bugfix(61537); ?> (json_encode() incorrectly truncates/discards information)</li>
    4476. 

  4476. </ul></li>
    4477. 

  4477. </ul>
    4478. 

  4478. 

  4479. <ul>
    4480. 

  4480. <li>LibXML
    4481. 

  4481. <ul>
    4482. 

  4482.   <li><?php bugfix(61617); ?> (Libxml tests failed(ht is already destroyed))</li>
    4483. 

  4483. </ul></li>
    4484. 

  4484. </ul>
    4485. 

  4485. 

  4486. <ul>
    4487. 

  4487. <li>PDO
    4488. 

  4488. <ul>
    4489. 

  4489.   <li><?php bugfix(61755); ?> (A parsing bug in the prepared statements can lead to access violations)</li>
    4490. 

  4490. </ul></li>
    4491. 

  4491. </ul>
    4492. 

  4492. 

  4493. <ul>
    4494. 

  4494. <li>Phar
    4495. 

  4495. <ul>
    4496. 

  4496. <li><?php bugfix(61065); ?> (Secunia SA44335) (CVE-2012-2386)</li>
    4497. 

  4497. </ul></li>
    4498. 

  4498. </ul>
    4499. 

  4499. 

  4500. <ul>
    4501. 

  4501. <li>Streams
    4502. 

  4502. <ul>
    4503. 

  4503.   <li><?php bugfix(61961); ?> (file_get_contents leaks when access empty file with maxlen set)</li>
    4504. 

  4504. </ul></li>
    4505. 

  4505. </ul>
    4506. 

  4506. 

  4507. <ul>
    4508. 

  4508. <li>zlib
    4509. 

  4509. <ul>
    4510. 

  4510.   <li><?php bugfix(61820); ?> (using ob_gzhandler will complain about headers already sent when no compression)</li>
    4511. 

  4511.   <li><?php bugfix(61443); ?> (can't change zlib.output_compression on the fly)</li>
    4512. 

  4512.   <li><?php bugfix(60761); ?> (zlib.output_compression fails on refresh)</li>
    4513. 

  4513. </ul></li>
    4514. 

  4514. </ul>
    4515. 

  4515. <!-- }}} --></section>
    4516. 

  4516. 

  4517. <section class="version" id="5.3.14"><!-- {{{ 5.3.14 -->
    4518. 

  4518. <h3>Version 5.3.14</h3>
    4519. 

  4519. <?php echo release_date('06-June-2012'); ?>
    4520. 

  4520. <ul>
    4521. 

  4521. <li>CLI SAPI
    4522. 

  4522. <ul>
    4523. 

  4523.   <li><?php bugfix(61546); ?> (functions related to current script failed when chdir() in cli sapi)</li>
    4524. 

  4524. </ul></li>
    4525. 

  4525. </ul>
    4526. 

  4526. 

  4527. <ul>
    4528. 

  4528. <li>Core
    4529. 

  4529. <ul>
    4530. 

  4530.   <li>Fixed CVE-2012-2143</li>
    4531. 

  4531.   <li><?php bugfix(62005); ?> (unexpected behavior when incrementally assigning to a member of a null object)</li>
    4532. 

  4532.   <li><?php bugfix(61730); ?> (Segfault from array_walk modifying an array passed by reference)</li>
    4533. 

  4533.   <li>Fixed missing bound check in iptcparse()</li>
    4534. 

  4534.   <li><?php bugfix(61764); ?> ('I' unpacks n as signed if n &gt; 2^31-1 on LP64)</li>
    4535. 

  4535.   <li><?php bugfix(54197); ?> ([PATH=] sections incompatibility with user_ini.filename set to null)</li>
    4536. 

  4536.   <li><?php bugfix(61713); ?> (Logic error in charset detection for htmlentities)</li>
    4537. 

  4537.   <li><?php bugfix(61991); ?> (long overflow in realpath_cache_get())</li>
    4538. 

  4538.   <li>Changed php://fd to be available only for CLI.</li>
    4539. 

  4539. </ul></li>
    4540. 

  4540. </ul>
    4541. 

  4541. 

  4542. <ul>
    4543. 

  4543. <li>CURL
    4544. 

  4544. <ul>
    4545. 

  4545.   <li><?php bugfix(61948); ?> (CURLOPT_COOKIEFILE '' raises open_basedir restriction)</li>
    4546. 

  4546. </ul></li>
    4547. 

  4547. </ul>
    4548. 

  4548. 

  4549. <ul>
    4550. 

  4550. <li>COM
    4551. 

  4551. <ul>
    4552. 

  4552.   <li><?php bugfix(62146); ?> com_dotnet cannot be built shared</li>
    4553. 

  4553. </ul></li>
    4554. 

  4554. </ul>
    4555. 

  4555. 

  4556. <ul>
    4557. 

  4557. <li>Fileinfo
    4558. 

  4558. <ul>
    4559. 

  4559.   <li><?php bugfix(61812); ?> (Uninitialised value used in libmagic)</li>
    4560. 

  4560. </ul></li>
    4561. 

  4561. </ul>
    4562. 

  4562. 

  4563. <ul>
    4564. 

  4564. <li>Iconv
    4565. 

  4565. <ul>
    4566. 

  4566.   <li>Fixed a bug that iconv extension fails to link to the correct library when another extension makes use of a library that links to the iconv library. See <a href="https://bugs.gentoo.org/show_bug.cgi?id=364139">https://bugs.gentoo.org/show_bug.cgi?id=364139</a> for detail</li>
    4567. 

  4567. </ul></li>
    4568. 

  4568. </ul>
    4569. 

  4569. 

  4570. <ul>
    4571. 

  4571. <li>Intl
    4572. 

  4572. <ul>
    4573. 

  4573.   <li><?php bugfix(62082); ?> (Memory corruption in internal function get_icu_disp_value_src_php()</li>
    4574. 

  4574. </ul></li>
    4575. 

  4575. </ul>
    4576. 

  4576. 

  4577. <ul>
    4578. 

  4578. <li>JSON
    4579. 

  4579. <ul>
    4580. 

  4580.   <li><?php bugfix(61537); ?> (json_encode() incorrectly truncates/discards information)</li>
    4581. 

  4581. </ul></li>
    4582. 

  4582. </ul>
    4583. 

  4583. 

  4584. <ul>
    4585. 

  4585. <li>PDO
    4586. 

  4586. <ul>
    4587. 

  4587.   <li><?php bugfix(61755); ?> (A parsing bug in the prepared statements can lead to access violations)</li>
    4588. 

  4588. </ul></li>
    4589. 

  4589. </ul>
    4590. 

  4590. 

  4591. <ul>
    4592. 

  4592. <li>Phar
    4593. 

  4593. <ul>
    4594. 

  4594. <li><?php bugfix(61065); ?> (Secunia SA44335)</li>
    4595. 

  4595. </ul></li>
    4596. 

  4596. </ul>
    4597. 

  4597. 

  4598. <ul>
    4599. 

  4599. <li>Streams
    4600. 

  4600. <ul>
    4601. 

  4601.   <li><?php bugfix(61961); ?> (file_get_contents leaks when access empty file with maxlen set)</li>
    4602. 

  4602. </ul></li>
    4603. 

  4603. </ul>
    4604. 

  4604. <!-- }}} --></section>
    4605. 

  4605. 

  4606. <section class="version" id="5.4.3"><!-- {{{ 5.4.3 -->
    4607. 

  4607. <h3>Version 5.4.3</h3>
    4608. 

  4608. <?php release_date('08-May-2012'); ?>
    4609. 

  4609. 

  4610. <ul>
    4611. 

  4611.   <li><?php bugfix(61807); ?> Buffer Overflow in apache_request_headers, CVE-2012-2329.</li>
    4612. 

  4612.   <li><?php bugfix(61910); ?> Improve fix for PHP-CGI query string parameter vulnerability, CVE-2012-2311.</li>
    4613. 

  4613. </ul>
    4614. 

  4614. <!-- }}} --></section>
    4615. 

  4615. 

  4616. <section class="version" id="5.3.13"><!-- {{{ 5.3.13 -->
    4617. 

  4617. <h3>Version 5.3.13</h3>
    4618. 

  4618. <?php release_date('08-May-2012'); ?>
    4619. 

  4619. 

  4620. <ul>
    4621. 

  4621.   <li><?php bugfix(61910); ?> Improve fix for PHP-CGI query string parameter vulnerability, CVE-2012-2311.</li>
    4622. 

  4622. </ul>
    4623. 

  4623. <!-- }}} --></section>
    4624. 

  4624. 

  4625. <section class="version" id="5.4.2"><!-- {{{ 5.4.2 -->
    4626. 

  4626. <h3>Version 5.4.2</h3>
    4627. 

  4627. <?php release_date('03-May-2012'); ?>
    4628. 

  4628. 

  4629. <ul>
    4630. 

  4630.   <li><?php bugfix(61910); ?> Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823.</li>
    4631. 

  4631. </ul>
    4632. 

  4632. <!-- }}} --></section>
    4633. 

  4633. 

  4634. <section class="version" id="5.3.12"><!-- {{{ 5.3.12 -->
    4635. 

  4635. <h3>Version 5.3.12</h3>
    4636. 

  4636. <?php release_date('03-May-2012'); ?>
    4637. 

  4637. 

  4638. <ul>
    4639. 

  4639.   <li><?php bugfix(61910); ?> Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823.</li>
    4640. 

  4640. </ul>
    4641. 

  4641. <!-- }}} --></section>
    4642. 

  4642. 

  4643. <section class="version" id="5.4.1"><!-- {{{ 5.4.1 -->
    4644. 

  4644. <h3>Version 5.4.1</h3>
    4645. 

  4645. <?php release_date('26-Apr-2012'); ?>
    4646. 

  4646. 

  4647. <ul>
    4648. 

  4648. <li>CLI Server
    4649. 

  4649. <ul>
    4650. 

  4650.   <li><?php bugfix(61461); ?> (missing checks around malloc() calls).</li>
    4651. 

  4651.   <li>Implemented <?php bugl(60850); ?> (Built in web server does not set 
    4652. 

  4652.     $_SERVER['SCRIPT_FILENAME'] when using router).</li>
    4653. 

  4653. </ul></li>
    4654. 

  4654. </ul>
    4655. 

  4655. 

  4656. <ul>
    4657. 

  4657. <li>Core
    4658. 

  4658. <ul>
    4659. 

  4659.   <li>Fixed crash in ZTS using same class in many threads.</li>
    4660. 

  4660.   <li><?php bugfix(61374); ?> (html_entity_decode tries to decode code points that don't
    4661. 

  4661.     exist in ISO-8859-1).</li>
    4662. 

  4662.   <li><?php bugfix(61225); ?> (Incorrect lexing of 0b00*+&lt;NUM&gt;).</li>
    4663. 

  4663.   <li><?php bugfix(61106); ?> (Segfault when using header_register_callback).</li>
    4664. 

  4664.   <li><?php bugfix(61052); ?> (Missing error check in trait 'insteadof' clause).</li>
    4665. 

  4665.   <li><?php bugfix(61011); ?> (Crash when an exception is thrown by __autoload
    4666. 

  4666.     accessing a static property).</li>
    4667. 

  4667.   <li><?php bugfix(60978); ?> (exit code incorrect).</li>
    4668. 

  4668.   <li><?php bugfix(60911); ?> (Confusing error message when extending traits).</li>
    4669. 

  4669.   <li><?php bugfix(60717); ?> (Order of traits in use statement can cause a fatal
    4670. 

  4670.     error).</li>
    4671. 

  4671.   <li><?php bugfix(60573); ?> (type hinting with "self" keyword causes weird errors).</li>
    4672. 

  4672. </ul></li>
    4673. 

  4673. </ul>
    4674. 

  4674. 

  4675. <ul>
    4676. 

  4676. <li>Fileinfo
    4677. 

  4677. <ul>
    4678. 

  4678.   <li>Fix fileinfo test problems.</li>
    4679. 

  4679. </ul></li>
    4680. 

  4680. </ul>
    4681. 

  4681. 

  4682. <ul>
    4683. 

  4683. <li>Intl
    4684. 

  4684. <ul>
    4685. 

  4685.   <li><?php bugfix(61487); ?> (Incorrent bounds checking in grapheme_strpos).</li>
    4686. 

  4686. </ul></li>
    4687. 

  4687. </ul>
    4688. 

  4688. 

  4689. <ul>
    4690. 

  4690. <li>mbstring
    4691. 

  4691. <ul>
    4692. 

  4692.   <li>MFH mb_ereg_replace_callback() for security enhancements.</li>
    4693. 

  4693. </ul></li>
    4694. 

  4694. </ul>
    4695. 

  4695. 

  4696. <ul>
    4697. 

  4697. <li>mysqlnd
    4698. 

  4698. <ul>
    4699. 

  4699.   <li><?php bugfix(60948); ?> (mysqlnd FTBFS when -Wformat-security is enabled).</li>
    4700. 

  4700. </ul></li>
    4701. 

  4701. </ul>
    4702. 

  4702. 

  4703. <ul>
    4704. 

  4704. <li>Standard
    4705. 

  4705. <ul>
    4706. 

  4706.   <li>Fixed memory leak in substr_replace.</li>
    4707. 

  4707.   <li>Make max_file_uploads ini directive settable outside of php.</li>
    4708. 

  4708.   <li><?php bugfix(61409); ?> (Bad formatting on phpinfo()).</li>
    4709. 

  4709.   <li><?php bugfix(60222); ?> (time_nanosleep() does validate input params).</li>
    4710. 

  4710.   <li><?php bugfix(60106); ?> (stream_socket_server silently truncates long unix socket
    4711. 

  4711.     paths).</li>
    4712. 

  4712. </ul></li>
    4713. 

  4713. </ul>
    4714. 

  4714. <!-- }}} --></section>
    4715. 

  4715. 

  4716. <section class="version" id="5.3.11"><!-- {{{ 5.3.11 -->
    4717. 

  4717. <h3>Version 5.3.11</h3>
    4718. 

  4718. <?php release_date('26-Apr-2012'); ?>
    4719. 

  4719. 

  4720. <ul>
    4721. 

  4721. <li>Core
    4722. 

  4722. <ul>
    4723. 

  4723.   <li><?php bugfix(61650); ?> (ini parser crashes when using ${xxxx} ini variables
    4724. 

  4724.     (without apache2)).</li>
    4725. 

  4725.   <li><?php bugfix(61273); ?> (call_user_func_array with more than 16333 arguments 
    4726. 

  4726.     leaks / crashes).</li>
    4727. 

  4727.   <li><?php bugfix(61165); ?> (Segfault - strip_tags()).</li>
    4728. 

  4728.   <li><?php bugfix(61095); ?> (Incorect lexing of 0x00*+&lt;NUM&gt;).</li>
    4729. 

  4729.   <li><?php bugfix(61087); ?> (Memory leak in parse_ini_file when specifying
    4730. 

  4730.     invalid scanner mode).</li>
    4731. 

  4731.   <li><?php bugfix(61072); ?> (Memory leak when restoring an exception handler).</li>
    4732. 

  4732.   <li><?php bugfix(61058); ?> (array_fill leaks if start index is PHP_INT_MAX).</li>
    4733. 

  4733.   <li><?php bugfix(61000); ?> (Exceeding max nesting level doesn't delete numerical 
    4734. 

  4734.     vars).</li>
    4735. 

  4735.   <li><?php bugfix(60895); ?> (Possible invalid handler usage in windows random
    4736. 

  4736.     functions).</li>
    4737. 

  4737.   <li><?php bugfix(60825); ?> (Segfault when running symfony 2 tests).</li>
    4738. 

  4738.   <li><?php bugfix(60801); ?> (strpbrk() mishandles NUL byte).</li>
    4739. 

  4739.   <li><?php bugfix(60569); ?> (Nullbyte truncates Exception $message).</li>
    4740. 

  4740.   <li><?php bugfix(60227); ?> (header() cannot detect the multi-line header with CR).</li>
    4741. 

  4741.   <li><?php bugfix(60222); ?> (time_nanosleep() does validate input params).</li>
    4742. 

  4742.   <li><?php bugfix(54374); ?> (Insufficient validating of upload name leading to 
    4743. 

  4743.     corrupted $_FILES indices). (CVE-2012-1172).</li>
    4744. 

  4744.   <li><?php bugfix(52719); ?> (array_walk_recursive crashes if third param of the
    4745. 

  4745.     function is by reference).</li>
    4746. 

  4746.   <li>Improve performance of set_exception_handler while doing reset.</li>
    4747. 

  4747.   <li><?php bugfix(51860); ?> (Include fails with toplevel symlink to /).</li>
    4748. 

  4748. </ul></li>
    4749. 

  4749. </ul>
    4750. 

  4750. 

  4751. <ul>
    4752. 

  4752. <li>DOM
    4753. 

  4753. <ul>
    4754. 

  4754.   <li>Added debug info handler to DOM objects.</li>
    4755. 

  4755. </ul></li>
    4756. 

  4756. </ul>
    4757. 

  4757. 

  4758. <ul>
    4759. 

  4759. <li>FPM
    4760. 

  4760. <ul>
    4761. 

  4761.   <li><?php bugfix(61430); ?> (Transposed memset() params in sapi/fpm/fpm/fpm_shm.)</li>
    4762. 

  4762.   <li><?php bugfix(60811); ?> (php-fpm compilation problem).</li>
    4763. 

  4763. </ul></li>
    4764. 

  4764. </ul>
    4765. 

  4765. 

  4766. <ul>
    4767. 

  4767. <li>Fileinfo
    4768. 

  4768. <ul>
    4769. 

  4769.   <li>Upgraded libmagic to 5.</li>
    4770. 

  4770.   <li><?php bugfix(61565); ?> where php_stream_open_wrapper_ex tries to open a
    4771. 

  4771.     directory descriptor under windows.</li>
    4772. 

  4772.   <li><?php bugfix(61566); ?> failure caused by the posix lseek and read versions
    4773. 

  4773.     under windows in cdf_read().</li>
    4774. 

  4774.   <li><?php bugfix(61173); ?> (Unable to detect error from finfo constructor).</li>
    4775. 

  4775. </ul></li>
    4776. 

  4776. </ul>
    4777. 

  4777. 

  4778. <ul>
    4779. 

  4779. <li>Firebird Database extension (ibase)
    4780. 

  4780. <ul>
    4781. 

  4781.   <li><?php bugfix(60802); ?> (ibase_trans() gives segfault when passing params).</li>
    4782. 

  4782. </ul></li>
    4783. 

  4783. </ul>
    4784. 

  4784. 

  4785. <ul>
    4786. 

  4786. <li>Ibase
    4787. 

  4787. <ul>
    4788. 

  4788.   <li><?php bugfix(60947); ?> (Segmentation fault while executing ibase_db_info).</li>
    4789. 

  4789. </ul></li>
    4790. 

  4790. </ul>
    4791. 

  4791. 

  4792. <ul>
    4793. 

  4793. <li>Installation
    4794. 

  4794. <ul>
    4795. 

  4795.   <li><?php bugfix(61172); ?> (Add Apache 2.4 support).</li>
    4796. 

  4796. </ul></li>
    4797. 

  4797. </ul>
    4798. 

  4798. 

  4799. <ul>
    4800. 

  4800. <li>mysqli
    4801. 

  4801. <ul>
    4802. 

  4802.   <li><?php bugfix(61003); ?> (mysql_stat() require a valid connection).</li>
    4803. 

  4803. </ul></li>
    4804. 

  4804. </ul>
    4805. 

  4805. 

  4806. <ul>
    4807. 

  4807. <li>PDO_mysql
    4808. 

  4808. <ul>
    4809. 

  4809.   <li><?php bugfix(61207); ?> (PDO::nextRowset() after a multi-statement query doesn't
    4810. 

  4810.     always work).</li>
    4811. 

  4811.   <li><?php bugfix(61194); ?> (PDO should export compression flag with myslqnd).</li>
    4812. 

  4812. </ul></li>
    4813. 

  4813. </ul>
    4814. 

  4814. 

  4815. <ul>
    4816. 

  4816. <li>PDO_odbc
    4817. 

  4817. <ul>
    4818. 

  4818.   <li><?php bugfix(61212); ?> (PDO ODBC Segfaults on SQL_SUCESS_WITH_INFO).</li>
    4819. 

  4819. </ul></li>
    4820. 

  4820. </ul>
    4821. 

  4821. 

  4822. <ul>
    4823. 

  4823. <li>PDO_pgsql
    4824. 

  4824. <ul>
    4825. 

  4825.   <li><?php bugfix(61267); ?> (pdo_pgsql's PDO::exec() returns the number of SELECTed
    4826. 

  4826.     rows on postgresql &gt;= 9).</li>
    4827. 

  4827. </ul></li>
    4828. 

  4828. </ul>
    4829. 

  4829. 

  4830. <ul>
    4831. 

  4831. <li>PDO_Sqlite extension
    4832. 

  4832. <ul>
    4833. 

  4833.   <li>Add createCollation support.</li>
    4834. 

  4834. </ul></li>
    4835. 

  4835. </ul>
    4836. 

  4836. 

  4837. <ul>
    4838. 

  4838. <li>pgsql
    4839. 

  4839. <ul>
    4840. 

  4840.   <li><?php bugfix(60718); ?> (Compile problem with libpq (PostgreSQL 7.3 or less).</li>
    4841. 

  4841. </ul></li>
    4842. 

  4842. </ul>
    4843. 

  4843. 

  4844. <ul>
    4845. 

  4845. <li>Phar
    4846. 

  4846. <ul>
    4847. 

  4847.   <li><?php bugfix(61184); ?> (Phar::webPhar() generates headers with trailing NUL
    4848. 

  4848.     bytes).</li>
    4849. 

  4849. </ul></li>
    4850. 

  4850. </ul>
    4851. 

  4851. 

  4852. <ul>
    4853. 

  4853. <li>Readline
    4854. 

  4854. <ul>
    4855. 

  4855.   <li><?php bugfix(61088); ?> (Memory leak in readline_callback_handler_install).</li>
    4856. 

  4856.   <li>Add open_basedir checks to readline_write_history and readline_read_history.</li>
    4857. 

  4857. </ul></li>
    4858. 

  4858. </ul>
    4859. 

  4859. 

  4860. <ul>
    4861. 

  4861. <li>Reflection
    4862. 

  4862. <ul>
    4863. 

  4863.   <li><?php bugfix(61388); ?> (ReflectionObject:getProperties() issues invalid reads
    4864. 

  4864.     when get_properties returns a hash table with (inaccessible) dynamic
    4865. 

  4865.     numeric properties).</li>
    4866. 

  4866.   <li><?php bugfix(60968); ?> (Late static binding doesn't work with 
    4867. 

  4867.     ReflectionMethod::invokeArgs()).</li>
    4868. 

  4868. </ul></li>
    4869. 

  4869. </ul>
    4870. 

  4870. 

  4871. <ul>
    4872. 

  4872. <li>Session
    4873. 

  4873. <ul>
    4874. 

  4874.   <li><?php bugfix(60860); ?> (session.save_handler=user without defined function core
    4875. 

  4875.     dumps).</li>
    4876. 

  4876.   <li><?php bugfix(60634); ?> (Segmentation fault when trying to die() in 
    4877. 

  4877.     SessionHandler::write()).</li>
    4878. 

  4878. </ul></li>
    4879. 

  4879. </ul>
    4880. 

  4880. 

  4881. <ul>
    4882. 

  4882. <li>SOAP
    4883. 

  4883. <ul>
    4884. 

  4884.   <li><?php bugfix(61423); ?> (gzip compression fails).</li>
    4885. 

  4885.   <li><?php bugfix(60887); ?> (SoapClient ignores user_agent option and sends no
    4886. 

  4886.     User-Agent header).</li>
    4887. 

  4887.     <li><?php bugfix(60842); ?>, <?php bugfix(51775); ?> (Chunked response parsing error when 
    4888. 

  4888.     chunksize length line is &gt; 10 bytes).</li>
    4889. 

  4889.   <li><?php bugfix(49853); ?> (Soap Client stream context header option ignored).</li>
    4890. 

  4890. </ul></li>
    4891. 

  4891. </ul>
    4892. 

  4892. 

  4893. <ul>
    4894. 

  4894. <li>SPL
    4895. 

  4895. <ul>
    4896. 

  4896.   <li>Fixed memory leak when calling SplFileInfo's constructor twice.</li>
    4897. 

  4897.   <li><?php bugfix(61418); ?> (Segmentation fault when DirectoryIterator's or
    4898. 

  4898.     FilesystemIterator's iterators are requested more than once without
    4899. 

  4899.     having had its dtor callback called in between).</li>
    4900. 

  4900.   <li><?php bugfix(61347); ?> (inconsistent isset behavior of Arrayobject).</li>
    4901. 

  4901.   <li><?php bugfix(61326); ?> (ArrayObject comparison).</li>
    4902. 

  4902. </ul></li>
    4903. 

  4903. </ul>
    4904. 

  4904. 

  4905. <ul>
    4906. 

  4906. <li>SQLite3 extension
    4907. 

  4907. <ul>
    4908. 

  4908.   <li>Add createCollation() method.</li>
    4909. 

  4909. </ul></li>
    4910. 

  4910. </ul>
    4911. 

  4911. 

  4912. <ul>
    4913. 

  4913. <li>Streams
    4914. 

  4914. <ul>
    4915. 

  4915.   <li><?php bugfix(61371); ?> (stream_context_create() causes memory leaks on use
    4916. 

  4916.     streams_socket_create).</li>
    4917. 

  4917.   <li><?php bugfix(61253); ?> (Wrappers opened with errors concurrency problem on ZTS).</li>
    4918. 

  4918.   <li><?php bugfix(61115); ?> (stream related segfault on fatal error in
    4919. 

  4919.     php_stream_context_link).</li>
    4920. 

  4920.   <li><?php bugfix(60817); ?> (stream_get_line() reads from stream even when there is
    4921. 

  4921.     already sufficient data buffered). stream_get_line() now behaves more like
    4922. 

  4922.     fgets(), as is documented.</li>
    4923. 

  4923.   <li>Further fix for bug <?php bugfix(60455); ?> (stream_get_line misbehaves if EOF is not
    4924. 

  4924.     detected together with the last read).</li>
    4925. 

  4925.   <li><?php bugfix(60106); ?> (stream_socket_server silently truncates long unix
    4926. 

  4926.     socket paths).</li>
    4927. 

  4927. </ul></li>
    4928. 

  4928. </ul>
    4929. 

  4929. 

  4930. <ul>
    4931. 

  4931. <li>Tidy
    4932. 

  4932. <ul>
    4933. 

  4933.   <li><?php bugfix(54682); ?> (tidy null pointer dereference).</li>
    4934. 

  4934. </ul></li>
    4935. 

  4935. </ul>
    4936. 

  4936. 

  4937. <ul>
    4938. 

  4938. <li>XMLRPC
    4939. 

  4939. <ul>
    4940. 

  4940.   <li><?php bugfix(61264); ?> (xmlrpc_parse_method_descriptions leaks temporary
    4941. 

  4941.     variable).</li>
    4942. 

  4942.   <li><?php bugfix(61097); ?> (Memory leak in xmlrpc functions copying zvals).</li>
    4943. 

  4943. </ul></li>
    4944. 

  4944. </ul>
    4945. 

  4945. 

  4946. <ul>
    4947. 

  4947. <li>Zlib
    4948. 

  4948. <ul>
    4949. 

  4949.   <li><?php bugfix(61306); ?> (initialization of global inappropriate for ZTS).</li>
    4950. 

  4950.   <li><?php bugfix(61287); ?> (A particular string fails to decompress).</li>
    4951. 

  4951.   <li><?php bugfix(61139); ?> (gzopen leaks when specifying invalid mode).</li>
    4952. 

  4952. </ul></li>
    4953. 

  4953. </ul>
    4954. 

  4954. <!-- }}} --></section>
    4955. 

  4955. 

  4956. <section class="version" id="5.4.0"><!-- {{{ 5.4.0 -->
    4957. 

  4957. <h3>Version 5.4.0</h3>
    4958. 

  4958. <?php release_date('01-Mar-2012'); ?>
    4959. 

  4959. 

  4960. <ul>
    4961. 

  4961. <li>autoconf 2.59+ is now supported (and required) for generating the
    4962. 

  4962.   configure script with ./buildconf. Autoconf 2.60+ is desirable
    4963. 

  4963.   otherwise the configure help order may be incorrect.</li>
    4964. 

  4964. </ul>
    4965. 

  4965. <ul>
    4966. 

  4966.     <li>Removed legacy features
    4967. 

  4967. <ul>
    4968. 

  4968.   <li>break/continue $var syntax.</li>
    4969. 

  4969.   <li>Safe mode and all related ini options.</li>
    4970. 

  4970.   <li>register_globals and register_long_arrays ini options.</li>
    4971. 

  4971.   <li>import_request_variables().</li>
    4972. 

  4972.   <li>allow_call_time_pass_reference.</li>
    4973. 

  4973.   <li>define_syslog_variables ini option and its associated function.</li>
    4974. 

  4974.   <li>highlight.bg ini option.</li>
    4975. 

  4975.   <li>Session bug compatibility mode (session.bug_compat_42 and
    4976. 

  4976.     session.bug_compat_warn ini options).</li>
    4977. 

  4977.   <li>session_is_registered(), session_register() and session_unregister()
    4978. 

  4978.     functions.</li>
    4979. 

  4979.   <li>y2k_compliance ini option.</li>
    4980. 

  4980.   <li>magic_quotes_gpc, magic_quotes_runtime and magic_quotes_sybase
    4981. 

  4981.     ini options. get_magic_quotes_gpc, get_magic_quotes_runtime are kept
    4982. 

  4982.     but always return false, set_magic_quotes_runtime raises an
    4983. 

  4983.     E_CORE_ERROR.</li>
    4984. 

  4984.   <li>Removed support for putenv("TZ=..") for setting the timezone.</li>
    4985. 

  4985.   <li>Removed the timezone guessing algorithm in case the timezone isn't set with
    4986. 

  4986.     date.timezone or date_default_timezone_set(). Instead of a guessed
    4987. 

  4987.     timezone, "UTC" is now used instead.</li>
    4988. 

  4988. </ul></li>
    4989. 

  4989. </ul>
    4990. 

  4990. 

  4991. <ul>
    4992. 

  4992. <li>Moved extensions to PECL
    4993. 

  4993. <ul>
    4994. 

  4994.   <li>ext/sqlite.  (Note: the ext/sqlite3 and ext/pdo_sqlite extensions are
    4995. 

  4995.     not affected)</li>
    4996. 

  4996. </ul></li>
    4997. 

  4997. </ul>
    4998. 

  4998. 

  4999. <ul>
    5000. 

  5000. <li>General improvements
    5001. 

  5001. <ul>
    5002. 

  5002.   <li>Added short array syntax support ([1,2,3]), see UPGRADING guide for full
    5003. 

  5003.     details.</li>
    5004. 

  5004.   <li>Added binary numbers format (0b001010).</li>
    5005. 

  5005.   <li>Added support for Class::{expr}() syntax.</li>
    5006. 

  5006.   <li>Added multibyte support by default. Previously php had to be compiled
    5007. 

  5007.     with --enable-zend-multibyte. Now it can be enabled or disabled through
    5008. 

  5008.     zend.multibyte directive in php.ini.</li>
    5009. 

  5009.   <li>Removed compile time dependency from ext/mbstring.</li>
    5010. 

  5010.   <li>Added support for Traits.</li>
    5011. 

  5011.   <li>Added closure $this support back.</li>
    5012. 

  5012.   <li>Added array dereferencing support.</li>
    5013. 

  5013.   <li>Added callable typehint.</li>
    5014. 

  5014.   <li>Added indirect method call through array. <?php bugl(47160); ?>.</li>
    5015. 

  5015.   <li>Added DTrace support.</li>
    5016. 

  5016.   <li>Added class member access on instantiation (e.g. (new foo)-&gt;bar()) support.</li>
    5017. 

  5017.   <li>&lt;?= is now always available regardless of the short_open_tag setting.</li>
    5018. 

  5018.   <li>Implemented Zend Signal Handling (configurable option --enable-zend-signals, 
    5019. 

  5019.     off by default).</li>
    5020. 

  5020.   <li>Improved output layer, see README.NEW-OUTPUT-API for internals.</li>
    5021. 

  5021.   <li>Improved unix build system to allow building multiple PHP binary SAPIs and
    5022. 

  5022.     one SAPI module the same time. <?php bugl(53271); ?>, <?php bugl(52419); ?>.</li>
    5023. 

  5023.   <li>Implemented closure rebinding as parameter to bindTo.</li>
    5024. 

  5024.   <li>Improved the warning message of incompatible arguments.</li>
    5025. 

  5025.   <li>Improved ternary operator performance when returning arrays.
    5026. 

  5026.   <li>Changed error handlers to only generate docref links when the docref_root 
    5027. 

  5027.     INI setting is not empty.</li>
    5028. 

  5028.   <li>Changed silent conversion of array to string to produce a notice.</li>
    5029. 

  5029.   <li>Changed default value of "default_charset" php.ini option from ISO-8859-1 to
    5030. 

  5030. 	UTF-8.</li>
    5031. 

  5031.   <li>Changed silent casting of null/''/false into an Object when adding
    5032. 

  5032. 	a property into a warning.</li>
    5033. 

  5033.   <li>Changed E_ALL to include E_STRICT.</li>
    5034. 

  5034.   <li>Disabled windows CRT warning by default, can be enabled again using the ini
    5035. 

  5035.     directive windows_show_crt_warnings.</li>
    5036. 

  5036.   <li><?php bugfix(55378); ?>: Binary number literal returns float number though its
    5037. 

  5037.     value is small enough.</li>
    5038. 

  5038. </ul></li>
    5039. 

  5039. </ul>
    5040. 

  5040. 

  5041. <ul>
    5042. 

  5042. <li>Improved Zend Engine memory usage
    5043. 

  5043. <ul>
    5044. 

  5044.   <li>Improved parse error messages.</li>
    5045. 

  5045.   <li>Replaced zend_function.pass_rest_by_reference by
    5046. 

  5046.     ZEND_ACC_PASS_REST_BY_REFERENCE in zend_function.fn_flags.</li>
    5047. 

  5047.   <li>Replaced zend_function.return_reference by ZEND_ACC_RETURN_REFERENCE
    5048. 

  5048.     in zend_function.fn_flags.</li>
    5049. 

  5049.   <li>Removed zend_arg_info.required_num_args as it was only needed for internal
    5050. 

  5050.     functions. Now the first arg_info for internal functions (which has special
    5051. 

  5051.     meaning) is represented by zend_internal_function_info structure.</li>
    5052. 

  5052.   <li>Moved zend_op_array.size, size_var, size_literal, current_brk_cont,
    5053. 

  5053.     backpatch_count into CG(context) as they are used only during compilation.</li>
    5054. 

  5054.   <li>Moved zend_op_array.start_op into EG(start_op) as it's used only for
    5055. 

  5055.     'interactive' execution of single top-level op-array.</li>
    5056. 

  5056.   <li>Replaced zend_op_array.done_pass_two by ZEND_ACC_DONE_PASS_TWO in
    5057. 

  5057.     zend_op_array.fn_flags.</li>
    5058. 

  5058.   <li>op_array.vars array is trimmed (reallocated) during pass_two.
    5059. 

  5059.   <li>Replaced zend_class_entry.constants_updated by ZEND_ACC_CONSTANTS_UPDATED
    5060. 

  5060.     in zend_class_entry.ce_flags.</li>
    5061. 

  5061.   <li>Reduced the size of zend_class_entry by sharing the same memory space
    5062. 

  5062.     by different information for internal and user classes.
    5063. 

  5063.     See zend_class_entry.info union.</li>
    5064. 

  5064.   <li>Reduced size of temp_variable.</li>
    5065. 

  5065. </ul></li>
    5066. 

  5066. </ul>
    5067. 

  5067. 

  5068. <ul>
    5069. 

  5069. <li>Improved Zend Engine, performance tweaks and optimizations
    5070. 

  5070. <ul>
    5071. 

  5071.   <li>Inlined most probable code-paths for arithmetic operations directly into
    5072. 

  5072.     executor.</li>
    5073. 

  5073.   <li>Eliminated unnecessary iterations during request startup/shutdown.</li>
    5074. 

  5074.   <li>Changed $GLOBALS into a JIT autoglobal, so it's initialized only if used.
    5075. 

  5075.     (this may affect opcode caches!)</li>
    5076. 

  5076.   <li>Improved performance of @ (silence) operator.</li>
    5077. 

  5077.   <li>Simplified string offset reading. $str[1][0] is now a legal construct.</li>
    5078. 

  5078.   <li>Added caches to eliminate repeatable run-time bindings of functions,
    5079. 

  5079.     classes, constants, methods and properties.</li>
    5080. 

  5080.   <li>Added concept of interned strings. All strings constants known at compile
    5081. 

  5081.     time are allocated in a single copy and never changed.</li>
    5082. 

  5082.   <li>ZEND_RECV now always has IS_CV as its result.</li>
    5083. 

  5083.   <li>ZEND_CATCH now has to be used only with constant class names.</li>
    5084. 

  5084.   <li>ZEND_FETCH_DIM_? may fetch array and dimension operands in different order.</li>
    5085. 

  5085.   <li>Simplified ZEND_FETCH_*_R operations. They can't be used with the
    5086. 

  5086.     EXT_TYPE_UNUSED flag any more. This is a very rare and useless case.
    5087. 

  5087.     ZEND_FREE might be required after them instead.</li>
    5088. 

  5088.   <li>Split ZEND_RETURN into two new instructions ZEND_RETURN and
    5089. 

  5089.     ZEND_RETURN_BY_REF.</li>
    5090. 

  5090.   <li>Optimized access to global constants using values with pre-calculated
    5091. 

  5091.     hash_values from the literals table.</li>
    5092. 

  5092.   <li>Optimized access to static properties using executor specialization.
    5093. 

  5093.     A constant class name may be used as a direct operand of ZEND_FETCH_*
    5094. 

  5094.     instruction without previous ZEND_FETCH_CLASS.</li>
    5095. 

  5095.   <li>zend_stack and zend_ptr_stack allocation is delayed until actual usage.</li>
    5096. 

  5096. </ul></li>
    5097. 

  5097. </ul>
    5098. 

  5098. 

  5099. <ul>
    5100. 

  5100. <li>Other improvements to Zend Engine
    5101. 

  5101. <ul>
    5102. 

  5102.   <li>Added an optimization which saves memory and emalloc/efree calls for empty
    5103. 

  5103.     HashTables.</li>
    5104. 

  5104.   <li>Added ability to reset user opcode handlers.</li>
    5105. 

  5105.   <li>Changed the structure of op_array.opcodes. The constant values are moved from
    5106. 

  5106.     opcode operands into a separate literal table.</li>
    5107. 

  5107.   <li>Fixed (disabled) inline-caching for ZEND_OVERLOADED_FUNCTION methods.</li>
    5108. 

  5108.   <li><?php bugfix(43200); ?> (Interface implementation / inheritence not possible in
    5109. 

  5109.     abstract classes).</li>
    5110. 

  5110. </ul></li>
    5111. 

  5111. </ul>
    5112. 

  5112. 

  5113. <ul>
    5114. 

  5114. <li>Improved core functions
    5115. 

  5115. <ul>
    5116. 

  5116.   <li>Added optional argument to debug_backtrace() and debug_print_backtrace()
    5117. 

  5117.     to limit the amount of stack frames returned.</li>
    5118. 

  5118.   <li>Added hex2bin() function.</li>
    5119. 

  5119.   <li>number_format() no longer truncates multibyte decimal points and thousand
    5120. 

  5120.     separators to the first byte. <?php bugl(53457); ?>.</li>
    5121. 

  5121.   <li>Added support for object references in recursive serialize() calls.
    5122. 

  5122.     <?php bugl(36424); ?>.</li>
    5123. 

  5123.   <li>Added support for SORT_NATURAL and SORT_FLAG_CASE in array
    5124. 

  5124.     sort functions (sort, rsort, ksort, krsort, asort, arsort and
    5125. 

  5125.     array_multisort). <?php bugl(55158); ?>.</li>
    5126. 

  5126.   <li>Added stream metadata API support and stream_metadata() stream class
    5127. 

  5127.     handler.</li>
    5128. 

  5128.   <li>User wrappers can now define a stream_truncate() method that responds
    5129. 

  5129.     to truncation, e.g. through ftruncate(). <?php bugl(53888); ?>.</li>
    5130. 

  5130.   <li>Improved unserialize() performance.</li>
    5131. 

  5131.   <li>Changed array_combine() to return empty array instead of FALSE when both
    5132. 

  5132.     parameter arrays are empty. <?php bugl(34857); ?>.</li>
    5133. 

  5133.   <li>Fixed invalid free in call_user_method() function.</li>
    5134. 

  5134.   <li>Fixed crypt_blowfish handling of 8-bit characters. (CVE-2011-2483).</li>
    5135. 

  5135.   <li><?php bugfix(61095); ?> (Incorect lexing of 0x00*+&lt;NUM&gt;).</li>
    5136. 

  5136.   <li><?php bugfix(60965); ?> (Buffer overflow on htmlspecialchars/entities with
    5137. 

  5137.     $double=false).</li>
    5138. 

  5138.   <li><?php bugfix(60895); ?> (Possible invalid handler usage in windows random
    5139. 

  5139.     functions).</li>
    5140. 

  5140.   <li><?php bugfix(60879); ?> (unserialize() Does not invoke __wakeup() on object).</li>
    5141. 

  5141.   <li><?php bugfix(60825); ?> (Segfault when running symfony 2 tests).</li>
    5142. 

  5142.   <li><?php bugfix(60809); ?> (TRAITS - PHPDoc Comment Style Bug).</li>
    5143. 

  5143.   <li><?php bugfix(60627); ?> (httpd.worker segfault on startup with php_value).</li>
    5144. 

  5144.   <li><?php bugfix(60613); ?> (Segmentation fault with $cls-&gt;{expr}() syntax).</li>
    5145. 

  5145.   <li><?php bugfix(60611); ?> (Segmentation fault with Cls::{expr}() syntax).</li>
    5146. 

  5146.   <li><?php bugfix(60558); ?> (Invalid read and writes).</li>
    5147. 

  5147.   <li><?php bugfix(60536); ?> (Traits Segfault).</li>
    5148. 

  5148.   <li><?php bugfix(60444); ?> (Segmentation fault with include &amp; class extending).</li>
    5149. 

  5149.   <li><?php bugfix(60362); ?> (non-existent sub-sub keys should not have values).</li>
    5150. 

  5150.   <li><?php bugfix(60350); ?> (No string escape code for ESC (ascii 27), normally \e).</li>
    5151. 

  5151.   <li><?php bugfix(60321); ?> (ob_get_status(true) no longer returns an array when
    5152. 

  5152.     buffer is empty).</li>
    5153. 

  5153.   <li><?php bugfix(60282); ?> (Segfault when using ob_gzhandler() with open buffers).</li>
    5154. 

  5154.   <li><?php bugfix(60240); ?> (invalid read/writes when unserializing specially crafted
    5155. 

  5155.     strings).</li>
    5156. 

  5156.   <li><?php bugfix(60227); ?> (header() cannot detect the multi-line header with
    5157. 

  5157.      CR(0x0D)).</li>
    5158. 

  5158.   <li><?php bugfix(60174); ?> (Notice when array in method prototype error).</li>
    5159. 

  5159.   <li><?php bugfix(60169); ?> (Conjunction of ternary and list crashes PHP).</li>
    5160. 

  5160.   <li><?php bugfix(60120); ?> (proc_open's streams may hang with stdin/out/err when the data exceeds or is equal to 2048 bytes).
    5161. 

  5161.   <li><?php bugfix(60099); ?> (__halt_compiler() works in braced namespaces).</li>
    5162. 

  5162.   <li><?php bugfix(60038); ?> (SIGALRM cause segfault in php_error_cb).</li>
    5163. 

  5163.   <li><?php bugfix(55874); ?> (GCC does not provide __sync_fetch_and_add on some archs).</li>
    5164. 

  5164.   <li><?php bugfix(55871); ?> (Interruption in substr_replace()).</li>
    5165. 

  5165.   <li><?php bugfix(55825); ?> (Missing initial value of static locals in trait methods).</li>
    5166. 

  5166.   <li><?php bugfix(55801); ?> (Behavior of unserialize has changed).</li>
    5167. 

  5167.   <li><?php bugfix(55622); ?> (memory corruption in parse_ini_string).</li>
    5168. 

  5168.   <li><?php bugfix(55758); ?> (Digest Authenticate missed in 5.4) .</li>
    5169. 

  5169.   <li><?php bugfix(55748); ?> (multiple NULL Pointer Dereference with zend_strndup())
    5170. 

  5170.     (CVE-2011-4153).</li>
    5171. 

  5171.   <li><?php bugfix(55749); ?> (TOCTOU issue in getenv() on Windows builds).</li>
    5172. 

  5172.   <li><?php bugfix(55707); ?> (undefined reference to `__sync_fetch_and_add_4' on Linux
    5173. 

  5173.     parisc).</li>
    5174. 

  5174.   <li><?php bugfix(55705); ?> (Omitting a callable typehinted argument causes a segfault).</li>
    5175. 

  5175.   <li><?php bugfix(55475); ?> (is_a() triggers autoloader, new optional 3rd argument to
    5176. 

  5176.     is_a and is_subclass_of).</li>
    5177. 

  5177.   <li><?php bugfix(55471); ?> (ZTS build broken with dtrace).</li>
    5178. 

  5178.   <li><?php bugfix(55124); ?> (recursive mkdir fails with current (dot) directory in path).</li>
    5179. 

  5179.   <li><?php bugfix(55084); ?> (Function registered by header_register_callback is
    5180. 

  5180.     called only once per process).</li>
    5181. 

  5181.   <li>Implement <?php bugl(54514); ?> (Get php binary path during script execution).</li>
    5182. 

  5182.   <li><?php bugfix(52624); ?> (tempnam() by-pass open_basedir with nonexistent
    5183. 

  5183.     directory).</li>
    5184. 

  5184.   <li><?php bugfix(52211); ?> (iconv() returns part of string on error).</li>
    5185. 

  5185.   <li><?php bugfix(51860); ?> (Include fails with toplevel symlink to /).</li>
    5186. 

  5186. </ul></li>
    5187. 

  5187. </ul>
    5188. 

    5189. 

  5189. <ul>
    5190. 

  5190. <li>Improved generic SAPI support
    5191. 

  5191. <ul>
    5192. 

  5192.   <li>Added $_SERVER['REQUEST_TIME_FLOAT'] to include microsecond precision.</li>
    5193. 

  5193.   <li>Added max_input_vars directive to prevent attacks based on hash collisions.</li>
    5194. 

  5194.   <li>Added header_register_callback() which is invoked immediately
    5195. 

  5195.     prior to the sending of headers and after default headers have
    5196. 

  5196.     been added.</li>
    5197. 

  5197.   <li>Added http_response_code() function. <?php bugl(52555); ?>.</li>
    5198. 

  5198.   <li><?php bugfix(55500); ?> (Corrupted $_FILES indices lead to security concern).</li>
    5199. 

  5199.   <li><?php bugfix(54374); ?> (Insufficient validating of upload name leading to 
    5200. 

  5200.     corrupted $_FILES indices).</li>
    5201. 

  5201. </ul></li>
    5202. 

  5202. </ul>
    5203. 

    5204. 

  5204. <ul>
    5205. 

  5205. <li>Improved Apache SAPI
    5206. 

  5206. <ul>
    5207. 

  5207.   <li><?php bugfix(60205); ?> (possible integer overflow in content_length).</li>
    5208. 

  5208. </ul></li>
    5209. 

  5209. </ul>
    5210. 

    5211. 

  5211. <ul>
    5212. 

  5212. <li>Improved CLI SAPI
    5213. 

  5213. <ul>
    5214. 

  5214.   <li>Added friendly log messages. <?php bugl(55109); ?>.</li>
    5215. 

  5215.   <li>Added built-in web server that is intended for testing purpose.</li>
    5216. 

  5216.   <li>Added command line option --rz &lt;name&gt; which shows information of the
    5217. 

  5217.     named Zend extension.</li>
    5218. 

  5218.   <li>Interactive readline shell improvements
    5219. 

  5219.   <ul>
    5220. 

  5220.     <li>Added "cli.pager" php.ini setting to set a pager for output.</li>
    5221. 

  5221.     <li>Added "cli.prompt" php.ini setting to configure the shell prompt.</li>
    5222. 

  5222.     <li>Added shortcut #inisetting=value to change ini settings at run-time.</li>
    5223. 

  5223.     <li>Changed shell not to terminate on fatal errors.</li>
    5224. 

  5224.     <li>Interactive shell works with shared readline extension. <?php bugl(53878); ?>.</li>
    5225. 

  5225.   </ul></li>
    5226. 

  5226.   <li><?php bugfix(60591); ?> (Memory leak when access a non-exists file).</li>
    5227. 

  5227.   <li><?php bugfix(60523); ?> (PHP Errors are not reported in browsers using built-in
    5228. 

  5228.     SAPI).</li>
    5229. 

  5229.   <li><?php bugfix(60477); ?> (Segfault after two multipart/form-data POST requests,
    5230. 

  5230.     one 200 RQ and one 404).</li>
    5231. 

  5231.   <li>Implement <?php bugl(60390); ?> (Missing $_SERVER['SERVER_PORT']).</li>
    5232. 

  5232.   <li><?php bugfix(60180); ?> ($_SERVER["PHP_SELF"] incorrect).</li>
    5233. 

  5233.   <li><?php bugfix(60159); ?> (Router returns false, but POST is not passed to requested
    5234. 

  5234.     resource).</li>
    5235. 

  5235.   <li><?php bugfix(60146); ?> (Last 2 lines of page not being output).</li>
    5236. 

  5236.   <li><?php bugfix(60115); ?> (memory definitely lost in cli server).</li>
    5237. 

  5237.   <li><?php bugfix(60112); ?> (If URI does not contain a file, index.php is not served).</li>
    5238. 

  5238.   <li><?php bugfix(55759); ?> (memory leak when using built-in server).</li>
    5239. 

  5239.   <li><?php bugfix(55755); ?> (SegFault when outputting header WWW-Authenticate).</li>
    5240. 

  5240.   <li><?php bugfix(55747); ?> (request headers missed in $_SERVER).</li>
    5241. 

  5241.   <li><?php bugfix(55726); ?> (Changing the working directory makes router script
    5242. 

  5242.     inaccessible).</li>
    5243. 

  5243.   <li><?php bugfix(55463); ?> (cli-server missing _SERVER[REMOTE_ADDR]).</li>
    5244. 

  5244.   <li><?php bugfix(55450); ?> (Built in web server not accepting file uploads).</li>
    5245. 

  5245.   <li><?php bugfix(55423); ?> (cli-server could not output correctly in some case).</li>
    5246. 

  5246. </ul></li>
    5247. 

  5247. </ul>
    5248. 

    5249. 

  5249. <ul>
    5250. 

  5250. <li>Improved CGI/FastCGI SAPI
    5251. 

  5251. <ul>
    5252. 

  5252.   <li>Added apache compatible functions: apache_child_terminate(),
    5253. 

  5253.     getallheaders(), apache_request_headers() and apache_response_headers().</li>
    5254. 

  5254.   <li>Improved performance of FastCGI request parsing.</li>
    5255. 

  5255.   <li>Fixed reinitialization of SAPI callbacks after php_module_startup().</li>
    5256. 

  5256. </ul></li>
    5257. 

  5257. </ul>
    5258. 

    5259. 

  5259. <ul>
    5260. 

  5260. <li>Improved PHP-FPM SAPI
    5261. 

  5261. <ul>
    5262. 

  5262.   <li>Added partial syslog support (on error_log only). <?php bugl(52052); ?>.</li>
    5263. 

  5263.   <li>Added .phar to default authorized extensions.</li>
    5264. 

  5264.   <li>Added process.max to control the number of process FPM can fork. <?php bugl(55166); ?>.</li>
    5265. 

  5265.   <li>Dropped restriction of not setting the same value multiple times, the last
    5266. 

  5266.     one holds.</li>
    5267. 

  5267.   <li>Lowered default value for Process Manager. <?php bugl(54098); ?>.</li>
    5268. 

  5268.   <li>Enhanced security by limiting access to user defined extensions.
    5269. 

  5269.     <?php bugl(55181); ?>.</li>
    5270. 

  5270.   <li>Enhanced error log when the primary script can't be open. <?php bugl(60199); ?>.</li>
    5271. 

  5271.   <li>Removed EXPERIMENTAL flag.</li>
    5272. 

  5272.   <li><?php bugfix(60659); ?> (FPM does not clear auth_user on request accept).</li>
    5273. 

  5273.   <li><?php bugfix(60629); ?> (memory corruption when web server closed the fcgi fd).</li>
    5274. 

  5274. </ul></li>
    5275. 

  5275. </ul>
    5276. 

    5277. 

  5277. <ul>
    5278. 

  5278. <li>Improved Litespeed SAPI
    5279. 

  5279. <ul>
    5280. 

  5280.   <li><?php bugfix(55769); ?> (Make Fails with "Missing Separator" error).</li>
    5281. 

  5281. </ul></li>
    5282. 

  5282. </ul>
    5283. 

    5284. 

  5284. <ul>
    5285. 

  5285. <li>Improved BCmath extension
    5286. 

  5286. <ul>
    5287. 

  5287.    <li><?php bugfix(60377); ?> (bcscale related crashes on 64bits platforms).</li>
    5288. 

  5288. </ul></li>
    5289. 

  5289. </ul>
    5290. 

  5290. <ul>
    5291. 

  5291. <li>Improved CURL extension
    5292. 

  5292. <ul>
    5293. 

  5293.   <li>Added support for CURLOPT_MAX_RECV_SPEED_LARGE and
    5294. 

  5294.     CURLOPT_MAX_SEND_SPEED_LARGE. <?php bugl(51815); ?>.</li>
    5295. 

  5295.   <li><?php bugfix(60439); ?> (curl_copy_handle segfault when used with
    5296. 

  5296.     CURLOPT_PROGRESSFUNCTION).</li>
    5297. 

  5297. </ul></li>
    5298. 

  5298. </ul>
    5299. 

  5299. <ul>
    5300. 

  5300. <li>Improved Date extension
    5301. 

  5301. <ul>
    5302. 

  5302.   <li>Added the + modifier to parseFromFormat to allow trailing text in the
    5303. 

  5303.     string to parse without throwing an error.</li>
    5304. 

  5304. </ul></li>
    5305. 

  5305. </ul>
    5306. 

  5306. <ul>
    5307. 

  5307. <li>Improved DBA extension
    5308. 

  5308. <ul>
    5309. 

  5309.   <li>Added Tokyo Cabinet abstract DB support.</li>
    5310. 

  5310.   <li>Added Berkeley DB 5 support.</li>
    5311. 

  5311. </ul></li>
    5312. 

  5312. </ul>
    5313. 

  5313. <ul>
    5314. 

  5314. <li>Improved DOM extension
    5315. 

  5315. <ul>
    5316. 

  5316.   <li>Added the ability to pass options to loadHTML.</li>
    5317. 

  5317. </ul></li>
    5318. 

  5318. </ul>
    5319. 

  5319. <ul>
    5320. 

  5320. <li>Improved filesystem functions
    5321. 

  5321. <ul>
    5322. 

  5322.   <li>scandir() now accepts SCANDIR_SORT_NONE as a possible sorting_order value.
    5323. 

  5323.     <?php bugl(53407); ?>.</li>
    5324. 

  5324. </ul></li>
    5325. 

  5325. </ul>
    5326. 

  5326. <ul>
    5327. 

  5327. <li>Improved fileinfo extension
    5328. 

  5328. <ul>
    5329. 

  5329.   <li>Fixed possible memory leak in finfo_open().</li>
    5330. 

  5330.   <li>Fixed memory leak when calling the Finfo constructor twice.</li>
    5331. 

  5331.   <li><?php bugfix(60094); ?> (C++ comment fails in c89).</li>
    5332. 

  5332. </ul></li>
    5333. 

  5333. </ul>
    5334. 

  5334. <ul>
    5335. 

  5335. <li>Improved HASH extension
    5336. 

  5336. <ul>
    5337. 

  5337.   <li>Added Jenkins's one-at-a-time hash support.</li>
    5338. 

  5338.   <li>Added FNV-1 hash support.</li>
    5339. 

  5339.   <li>Made Adler32 algorithm faster. <?php bugl(53213); ?>.</li>
    5340. 

  5340.   <li>Removed Salsa10/Salsa20, which are actually stream ciphers.</li>
    5341. 

  5341.   <li><?php bugfix(60221); ?> (Tiger hash output byte order).</li>
    5342. 

  5342. </ul></li>
    5343. 

  5343. </ul>
    5344. 

  5344. <ul>
    5345. 

  5345. <li>Improved intl extension
    5346. 

  5346. <ul>
    5347. 

  5347.   <li>Added Spoofchecker class, allows checking for visibly confusable characters and
    5348. 

  5348.     other security issues.</li>
    5349. 

  5349.   <li>Added Transliterator class, allowing transliteration of strings. </li>
    5350. 

  5350.   <li>Added support for UTS #46.</li>
    5351. 

  5351.   <li>Fixed memory leak in several Intl locale functions.</li>
    5352. 

  5352.   <li>Fixed build on Fedora 15 / Ubuntu 11.</li>
    5353. 

  5353.   <li><?php bugfix(55562); ?> (grapheme_substr() returns false on big length).</li>
    5354. 

  5354. </ul></li>
    5355. 

  5355. </ul>
    5356. 

  5356. <ul>
    5357. 

  5357. <li>Improved JSON extension
    5358. 

  5358. <ul>
    5359. 

  5359.   <li>Added new json_encode() option JSON_UNESCAPED_UNICODE. <?php bugl(53946); ?>.</li>
    5360. 

  5360.   <li>Added JsonSerializable interface.</li>
    5361. 

  5361.   <li>Added JSON_BIGINT_AS_STRING, extended json_decode() sig with $options.</li>
    5362. 

  5362.   <li>Added support for JSON_NUMERIC_CHECK option in json_encode() that converts
    5363. 

  5363.     numeric strings to integers.</li>
    5364. 

  5364.   <li>Added new json_encode() option JSON_UNESCAPED_SLASHES. <?php bugl(49366); ?>.</li>
    5365. 

  5365.   <li>Added new json_encode() option JSON_PRETTY_PRINT. <?php bugl(44331); ?>.</li>
    5366. 

  5366. </ul></li>
    5367. 

  5367. </ul>
    5368. 

  5368. <ul>
    5369. 

  5369. <li>Improved LDAP extension
    5370. 

  5370. <ul>
    5371. 

  5371.   <li>Added paged results support. <?php bugl(42060); ?>.</li>
    5372. 

  5372. </ul></li>
    5373. 

  5373. </ul>
    5374. 

  5374. <ul>
    5375. 

  5375. <li>Improved mbstring extension
    5376. 

  5376. <ul>
    5377. 

  5377.   <li>Added Shift_JIS/UTF-8 Emoji (pictograms) support.</li>
    5378. 

  5378.   <li>Added JIS X0213:2004 (Shift_JIS-2004, EUC-JP-2004, ISO-2022-JP-2004)
    5379. 

  5379.     support.</li>
    5380. 

  5380.   <li>Ill-formed UTF-8 check for security enhancements.</li>
    5381. 

  5381.   <li>Added MacJapanese (Shift_JIS) and gb18030 encoding support.</li>
    5382. 

  5382.   <li>Added encode/decode in hex format to mb_[en|de]code_numericentity().</li>
    5383. 

  5383.   <li>Added user JIS X0213:2004 (Shift_JIS-2004, EUC-JP-2004, ISO-2022-JP-2004)
    5384. 

  5384.     support.</li>
    5385. 

  5385.   <li>Added the user defined area for CP936 and CP950.</li>
    5386. 

  5386.   <li>Fixed possible crash in mb_ereg_search_init() using empty pattern.</li>
    5387. 

  5387.   <li><?php bugfix(60306); ?> (Characters lost while converting from cp936 to utf8).</li>
    5388. 

  5388. </ul></li>
    5389. 

  5389. </ul>
    5390. 

  5390. <ul>
    5391. 

  5391. <li>Improved MS SQL extension
    5392. 

  5392. <ul>
    5393. 

  5393.   <li><?php bugfix(60267); ?> (Compile failure with freetds 0.91).</li>
    5394. 

  5394. </ul></li>
    5395. 

  5395. </ul>
    5396. 

  5396. <ul>
    5397. 

  5397. <li>Improved MySQL extensions
    5398. 

  5398. <ul>
    5399. 

  5399.   <li>MySQL: Deprecated mysql_list_dbs(). <?php bugl(50667); ?>.</li>
    5400. 

  5400.   <li>mysqlnd: Added named pipes support. <?php bugl(48082); ?>.</li>
    5401. 

  5401.   <li>MySQLi: Added iterator support in MySQLi. mysqli_result implements
    5402. 

  5402.     Traversable.</li>
    5403. 

  5403.   <li>PDO_mysql: Removed support for linking with MySQL client libraries older
    5404. 

  5404.     than 4.1.</li>
    5405. 

  5405.   <li>ext/mysql, mysqli and pdo_mysql now use mysqlnd by default.</li>
    5406. 

  5406.   <li><?php bugfix(55473); ?> (mysql_pconnect leaks file descriptors on reconnect). </li>
    5407. 

  5407.   <li><?php bugfix(55653); ?> (PS crash with libmysql when binding same variable as 
    5408. 

  5408.     param and out).</li>
    5409. 

  5409. </ul></li>
    5410. 

  5410. </ul>
    5411. 

  5411. <ul>
    5412. 

  5412. <li>Improved OpenSSL extension
    5413. 

  5413. <ul>
    5414. 

  5414.   <li>Added AES support. <?php bugl(48632); ?>.</li>
    5415. 

  5415.   <li>Added a "no_ticket" SSL context option to disable the SessionTicket TLS
    5416. 

  5416.     extension. <?php bugl(53447); ?>.</li>
    5417. 

  5417.   <li>Added no padding option to openssl_encrypt()/openssl_decrypt().</li>
    5418. 

  5418.   <li>Use php's implementation for Windows Crypto API in
    5419. 

  5419.     openssl_random_pseudo_bytes.</li>
    5420. 

  5420.   <li>On error in openssl_random_pseudo_bytes() made sure we set strong result
    5421. 

  5421.     to false.</li>
    5422. 

  5422.   <li>Fixed segfault with older versions of OpenSSL.</li>
    5423. 

  5423.   <li>Fixed possible attack in SSL sockets with SSL 3.0 / TLS 1.0.
    5424. 

  5424.     CVE-2011-3389.</li>
    5425. 

  5425.   <li><?php bugfix(61124); ?> (Crash when decoding an invalid base64 encoded string).</li>
    5426. 

  5426.   <li><?php bugfix(60279); ?> (Fixed NULL pointer dereference in
    5427. 

  5427.     stream_socket_enable_crypto, case when ssl_handle of session_stream is not
    5428. 

  5428.     initialized.</li>
    5429. 

  5429. </ul></li>
    5430. 

  5430. </ul>
    5431. 

  5431. <ul>
    5432. 

  5432. <li>Improved Oracle Database extension (OCI8)
    5433. 

  5433. <ul>
    5434. 

  5434.   <li>Increased maximum Oracle error message buffer length for new 11.2.0.3 size.</li>
    5435. 

  5435.   <li>Improved internal initalization failure error messages.</li>
    5436. 

  5436.   <li><?php bugfix(59985); ?> (show normal warning text for OCI_NO_DATA).</li>
    5437. 

  5437. </ul></li>
    5438. 

  5438. </ul>
    5439. 

  5439. <ul>
    5440. 

  5440. <li>Improved PDO
    5441. 

  5441. <ul>
    5442. 

  5442.   <li>Fixed PDO objects binary incompatibility.</li>
    5443. 

  5443. </ul></li>
    5444. 

  5444. </ul>
    5445. 

  5445. <ul>
    5446. 

  5446. <li>PDO DBlib driver
    5447. 

  5447. <ul>
    5448. 

  5448.   <li>Added nextRowset support.</li>
    5449. 

  5449.   <li><?php bugfix(60033); ?> (Incorrectly merged PDO dblib patches break
    5450. 

  5450.     uniqueidentifier column type).</li>
    5451. 

  5451.   <li><?php bugfix(50755); ?> (PDO DBLIB Fails with OOM).</li>
    5452. 

  5452. </ul></li>
    5453. 

  5453. </ul>
    5454. 

  5454. <ul>
    5455. 

  5455. <li>Improved Pdo Firebird driver
    5456. 

  5456. <ul>
    5457. 

  5457.   <li><?php bugfix(53280); ?> (segfaults if query column count less than param count). </li>
    5458. 

  5458.   <li><?php bugfix(48877); ?> ("bindValue" and "bindParam" do not work for PDO Firebird).</li>
    5459. 

  5459.   <li><?php bugfix(47415); ?> (segfaults when passing lowercased column name to 
    5460. 

  5460.     bindColumn).</li>
    5461. 

  5461. </ul></li>
    5462. 

  5462. </ul>
    5463. 

  5463. <ul>
    5464. 

  5464. <li>Improved PostgreSQL extension
    5465. 

  5465. <ul>
    5466. 

  5466.   <li>Added support for "extra" parameter for PGNotify().</li>
    5467. 

  5467. </ul></li>
    5468. 

  5468. </ul>
    5469. 

  5469. <ul>
    5470. 

  5470. <li>Improved preg extension
    5471. 

  5471. <ul>
    5472. 

  5472.   <li>Changed third parameter of preg_match_all() to optional. <?php bugl(53238); ?>.</li>
    5473. 

  5473. </ul></li>
    5474. 

  5474. </ul>
    5475. 

  5475. <ul>
    5476. 

  5476. <li>Improved readline extension
    5477. 

  5477. <ul>
    5478. 

  5478.   <li><?php bugfix(54450); ?> (Enable callback support when built against libedit).</li>
    5479. 

  5479. </ul></li>
    5480. 

  5480. </ul>
    5481. 

  5481. <ul>
    5482. 

  5482. <li>Improved Reflection extension
    5483. 

  5483. <ul>
    5484. 

  5484.   <li>Added ReflectionClass::newInstanceWithoutConstructor() to create a new
    5485. 

  5485.     instance of a class without invoking its constructor. <?php bugl(55490); ?>.</li>
    5486. 

  5486.   <li>Added ReflectionExtension::isTemporary() and
    5487. 

  5487.     ReflectionExtension::isPersistent() methods.</li>
    5488. 

  5488.   <li>Added ReflectionZendExtension class.</li>
    5489. 

  5489.   <li>Added ReflectionClass::isCloneable().</li>
    5490. 

  5490.   <li><?php bugfix(60367); ?> (Reflection and Late Static Binding).</li>
    5491. 

  5491.   <li><?php bugfix(60357); ?> (__toString() method triggers E_NOTICE "Array to string
    5492. 

  5492.     conversion").</li>
    5493. 

  5493. </ul></li>
    5494. 

  5494. </ul>
    5495. 

  5495. <ul>
    5496. 

  5496. <li>Improved Session extension
    5497. 

  5497. <ul>
    5498. 

  5498.   <li>Expose session status via new function, session_status. <?php bugl(52982); ?>.</li>
    5499. 

  5499.   <li>Added support for object-oriented session handlers.</li>
    5500. 

  5500.   <li>Added support for storing upload progress feedback in session data.</li>
    5501. 

  5501.   <li>Changed session.entropy_file to default to /dev/urandom or /dev/arandom if
    5502. 

  5502.     either is present at compile time.</li>
    5503. 

  5503.   <li><?php bugfix(60860); ?> (session.save_handler=user without defined function core
    5504. 

  5504.     dumps).</li>
    5505. 

  5505.   <li>Implement <?php bugl(60551); ?> (session_set_save_handler should support a core's
    5506. 

  5506.     session handler interface).</li>
    5507. 

  5507.   <li><?php bugfix(60640); ?> (invalid return values).</li>
    5508. 

  5508. </ul></li>
    5509. 

  5509. </ul>
    5510. 

  5510. <ul>
    5511. 

  5511. <li>Improved SNMP extension
    5512. 

  5512. <ul>
    5513. 

  5513.   <li>Added OO API. <?php bugl(53594); ?> (php-snmp rewrite).</li>
    5514. 

  5514.   <li>Sanitized return values of existing functions. Now it returns FALSE on
    5515. 

  5515.     failure.</li>
    5516. 

  5516.   <li>Allow ~infinite OIDs in GET/GETNEXT/SET queries. Autochunk them to max_oids
    5517. 

  5517.     upon request.</li>
    5518. 

  5518.   <li>Introducing unit tests for extension with ~full coverage.
    5519. 

  5519.     IPv6 support. (<?php bugl(42918); ?>)</li>
    5520. 

  5520.   <li>Way of representing OID value can now be changed when SNMP_VALUE_OBJECT
    5521. 

  5521.     is used for value output mode. Use or'ed SNMP_VALUE_LIBRARY(default if
    5522. 

  5522.     not specified) or SNMP_VALUE_PLAIN. (<?php bugl(54502); ?>)</li>
    5523. 

  5523.   <li><?php bugfix(60749); ?> (SNMP module should not strip non-standard SNMP port
    5524. 

  5524.     from hostname).</li>
    5525. 

  5525.   <li><?php bugfix(60585); ?> (php build fails with USE flag snmp when IPv6 support
    5526. 

  5526.     is disabled).</li>
    5527. 

  5527.   <li><?php bugfix(53862); ?> (snmp_set_oid_output_format does not allow returning to default).</li>
    5528. 

  5528.   <li><?php bugfix(51336); ?> (snmprealwalk (snmp v1) does not handle end of OID tree correctly).</li>
    5529. 

  5529.   <li><?php bugfix(46065); ?> (snmp_set_quick_print() persists between requests).</li>
    5530. 

  5530.   <li><?php bugfix(45893); ?> (Snmp buffer limited to 2048 char).</li>
    5531. 

  5531.   <li><?php bugfix(44193); ?> (snmp v3 noAuthNoPriv doesn't work).</li>
    5532. 

  5532. </ul></li>
    5533. 

  5533. </ul>
    5534. 

  5534. <ul>
    5535. 

  5535. <li>Improved SOAP extension
    5536. 

  5536. <ul>
    5537. 

  5537.   <li>Added new SoapClient option "keep_alive". <?php bugl(60329); ?>.</li>
    5538. 

  5538.   <li>Fixed basic HTTP authentication for WSDL sub requests.</li>
    5539. 

  5539. </ul></li>
    5540. 

  5540. </ul>
    5541. 

  5541. <ul>
    5542. 

  5542. <li>Improved SPL extension
    5543. 

  5543. <ul>
    5544. 

  5544.   <li>Added RegexIterator::getRegex() method.</li>
    5545. 

  5545.   <li>Added SplObjectStorage::getHash() hook.</li>
    5546. 

  5546.   <li>Added CallbackFilterIterator and RecursiveCallbackFilterIterator.</li>
    5547. 

  5547.   <li>Added missing class_uses(..) as pointed out by #55266.</li>
    5548. 

  5548.   <li>Immediately reject wrong usages of directories under Spl(Temp)FileObject
    5549. 

  5549.     and friends.</li>
    5550. 

  5550.   <li>FilesystemIterator, GlobIterator and (Recursive)DirectoryIterator now use
    5551. 

  5551.     the default stream context.</li>
    5552. 

  5552.   <li><?php bugfix(60201); ?> (SplFileObject::setCsvControl does not expose third
    5553. 

  5553.     argument via Reflection).</li>
    5554. 

  5554.   <li><?php bugfix(55807); ?> (Wrong value for splFileObject::SKIP_EMPTY).</li>
    5555. 

  5555.   <li><?php bugfix(55287); ?> (spl_classes() not includes CallbackFilter classes)</li>
    5556. 

  5556. </ul></li>
    5557. 

  5557. </ul>
    5558. 

  5558. <ul>
    5559. 

  5559. <li>Improved Sysvshm extension
    5560. 

  5560. <ul>
    5561. 

  5561.   <li><?php bugfix(55750); ?> (memory copy issue in sysvshm extension).</li>
    5562. 

  5562. </ul></li>
    5563. 

  5563. </ul>
    5564. 

  5564. <ul>
    5565. 

  5565. <li>Improved Tidy extension
    5566. 

  5566. <ul>
    5567. 

  5567.   <li><?php bugfix(54682); ?> (Tidy::diagnose() NULL pointer dereference).</li>
    5568. 

  5568. </ul></li>
    5569. 

  5569. </ul>
    5570. 

  5570. <ul>
    5571. 

  5571. <li>Improved Tokenizer extension
    5572. 

  5572. <ul>
    5573. 

  5573.   <li><?php bugfix(54089); ?> (token_get_all with regards to __halt_compiler is
    5574. 

  5574.     not binary safe).</li>
    5575. 

  5575. </ul></li>
    5576. 

  5576. </ul>
    5577. 

  5577. <ul>
    5578. 

  5578. <li>Improved XSL extension
    5579. 

  5579. <ul>
    5580. 

  5580.   <li>Added XsltProcessor::setSecurityPrefs($options) and getSecurityPrefs() to
    5581. 

  5581.     define forbidden operations within XSLT stylesheets, default is not to
    5582. 

  5582.     enable write operations from XSLT. <?php bugfix(54446); ?>.</li>
    5583. 

  5583.   <li>XSL doesn't stop transformation anymore, if a PHP function can't be called</li>
    5584. 

  5584. </ul></li>
    5585. 

  5585. </ul>
    5586. 

  5586. <ul>
    5587. 

  5587. <li>Improved ZLIB extension
    5588. 

  5588. <ul>
    5589. 

  5589.   <li>Re-implemented non-file related functionality.</li>
    5590. 

  5590.   <li><?php bugfix(55544); ?> (ob_gzhandler always conflicts with zlib.output_compression).</li>
    5591. 

  5591. </ul></li>
    5592. 

  5592. </ul>
    5593. 

    5594. 

  5594. <!-- }}} --></section>
    5595. 

    5596. 

  5596. <section class="version" id="5.3.10"><!-- {{{ 5.3.10 -->
    5597. 

  5597. <h3>Version 5.3.10</h3>
    5598. 

  5598. <?php release_date('02-Feb-2012'); ?>
    5599. 

    5600. 

  5600. <ul>
    5601. 

  5601. <li>Core:
    5602. 

  5602. <ul>
    5603. 

  5603.   <li>Fixed arbitrary remote code execution vulnerability reported by Stefan 
    5604. 

  5604.     Esser, CVE-2012-0830.</li>
    5605. 

  5605. </ul>
    5606. 

  5606. </li>
    5607. 

  5607. </ul>
    5608. 

    5609. 

  5609. <!-- }}} --></section>
    5610. 

    5611. 

  5611. <section class="version" id="5.3.9"><!-- {{{ 5.3.9 -->
    5612. 

  5612. <h3>Version 5.3.9</h3>
    5613. 

  5613. <?php release_date('10-Jan-2012'); ?>
    5614. 

    5615. 

  5615. <ul>
    5616. 

  5616. <li>Core:
    5617. 

  5617. <ul>
    5618. 

  5618.   <li>Added max_input_vars directive to prevent attacks based on hash collisions
    5619. 

  5619.     (Dmitry).</li>
    5620. 

  5620.   <li><?php bugfix(60205); ?> (possible integer overflow in content_length). (Laruence)</li>
    5621. 

  5621.   <li><?php bugfix(60139); ?> (Anonymous functions create cycles not detected by the
    5622. 

  5622.     GC). (Dmitry)</li>
    5623. 

  5623.   <li><?php bugfix(60138); ?> (GC crash with referenced array in RecursiveArrayIterator)
    5624. 

  5624.     (Dmitry).</li>
    5625. 

  5625.   <li><?php bugfix(60120); ?> (proc_open's streams may hang with stdin/out/err when
    5626. 

  5626.     the data exceeds or is equal to 2048 bytes). (Pierre, Pascal Borreli)</li>
    5627. 

  5627.   <li><?php bugfix(60099); ?> (__halt_compiler() works in braced namespaces). (Felipe)</li>
    5628. 

  5628.   <li><?php bugfix(60019); ?> (Function time_nanosleep() is undefined on OS X). (Ilia)</li>
    5629. 

  5629.   <li><?php bugfix(55874); ?> (GCC does not provide __sync_fetch_and_add on some archs).
    5630. 

  5630.     (klightspeed at netspace dot net dot au)</li>
    5631. 

  5631.   <li><?php bugfix(55798); ?> (serialize followed by unserialize with numeric object
    5632. 

  5632.     prop. gives integer prop). (Gustavo)</li>
    5633. 

  5633.   <li><?php bugfix(55749); ?> (TOCTOU issue in getenv() on Windows builds). (Pierre)</li>
    5634. 

  5634.   <li><?php bugfix(55707); ?> (undefined reference to `__sync_fetch_and_add_4' on Linux
    5635. 

  5635.     parisc). (Felipe)</li>
    5636. 

  5636.   <li><?php bugfix(55674); ?> (fgetcsv &amp; str_getcsv skip empty fields in some
    5637. 

  5637.     tab-separated records). (Laruence)</li>
    5638. 

  5638.   <li><?php bugfix(55649); ?> (Undefined function Bug()). (Laruence)</li>
    5639. 

  5639.   <li><?php bugfix(55622); ?> (memory corruption in parse_ini_string). (Pierre)</li>
    5640. 

  5640.   <li><?php bugfix(55576); ?> (Cannot conditionally move uploaded file without race
    5641. 

  5641.     condition). (Gustavo)</li>
    5642. 

  5642.   <li><?php bugfix(55510); ?>: $_FILES 'name' missing first character after upload.
    5643. 

  5643.     (Arpad)</li>
    5644. 

  5644.   <li><?php bugfix(55509); ?> (segfault on x86_64 using more than 2G memory). (Laruence)</li>
    5645. 

  5645.   <li><?php bugfix(55504); ?> (Content-Type header is not parsed correctly on
    5646. 

  5646.     HTTP POST request). (Hannes)</li>
    5647. 

  5647.   <li><?php bugfix(55475); ?> (is_a() triggers autoloader, new optional 3rd argument to
    5648. 

  5648.     is_a and is_subclass_of). (alan_k)</li>
    5649. 

  5649.   <li><?php bugfix(52461); ?> (Incomplete doctype and missing xmlns).
    5650. 

  5650.     (virsacer at web dot de, Pierre)</li>
    5651. 

  5651.   <li><?php bugfix(55366); ?> (keys lost when using substr_replace an array). (Arpad)</li>
    5652. 

  5652.   <li><?php bugfix(55273); ?> (base64_decode() with strict rejects whitespace after
    5653. 

  5653.     pad). (Ilia)</li>
    5654. 

  5654.   <li><?php bugfix(52624); ?> (tempnam() by-pass open_basedir with nonnexistent
    5655. 

  5655.     directory). (Felipe)</li>
    5656. 

  5656.   <li><?php bugfix(50982); ?> (incorrect assumption of PAGE_SIZE size). (Dmitry)</li>
    5657. 

  5657.   <li>Fixed invalid free in call_user_method() function. (Felipe)</li>
    5658. 

  5658.   <li><?php bugfix(43200); ?> (Interface implementation / inheritence not possible in
    5659. 

  5659.     abstract classes). (Felipe)</li>
    5660. 

  5660. </ul>
    5661. 

  5661. </li>
    5662. 

  5662. <li>BCmath:
    5663. 

  5663. <ul>
    5664. 

  5664.   <li><?php bugfix(60377); ?> (bcscale related crashes on 64bits platforms). (shm)</li>
    5665. 

  5665. </ul>
    5666. 

  5666. </li>
    5667. 

  5667. <li>Calendar:
    5668. 

  5668. <ul>
    5669. 

  5669.   <li><?php bugfix(55797); ?> (Integer overflow in SdnToGregorian leads to segfault (in
    5670. 

  5670.     optimized builds). (Gustavo)</li>
    5671. 

  5671. </ul>
    5672. 

  5672. </li>
    5673. 

  5673. <li>cURL:
    5674. 

  5674. <ul>
    5675. 

  5675.   <li><?php bugfix(60439); ?> (curl_copy_handle segfault when used with
    5676. 

  5676.     CURLOPT_PROGRESSFUNCTION). (Pierrick)</li>
    5677. 

  5677.   <li><?php bugfix(54798); ?> (Segfault when CURLOPT_STDERR file pointer is closed
    5678. 

  5678.     before calling curl_exec). (Hannes)</li>
    5679. 

  5679.   <li>Fixed issues were curl_copy_handle() would sometimes lose copied
    5680. 

  5680.     preferences. (Hannes)</li>
    5681. 

  5681. </ul>
    5682. 

  5682. </li>
    5683. 

  5683. <li>DateTime:
    5684. 

  5684. <ul>
    5685. 

  5685.   <li><?php bugfix(60373); ?> (Startup errors with log_errors on cause segfault).
    5686. 

  5686.     (Derick)</li>
    5687. 

  5687.   <li><?php bugfix(60236); ?> (TLA timezone dates are not converted properly from
    5688. 

  5688.     timestamp). (Derick)</li>
    5689. 

  5689.   <li><?php bugfix(55253); ?> (DateTime::add() and sub() result -1 hour on objects with
    5690. 

  5690.     time zone type 2). (Derick)</li>
    5691. 

  5691.   <li><?php bugfix(54851); ?> (DateTime::createFromFormat() doesn't interpret "D").
    5692. 

  5692.     (Derick)</li>
    5693. 

  5693.   <li><?php bugfix(53502); ?> (strtotime with timezone memory leak). (Derick)</li>
    5694. 

  5694.   <li><?php bugfix(52062); ?> (large timestamps with DateTime::getTimestamp and
    5695. 

  5695.     DateTime::setTimestamp). (Derick)</li>
    5696. 

  5696.   <li><?php bugfix(51994); ?> (date_parse_from_format is parsing invalid date using 'yz'
    5697. 

  5697.     format). (Derick)</li>
    5698. 

  5698.   <li><?php bugfix(52113); ?> (Seg fault while creating (by unserialization)
    5699. 

  5699.     DatePeriod). (Derick)</li>
    5700. 

  5700.   <li><?php bugfix(48476); ?> (cloning extended DateTime class without calling
    5701. 

  5701.     parent::__constr crashed PHP). (Hannes)</li>
    5702. 

  5702. </ul>
    5703. 

  5703. </li>
    5704. 

  5704. <li>EXIF:
    5705. 

  5705. <ul>
    5706. 

  5706.   <li><?php bugfix(60150); ?> (Integer overflow during the parsing of invalid exif
    5707. 

  5707.     header). (Stas, flolechaud at gmail dot com)</li>
    5708. 

  5708. </ul>
    5709. 

  5709. </li>
    5710. 

  5710. <li>Fileinfo:
    5711. 

  5711. <ul>
    5712. 

  5712.   <li><?php bugfix(60094); ?> (C++ comment fails in c89). (Laruence)</li>
    5713. 

  5713.   <li>Fixed possible memory leak in finfo_open(). (Felipe)</li>
    5714. 

  5714.   <li>Fixed memory leak when calling the Finfo constructor twice. (Felipe)</li>
    5715. 

  5715. </ul>
    5716. 

  5716. </li>
    5717. 

  5717. <li>Filter:
    5718. 

  5718. <ul>
    5719. 

  5719.   <li>Fixed Bug #55478 (FILTER_VALIDATE_EMAIL fails with internationalized
    5720. 

  5720.     domain name addresses containing &gt;1 -). (Ilia)</li>
    5721. 

  5721. </ul>
    5722. 

  5722. </li>
    5723. 

  5723. <li>FTP:
    5724. 

  5724. <ul>
    5725. 

  5725.   <li><?php bugfix(60183); ?> (out of sync ftp responses). (bram at ebskamp dot me,
    5726. 

  5726.     rasmus)</li>
    5727. 

  5727. </ul>
    5728. 

  5728. </li>
    5729. 

  5729. <li>Gd:
    5730. 

  5730. <ul>
    5731. 

  5731.   <li><?php bugfix(60160); ?> (imagefill() doesn't work correctly
    5732. 

  5732.     for small images). (Florian)</li>
    5733. 

  5733. </ul>
    5734. 

  5734. </li>
    5735. 

  5735. <li>Intl:
    5736. 

  5736. <ul>
    5737. 

  5737.   <li><?php bugfix(60192); ?> (SegFault when Collator not constructed
    5738. 

  5738.     properly). (Florian)</li>
    5739. 

  5739.   <li>Fixed memory leak in several Intl locale functions. (Felipe)</li>
    5740. 

  5740. </ul>
    5741. 

  5741. </li>
    5742. 

  5742. <li>JSON:
    5743. 

  5743. <ul>
    5744. 

  5744.   <li><?php bugfix(55543); ?> (json_encode() with JSON_NUMERIC_CHECK fails on objects
    5745. 

  5745.     with numeric string properties). (Ilia, dchurch at sciencelogic dot com)</li>
    5746. 

  5746. </ul>
    5747. 

  5747. </li>
    5748. 

  5748. <li>mbstring:
    5749. 

  5749. <ul>
    5750. 

  5750.   <li>Fixed possible crash in mb_ereg_search_init() using empty pattern. (Felipe)</li>
    5751. 

  5751. </ul>
    5752. 

  5752. </li>
    5753. 

  5753. <li>MS SQL:
    5754. 

  5754. <ul>
    5755. 

  5755.   <li><?php bugfix(60267); ?> (Compile failure with freetds 0.91). (Felipe)</li>
    5756. 

  5756. </ul>
    5757. 

  5757. </li>
    5758. 

  5758. <li>MySQL:
    5759. 

  5759. <ul>
    5760. 

  5760.   <li><?php bugfix(55550); ?> (mysql.trace_mode miscounts result sets). (Johannes)</li>
    5761. 

  5761. </ul>
    5762. 

  5762. </li>
    5763. 

  5763. <li>MySQLi extension:
    5764. 

  5764. <ul>
    5765. 

  5765.   <li><?php bugfix(55859); ?> (mysqli-&gt;stat property access gives error). (Andrey)</li>
    5766. 

  5766.   <li><?php bugfix(55582); ?> (mysqli_num_rows() returns always 0 for unbuffered, when
    5767. 

  5767.     mysqlnd is used). (Andrey)</li>
    5768. 

  5768.   <li><?php bugfix(55703); ?> (PHP crash when calling mysqli_fetch_fields).
    5769. 

  5769.     (eran at zend dot com, Laruence)</li>
    5770. 

  5770. </ul>
    5771. 

  5771. </li>
    5772. 

  5772. <li>mysqlnd:
    5773. 

  5773. <ul>
    5774. 

  5774.   <li><?php bugfix(55609); ?> (mysqlnd cannot be built shared). (Johannes)</li>
    5775. 

  5775.   <li><?php bugfix(55067); ?> (MySQL doesn't support compression - wrong config option).
    5776. 

  5776.     (Andrey)</li>
    5777. 

  5777. </ul>
    5778. 

  5778. </li>
    5779. 

  5779. <li>NSAPI SAPI:
    5780. 

  5780. <ul>
    5781. 

  5781.   <li>Don't set $_SERVER['HTTPS'] on unsecure connection (bug #55403). (Uwe
    5782. 

  5782.     Schindler)</li>
    5783. 

  5783. </ul>
    5784. 

  5784. </li>
    5785. 

  5785. <li>OpenSSL:
    5786. 

  5786. <ul>
    5787. 

  5787.   <li><?php bugfix(60279); ?> (Fixed NULL pointer dereference in
    5788. 

  5788.     stream_socket_enable_crypto, case when ssl_handle of session_stream is not
    5789. 

  5789.     initialized.) (shm)</li>
    5790. 

  5790.   <li>Fix segfault with older versions of OpenSSL. (Scott)</li>
    5791. 

  5791. </ul>
    5792. 

  5792. </li>
    5793. 

  5793. <li>Oracle Database extension (OCI8):
    5794. 

  5794. <ul>
    5795. 

  5795.   <li><?php bugfix(59985); ?> (show normal warning text for OCI_NO_DATA).
    5796. 

  5796.     (Chris Jones)</li>
    5797. 

  5797.   <li>Increased maximum Oracle error message buffer length for new 11.2.0.3 size.
    5798. 

  5798.     (Chris Jones)</li>
    5799. 

  5799.   <li>Improve internal initalization failure error messages. (Chris Jones)</li>
    5800. 

  5800. </ul>
    5801. 

  5801. </li>
    5802. 

  5802. <li>PDO
    5803. 

  5803. <ul>
    5804. 

  5804.   <li><?php bugfix(55776); ?> (PDORow to session bug). (Johannes)</li>
    5805. 

  5805. </ul>
    5806. 

  5806. </li>
    5807. 

  5807. <li>PDO Firebird:
    5808. 

  5808. <ul>
    5809. 

  5809.   <li><?php bugfix(48877); ?> ("bindValue" and "bindParam" do not work for PDO Firebird).
    5810. 

  5810.     (Mariuz)</li>
    5811. 

  5811.   <li><?php bugfix(47415); ?> (PDO_Firebird segfaults when passing lowercased column name to bindColumn).</li>
    5812. 

  5812.   <li><?php bugfix(53280); ?> (PDO_Firebird segfaults if query column count less than param count).
    5813. 

  5813.     (Mariuz)</li>
    5814. 

  5814. </ul>
    5815. 

  5815. </li>
    5816. 

  5816. <li>PDO MySQL driver:
    5817. 

  5817. <ul>
    5818. 

  5818.   <li><?php bugfix(60155); ?> (pdo_mysql.default_socket ignored). (Johannes)</li>
    5819. 

  5819.   <li><?php bugfix(55870); ?> (PDO ignores all SSL parameters when used with mysql
    5820. 

  5820.     native driver). (Pierre)</li>
    5821. 

  5821.   <li><?php bugfix(54158); ?> (MYSQLND+PDO MySQL requires #define
    5822. 

  5822.     MYSQL_OPT_LOCAL_INFILE). (Andrey)</li>
    5823. 

  5823. </ul>
    5824. 

  5824. </li>
    5825. 

  5825. <li>PDO OCI driver:
    5826. 

  5826. <ul>
    5827. 

  5827.   <li><?php bugfix(55768); ?> (PDO_OCI can't resume Oracle session after it's been
    5828. 

  5828.     killed). (mikhail dot v dot gavrilov at gmail dot com, Chris Jones, Tony)</li>
    5829. 

  5829. </ul>
    5830. 

  5830. </li>
    5831. 

  5831. <li>Phar:
    5832. 

  5832. <ul>
    5833. 

  5833.   <li><?php bugfix(60261); ?> (NULL pointer dereference in phar). (Felipe)</li>
    5834. 

  5834.   <li><?php bugfix(60164); ?> (Stubs of a specific length break phar_open_from_fp
    5835. 

  5835.     scanning for __HALT_COMPILER). (Ralph Schindler)</li>
    5836. 

  5836.   <li><?php bugfix(53872); ?> (internal corruption of phar). (Hannes)</li>
    5837. 

  5837.   <li><?php bugfix(52013); ?> (Unable to decompress files in a compressed phar). (Hannes)</li>
    5838. 

  5838. </ul>
    5839. 

  5839. </li>
    5840. 

  5840. <li>PHP-FPM SAPI:
    5841. 

  5841. <ul>
    5842. 

  5842.   <li><?php bugfix(60659); ?> (FPM does not clear auth_user on request accept).
    5843. 

  5843.     (bonbons at linux-vserver dot org)</li>
    5844. 

  5844.   <li><?php bugfix(60629); ?> (memory corruption when web server closed the fcgi fd).
    5845. 

  5845.     (fat)</li>
    5846. 

  5846.   <li><?php bugfix(60179); ?> (php_flag and php_value does not work properly). (fat)</li>
    5847. 

  5847.   <li><?php bugfix(55526); ?> (Heartbeat causes a lot of unnecessary events). (fat)</li>
    5848. 

  5848.   <li><?php bugfix(55533); ?> (The -d parameter doesn't work). (fat)</li>
    5849. 

  5849.   <li>Implemented FR <?php bugl(52569); ?> (Add the "ondemand" process-manager
    5850. 

  5850.     to allow zero children). (fat)</li>
    5851. 

  5851.   <li><?php bugfix(55486); ?> (status show BIG processes number). (fat)</li>
    5852. 

  5852.   <li><?php bugfix(55577); ?> (status.html does not install). (fat)</li>
    5853. 

  5853.   <li>Backported from 5.4 branch (Dropped restriction of not setting the same
    5854. 

  5854.     value multiple times, the last one holds).
    5855. 

  5855.     (giovanni at giacobbi dot net, fat)</li>
    5856. 

  5856.   <li>Backported FR <?php bugl(55166); ?> from 5.4 branch (Added process.max to control
    5857. 

  5857.     the number of process FPM can fork). (fat)</li>
    5858. 

  5858.   <li>Backported FR <?php bugl(55181); ?> from 5.4 branch (Enhance security by limiting access
    5859. 

  5859.     to user defined extensions). (fat)</li>
    5860. 

  5860.   <li>Backported FR <?php bugl(54098); ?> from 5.4 branch (Lowered process manager
    5861. 

  5861.     default value). (fat)</li>
    5862. 

  5862.   <li>Backported FR <?php bugl(52052); ?> from 5.4 branch (Added partial syslog support). (fat)</li>
    5863. 

  5863.   <li>Implemented FR <?php bugl(54577); ?> (Enhanced status page with full status and details
    5864. 

  5864.     about each processes. Also provide a web page (status.html) for
    5865. 

  5865.     real-time FPM status. (fat)</li>
    5866. 

  5866.   <li>Enhance error log when the primary script can't be open. FR <?php bugl(60199); ?>. (fat)</li>
    5867. 

  5867.   <li>Added .phar to default authorized extensions. (fat)</li>
    5868. 

  5868. </ul>
    5869. 

  5869. </li>
    5870. 

  5870. <li>Postgres:
    5871. 

  5871. <ul>
    5872. 

  5872.   <li><?php bugfix(60244); ?> (pg_fetch_* functions do not validate that row param
    5873. 

  5873.     is &gt;0). (Ilia)</li>
    5874. 

  5874. </ul>
    5875. 

  5875. </li>
    5876. 

  5876. <li>Reflection:
    5877. 

  5877. <ul>
    5878. 

  5878.   <li><?php bugfix(60367); ?> (Reflection and Late Static Binding). (Laruence)</li>
    5879. 

  5879. </ul>
    5880. 

  5880. </li>
    5881. 

  5881. <li>Session:
    5882. 

  5882. <ul>
    5883. 

  5883.   <li><?php bugfix(55267); ?> (session_regenerate_id fails after header sent). (Hannes)</li>
    5884. 

  5884. </ul>
    5885. 

  5885. </li>
    5886. 

  5886. <li>SimpleXML:
    5887. 

  5887. <ul>
    5888. 

  5888.   <li>Reverted the SimpleXML-&gt;query() behaviour to returning empty arrays
    5889. 

  5889.     instead of false when no nodes are found as it was since 5.3.3
    5890. 

  5890.     (bug #48601). (chregu, rrichards)</li>
    5891. 

  5891. </ul>
    5892. 

  5892. </li>
    5893. 

  5893. <li>SOAP
    5894. 

  5894. <ul>
    5895. 

  5895.   <li><?php bugfix(54911); ?> (Access to a undefined member in inherit SoapClient may
    5896. 

  5896.     cause Segmentation Fault). (Dmitry)</li>
    5897. 

  5897.   <li><?php bugfix(48216); ?> (PHP Fatal error: SOAP-ERROR: Parsing WSDL:
    5898. 

  5898.     Extra content at the end of the doc, when server uses chunked transfer
    5899. 

  5899.     encoding with spaces after chunk size). (Dmitry)</li>
    5900. 

  5900.   <li><?php bugfix(44686); ?> (SOAP-ERROR: Parsing WSDL with references). (Dmitry)</li>
    5901. 

  5901. </ul>
    5902. 

  5902. </li>
    5903. 

  5903. <li>Sockets:
    5904. 

  5904. <ul>
    5905. 

  5905.   <li><?php bugfix(60048); ?> (sa_len a #define on IRIX). (china at thewrittenword dot
    5906. 

  5906.     com)</li>
    5907. 

  5907. </ul>
    5908. 

  5908. </li>
    5909. 

  5909. <li>SPL:
    5910. 

  5910. <ul>
    5911. 

  5911.   <li><?php bugfix(60082); ?> (Crash in ArrayObject() when using recursive references).
    5912. 

  5912.     (Tony)</li>
    5913. 

  5913.   <li><?php bugfix(55807); ?> (Wrong value for splFileObject::SKIP_EMPTY).
    5914. 

  5914.     (jgotti at modedemploi dot fr, Hannes)</li>
    5915. 

  5915.   <li><?php bugfix(54304); ?> (RegexIterator::accept() doesn't work with scalar values).
    5916. 

  5916.     (Hannes)</li>
    5917. 

  5917. </ul>
    5918. 

  5918. </li>
    5919. 

  5919. <li>Streams:
    5920. 

  5920. <ul>
    5921. 

  5921.   <li><?php bugfix(60455); ?> (stream_get_line misbehaves if EOF is not detected together
    5922. 

  5922.     with the last read). (Gustavo)</li>
    5923. 

  5923. </ul>
    5924. 

  5924. </li>
    5925. 

  5925. <li>Tidy:
    5926. 

  5926. <ul>
    5927. 

  5927.   <li><?php bugfix(54682); ?> (Tidy::diagnose() NULL pointer dereference).
    5928. 

  5928.     (Maksymilian Arciemowicz, Felipe)</li>
    5929. 

  5929. </ul>
    5930. 

  5930. </li>
    5931. 

  5931. <li>XSL:
    5932. 

  5932. <ul>
    5933. 

  5933.   <li>Added xsl.security_prefs ini option to define forbidden operations within
    5934. 

  5934.     XSLT stylesheets, default is not to enable write operations. This option
    5935. 

  5935.     won't be in 5.4, since there's a new method. Fixes Bug <?php bugl(54446); ?>. (Chregu,
    5936. 

  5936.     Nicolas Gregoire)</li>
    5937. 

  5937. </ul>
    5938. 

  5938. </li>
    5939. 

  5939. </ul>
    5940. 

  5940. 

  5941. <!-- }}} --></section>
    5942. 

  5942. 

  5943. <section class="version" id="5.3.8"><!-- {{{ 5.3.8 -->
    5944. 

  5944. <h3>Version 5.3.8</h3>
    5945. 

  5945. <?php release_date('23-Aug-2011'); ?>
    5946. 

  5946. 

  5947. <ul>
    5948. 

  5948. <li>Core:
    5949. 

  5949. <ul>
    5950. 

  5950.   <li><?php bugfix(55439); ?> (crypt() returns only the salt for MD5). (Stas)</li>
    5951. 

  5951. </ul>
    5952. 

  5952. </li>
    5953. 

  5953. <li>OpenSSL:
    5954. 

  5954. <ul>
    5955. 

  5955.   <li>Reverted a change in timeout handling restoring PHP 5.3.6 behavior,
    5956. 

  5956.     as the new behavior caused mysqlnd SSL connections to hang (
    5957. 

  5957.     <a href="http://bugs.php.net/55283">Bug #55283</a>).
    5958. 

  5958.     (Pierre, Andrey, Johannes)</li>
    5959. 

  5959. </ul>
    5960. 

  5960. </li>
    5961. 

  5961. </ul>
    5962. 

  5962. 

  5963. <!-- }}} --></section>
    5964. 

  5964. 

  5965. <section class="version" id="5.3.7"><!-- {{{ 5.3.7 -->
    5966. 

  5966. <h3>Version 5.3.7</h3>
    5967. 

  5967. <?php release_date('18-Aug-2011'); ?>
    5968. 

  5968. 

  5969. <ul>
    5970. 

  5970. <li>Upgraded bundled SQLite to version 3.7.7.1. (Scott)</li>
    5971. 

  5971. <li>Upgraded bundled PCRE to version 8.12. (Scott)</li>
    5972. 

  5972. 

  5973. <li>Zend Engine:
    5974. 

  5974. <ul>
    5975. 

  5975.   <li><?php bugfix(55156); ?> (ReflectionClass::getDocComment() returns comment even though the class has none). (Felipe)</li>
    5976. 

  5976.   <li><?php bugfix(55007); ?> (compiler fail after previous fail). (Felipe)</li>
    5977. 

  5977.   <li><?php bugfix(54910); ?> (Crash when calling call_user_func with unknown function name). (Dmitry)</li>
    5978. 

  5978.   <li><?php bugfix(54804); ?> (__halt_compiler and imported namespaces). (Pierrick, Felipe)</li>
    5979. 

  5979.   <li><?php bugfix(54624); ?> (class_alias and type hint). (Felipe)</li>
    5980. 

  5980.   <li><?php bugfix(54585); ?> (track_errors causes segfault). (Dmitry)</li>
    5981. 

  5981.   <li><?php bugfix(54423); ?> (classes from dl()'ed extensions are not destroyed).  (Tony, Dmitry)</li>
    5982. 

  5982.   <li><?php bugfix(54372); ?> (Crash accessing global object itself returned from its __get() handle). (Dmitry)</li>
    5983. 

  5983.   <li><?php bugfix(54367); ?> (Use of closure causes problem in ArrayAccess). (Dmitry)</li>
    5984. 

  5984.   <li><?php bugfix(54358); ?> (Closure, use and reference). (Dmitry)</li>
    5985. 

  5985.   <li><?php bugfix(54262); ?> (Crash when assigning value to a dimension in a non-array). (Dmitry)</li>
    5986. 

  5986.   <li><?php bugfix(54039); ?> (use() of static variables in lambda functions can break staticness). (Dmitry)</li>
    5987. 

  5987. </ul>
    5988. 

  5988. </li>
    5989. 

  5989. 

  5990. <li>Core:
    5991. 

  5991. <ul>
    5992. 

  5992.   <li>Updated crypt_blowfish to 1.2. (CVE-2011-2483) (Solar Designer) <a href="http://php.net/security/crypt_blowfish">(more info)</a></li>
    5993. 

  5993.   <li>Removed warning when argument of is_a() or is_subclass_of() is not  a known class. (Stas)</li>
    5994. 

  5994.   <li>Fixed crash in error_log(). (Felipe) Reported by Mateusz Kocielski.</li>
    5995. 

  5995.   <li>Added PHP_MANDIR constant telling where the manpages were installed into, and an --man-dir argument to php-config. (Hannes)</li>
    5996. 

  5996.   <li>Fixed a crash inside dtor for error handling. (Ilia)</li>
    5997. 

  5997.   <li>Fixed buffer overflow on overlog salt in crypt(). (Clément LECIGNE, Stas</li>
    5998. 

  5998.   <li>Implemented FR <?php bugfix(54459); ?> (Range function accuracy). (Adam)</li>
    5999. 

  5999. 

  6000.   <li><?php bugfix(55399); ?> (parse_url() incorrectly treats ':' as a valid path). (Ilia)</li>
    6001. 

  6001.   <li><?php bugfix(55339); ?> (Segfault with allow_call_time_pass_reference = Off). (Dmitry)</li>
    6002. 

  6002.   <li><?php bugfix(55295); ?> [NEW]: popen_ex on windows, fixed possible heap overflow (Pierre)</li>
    6003. 

  6003.   <li><?php bugfix(55258); ?> (Windows Version Detecting Error).  ( xiaomao5 at live dot com, Pierre)</li>
    6004. 

  6004.   <li><?php bugfix(55187); ?> (readlink returns weird characters when false result). (Pierre)</li>
    6005. 

  6005.   <li><?php bugfix(55082); ?> (var_export() doesn't escape properties properly). (Gustavo)</li>
    6006. 

  6006.   <li><?php bugfix(55014); ?> (Compile failure due to improper use of ctime_r()). (Ilia)</li>
    6007. 

  6007.   <li><?php bugfix(54939); ?> (File path injection vulnerability in RFC1867 File upload filename). (Felipe) Reported by Krzysztof Kotowicz. (CVE-2011-2202)</li>
    6008. 

  6008.   <li><?php bugfix(54935); ?> php_win_err can lead to crash. (Pierre)</li>
    6009. 

  6009.   <li><?php bugfix(54924); ?> (assert.* is not being reset upon request shutdown). (Ilia)</li>
    6010. 

  6010.   <li><?php bugfix(54895); ?> (Fix compiling with older gcc version without need for membar_producer macro). (mhei at heimpold dot de)</li>
    6011. 

  6011.   <li><?php bugfix(54866); ?> (incorrect accounting for realpath_cache_size). (Dustin Ward)</li>
    6012. 

  6012.   <li><?php bugfix(54723); ?> (getimagesize() doesn't check the full ico signature). (Scott)</li>
    6013. 

  6013.   <li><?php bugfix(54721); ?> (Different Hashes on Windows, BSD and Linux on wrong Salt size). (Pierre, os at irj dot ru)</li>
    6014. 

  6014.   <li><?php bugfix(54580); ?> (get_browser() segmentation fault when browscap ini directive is set through php_admin_value). (Gustavo)</li>
    6015. 

  6015.   <li><?php bugfix(54332); ?> (Crash in zend_mm_check_ptr // Heap corruption). (Dmitry)</li>
    6016. 

  6016.   <li><?php bugfix(54305); ?> (Crash in gc_remove_zval_from_buffer). (Dmitry)</li>
    6017. 

  6017.   <li><?php bugfix(54238); ?> (use-after-free in substr_replace()). (Stas) (CVE-2011-1148)</li>
    6018. 

  6018.   <li><?php bugfix(54204); ?> (Can't set a value with a PATH section in php.ini). (Pierre)</li>
    6019. 

  6019.   <li><?php bugfix(54180); ?> (parse_url() incorrectly parses path when ? in fragment). (tomas dot brastavicius at quantum dot lt, Pierrick)</li>
    6020. 

  6020.   <li><?php bugfix(54137); ?> (file_get_contents POST request sends additional line break). (maurice-php at mertinkat dot net, Ilia)</li>
    6021. 

  6021.   <li><?php bugfix(53848); ?> (fgetcsv() ignores spaces at beginnings of fields). (Ilia)</li>
    6022. 

  6022.   <li>Alternative fix for bug <?php bugfix(52550); ?>, as applied to the round() function (signed overflow), as the old fix impacted the algorithm for numbers with magnitude smaller than 0. (Gustavo)</li>
    6023. 

  6023.   <li><?php bugfix(53727); ?> (Inconsistent behavior of is_subclass_of with interfaces) (Ralph Schindler, Dmitry)</li>
    6024. 

  6024.   <li><?php bugfix(52935); ?> (call exit in user_error_handler cause stream relate core). (Gustavo)</li>
    6025. 

  6025.   <li><?php bugfix(51997); ?> (SEEK_CUR with 0 value, returns a warning). (Ilia)</li>
    6026. 

  6026.   <li><?php bugfix(50816); ?> (Using class constants in array definition fails). (Pierrick, Dmitry)</li>
    6027. 

  6027.   <li><?php bugfix(50363); ?> (Invalid parsing in convert.quoted-printable-decode filter). (slusarz at curecanti dot org)</li>
    6028. 

  6028.   <li><?php bugfix(48465); ?> (sys_get_temp_dir() possibly inconsistent when using  TMPDIR on Windows). (Pierre)</li>
    6029. 

  6029. </ul>
    6030. 

  6030. </li>
    6031. 

  6031. 

  6032. <li>Apache2 Handler SAPI:
    6033. 

  6033. <ul>
    6034. 

  6034.   <li><?php bugfix(54529); ?> (SAPI crashes on apache_config.c:197). (hebergement at riastudio dot fr)</li>
    6035. 

  6035. </ul>
    6036. 

  6036. </li>
    6037. 

  6037. 

  6038. <li>CLI SAPI:
    6039. 

  6039. <ul>
    6040. 

  6040.   <li><?php bugfix(52496); ?> (Zero exit code on option parsing failure). (Ilia)</li>
    6041. 

  6041. </ul>
    6042. 

  6042. </li>
    6043. 

  6043. 

  6044. <li>cURL extension:
    6045. 

  6045. <ul>
    6046. 

  6046.   <li>Added ini option curl.cainfo (support for custom cert db). (Pierre)</li>
    6047. 

  6047.   <li>Added CURLINFO_REDIRECT_URL support. (Daniel Stenberg, Pierre)</li>
    6048. 

  6048.   <li>Added support for CURLOPT_MAX_RECV_SPEED_LARGE and  CURLOPT_MAX_SEND_SPEED_LARGE. FR <?php bugfix(51815); ?>. (Pierrick)</li>
    6049. 

  6049. </ul>
    6050. 

  6050. </li>
    6051. 

  6051. 

  6052. <li>DateTime extension:
    6053. 

  6053. <ul>
    6054. 

  6054.   <li>Fixed bug where the DateTime object got changed while using date_diff(). (Derick)</li>
    6055. 

  6055.   <li><?php bugfix(54340); ?> (DateTime::add() method bug). (Adam)</li>
    6056. 

  6056.   <li><?php bugfix(54316); ?> (DateTime::createFromFormat does not handle trailing '|' correctly). (Adam)</li>
    6057. 

  6057.   <li><?php bugfix(54283); ?> (new DatePeriod(NULL) causes crash). (Felipe)</li>
    6058. 

  6058.   <li><?php bugfix(51819); ?> (Case discrepancy in timezone names cause Uncaught exception and fatal error). (Hannes)</li>
    6059. 

  6059. </ul>
    6060. 

  6060. </li>
    6061. 

  6061. 

  6062. <li>DBA extension:
    6063. 

  6063. <ul>
    6064. 

  6064.   <li>Supress warning on non-existent file open with Berkeley DB 5.2 (Chris Jones)</li>
    6065. 

  6065.   <li><?php bugfix(54242); ?> (dba_insert returns true if key already exists). (Felipe)</li>
    6066. 

  6066. </ul>
    6067. 

  6067. </li>
    6068. 

  6068. 

  6069. <li>Exif extesion:
    6070. 

  6070. <ul>
    6071. 

  6071.   <li><?php bugfix(54121); ?> (error message format string typo). (Ilia)</li>
    6072. 

  6072. </ul>
    6073. 

  6073. </li>
    6074. 

  6074. 

  6075. <li>Fileinfo extension:
    6076. 

  6076. <ul>
    6077. 

  6077.   <li><?php bugfix(54934); ?> (Unresolved symbol strtoull in HP-UX 11.11). (Felipe)</li>
    6078. 

  6078. </ul>
    6079. 

  6079. </li>
    6080. 

  6080. 

  6081. <li>Filter extension:
    6082. 

  6082. <ul>
    6083. 

  6083.   <li>Added 3rd parameter to filter_var_array() and filter_input_array() functions that allows disabling addition of empty elements. (Ilia)</li>
    6084. 

  6084.   <li><?php bugfix(53037); ?> (FILTER_FLAG_EMPTY_STRING_NULL is not implemented). (Ilia)</li>
    6085. 

  6085. </ul>
    6086. 

  6086. </li>
    6087. 

  6087.   
    6088. 

  6088. <li>Interbase extension:
    6089. 

  6089. <ul>
    6090. 

  6090.   <li><?php bugfix(54269); ?> (Short exception message buffer causes crash). (Felipe)</li>
    6091. 

  6091. </ul>
    6092. 

  6092. </li>
    6093. 

  6093.   
    6094. 

  6094. <li>intl extension:
    6095. 

  6095. <ul>
    6096. 

  6096.   <li>Implemented FR <?php bugfix(54561); ?> (Expose ICU version info). (David Zuelke, Ilia)</li>
    6097. 

  6097.   <li>Implemented FR <?php bugfix(54540); ?> (Allow loading of arbitrary resource bundles when fallback is disabled). (David Zuelke, Stas)</li>
    6098. 

  6098. </ul>
    6099. 

  6099. </li>
    6100. 

  6100. 

  6101. <li>Imap extension:
    6102. 

  6102. <ul>
    6103. 

  6103.   <li><?php bugfix(55313); ?> (Number of retries not set when params specified). (kevin at kevinlocke dot name)</li>
    6104. 

  6104. </ul>
    6105. 

  6105. </li>
    6106. 

  6106. 

  6107. <li>json extension:
    6108. 

  6108. <ul>
    6109. 

  6109.   <li><?php bugfix(54484); ?> (Empty string in json_decode doesn't reset  json_last_error()). (Ilia)</li>
    6110. 

  6110. </ul>
    6111. 

  6111. </li>
    6112. 

  6112. 

  6113. <li>LDAP extension:
    6114. 

  6114. <ul>
    6115. 

  6115.   <li><?php bugfix(53339); ?> (Fails to build when compilng with gcc 4.5 and DSO libraries). (Clint Byrum, Raphael)</li>
    6116. 

  6116. </ul>
    6117. 

  6117. </li>
    6118. 

  6118. 

  6119. <li>libxml extension:
    6120. 

  6120. <ul>
    6121. 

  6121.   <li><?php bugfix(54601); ?> (Removing the doctype node segfaults). (Hannes)</li>
    6122. 

  6122.   <li><?php bugfix(54440); ?> (libxml extension ignores default context). (Gustavo)</li>
    6123. 

  6123. </ul>
    6124. 

  6124. </li>
    6125. 

  6125. 

  6126. <li>mbstring extension:
    6127. 

  6127. <ul>
    6128. 

  6128.   <li><?php bugfix(54494); ?> (mb_substr() mishandles UTF-32LE and UCS-2LE). (Gustavo)</li>
    6129. 

  6129. </ul>
    6130. 

  6130. </li>
    6131. 

  6131. 

  6132. <li>MCrypt extension:
    6133. 

  6133. <ul>
    6134. 

  6134.   <li>Change E_ERROR to E_WARNING in mcrypt_create_iv when not enough data has been fetched (Windows). (Pierre)</li>
    6135. 

  6135.   <li><?php bugfix(55169); ?> (mcrypt_create_iv always fails to gather sufficient random  data on Windows). (Pierre)</li>
    6136. 

  6136. </ul>
    6137. 

  6137. </li>
    6138. 

  6138. 

  6139. <li>MySQL Improved extension:
    6140. 

  6140. <ul>
    6141. 

  6141.   <li>Fixed Bug <?php bugfix(54221); ?> (mysqli::get_warnings segfault when used in multi queries). (Andrey)</li>
    6142. 

  6142. </ul>
    6143. 

  6143. </li>
    6144. 

  6144. 

  6145. <li>mysqlnd
    6146. 

  6146. <ul>
    6147. 

  6147.   <li>Fixed crash when using more than 28,000 bound parameters. Workaround is to set mysqlnd.net_cmd_buffer_size to at least 9000. (Andrey)</li>
    6148. 

  6148.   <li><?php bugfix(54674); ?> mysqlnd valid_sjis_(head|tail) is using invalid operator and range). (nihen at megabbs dot com, Andrey)</li>
    6149. 

  6149. </ul>
    6150. 

  6150. </li>
    6151. 

  6151. 

  6152. <li>MySQLi extension:
    6153. 

  6153. <ul>
    6154. 

  6154.   <li><?php bugfix(55283); ?> (SSL options set by mysqli_ssl_set ignored for MySQLi persistent connections). (Andrey)</li>
    6155. 

  6155. </ul>
    6156. 

  6156. </li>
    6157. 

  6157. 

  6158. <li>OpenSSL extension:
    6159. 

  6159. <ul>
    6160. 

  6160.   <li>openssl_encrypt()/openssl_decrypt() truncated keys of variable length ciphers to the OpenSSL default for the algorithm. (Scott)</li>
    6161. 

  6161.   <li>On blocking SSL sockets respect the timeout option where possible. (Scott)</li>
    6162. 

  6162.   <li><?php bugfix(54992); ?> (Stream not closed and error not returned when SSL CN_match fails). (Gustavo, laird_ngrps at dodo dot com dot au)</li>
    6163. 

  6163. </ul>
    6164. 

  6164. </li>
    6165. 

  6165. 

  6166. <li>Oracle Database extension (OCI8):
    6167. 

  6167. <ul>
    6168. 

  6168.   <li>Added oci_client_version() returning the runtime Oracle client library version (Chris Jones)</li>
    6169. 

  6169. </ul>
    6170. 

  6170. </li>
    6171. 

  6171. 

  6172. <li>PCRE extension:
    6173. 

  6173. <ul>
    6174. 

  6174.   <li>Increased the backtrack limit from 100000 to 1000000 (Rasmus)</li>
    6175. 

  6175. </ul>
    6176. 

  6176. </li>
    6177. 

  6177. 

  6178. <li>PDO extension:
    6179. 

  6179. <ul>
    6180. 

  6180.   <li><?php bugfix(54929); ?> (Parse error with single quote in sql comment). (Felipe)</li>
    6181. 

  6181.   <li><?php bugfix(52104); ?> (bindColumn creates Warning regardless of ATTR_ERRMODE  settings). (Ilia)</li>
    6182. 

  6182. </ul>
    6183. 

  6183. </li>
    6184. 

  6184. 

  6185. <li>PDO DBlib driver:
    6186. 

  6186. <ul>
    6187. 

  6187.   <li><?php bugfix(54329); ?> (MSSql extension memory leak). (dotslashpok at gmail dot com)</li>
    6188. 

  6188.   <li><?php bugfix(54167); ?> (PDO_DBLIB returns null on SQLUNIQUE field). (mjh at hodginsmedia dot com, Felipe)</li>
    6189. 

  6189. </ul>
    6190. 

  6190. </li>
    6191. 

  6191. 

  6192. <li>PDO ODBC driver:
    6193. 

  6193. <ul>
    6194. 

  6194.   <li>Fixed data type usage in 64bit. (leocsilva at gmail dot com)</li>
    6195. 

  6195. </ul>
    6196. 

  6196. </li>
    6197. 

  6197. 

  6198. <li>PDO MySQL driver:
    6199. 

  6199. <ul>
    6200. 

  6200.   <li><?php bugfix(54644); ?> (wrong pathes in php_pdo_mysql_int.h). (Tony, Johannes)</li>
    6201. 

  6201.   <li><?php bugfix(53782); ?> (foreach throws irrelevant exception). (Johannes, Andrey)</li>
    6202. 

  6202.   <li>Implemented FR <?php bugfix(48587); ?> (MySQL PDO driver doesn't support SSL connections). (Rob)</li>
    6203. 

  6203. </ul>
    6204. 

  6204. </li>
    6205. 

  6205. 

  6206. <li>PDO PostgreSQL driver:
    6207. 

  6207. <ul>
    6208. 

  6208.   <li><?php bugfix(54318); ?> (Non-portable grep option used in PDO pgsql configuration). (bwalton at artsci dot utoronto dot ca)</li>
    6209. 

  6209. </ul>
    6210. 

  6210. </li>
    6211. 

  6211. 

  6212. <li>PDO Oracle driver:
    6213. 

  6213. <ul>
    6214. 

  6214.   <li><?php bugfix(44989); ?> (64bit Oracle RPMs still not supported by pdo-oci). (jbnance at tresgeek dot net)</li>
    6215. 

  6215. </ul>
    6216. 

  6216. </li>
    6217. 

  6217. 

  6218. <li>Phar extension:
    6219. 

  6219. <ul>
    6220. 

  6220.   <li><?php bugfix(54395); ?> (Phar::mount() crashes when calling with wrong parameters). (Felipe)</li>
    6221. 

  6221. </ul>
    6222. 

  6222. </li>
    6223. 

  6223. 

  6224. <li>PHP-FPM SAPI:
    6225. 

  6225. <ul>
    6226. 

  6226.   <li>Implemented FR <?php bugfix(54499); ?> (FPM ping and status_path should handle HEAD request). (fat)</li>
    6227. 

  6227.   <li>Implemented FR <?php bugfix(54172); ?> (Overriding the pid file location of php-fpm). (fat)</li>
    6228. 

  6228.   <li>Fixed missing Expires and Cache-Control headers for ping and status pages. (fat)</li>
    6229. 

  6229.   <li>Fixed memory leak. (fat) Reported and fixed by Giovanni Giacobbi.
    6230. 

  6230.   <li>Fixed wrong value of log_level when invoking fpm with -tt. (fat)</li>
    6231. 

  6231.   <li>Added xml format to the status page. (fat)</li>
    6232. 

  6232.   <li>Removed timestamp in logs written by children processes. (fat)</li>
    6233. 

  6233.   <li>Fixed exit at FPM startup on fpm_resources_prepare() errors. (fat)</li>
    6234. 

  6234.   <li>Added master rlimit_files and rlimit_core in the global configuration settings. (fat)</li>
    6235. 

  6235.   <li>Removed pid in debug logs written by chrildren processes. (fat)</li>
    6236. 

  6236.   <li>Added custom access log (also added per request %CPU and memory mesurement). (fat)</li>
    6237. 

  6237.   <li>Added a real scoreboard and several improvements to the status page. (fat)</li>
    6238. 

  6238. </ul>
    6239. 

  6239. </li>
    6240. 

  6240. 

  6241. <li>Reflection extension:
    6242. 

  6242. <ul>
    6243. 

  6243.   <li><?php bugfix(54347); ?> (reflection_extension does not lowercase module function name). (Felipe, laruence at yahoo dot com dot cn)</li>
    6244. 

  6244. </ul>
    6245. 

  6245. </li>
    6246. 

  6246. 

  6247. <li>SOAP extension:
    6248. 

  6248. <ul>
    6249. 

  6249.   <li><?php bugfix(55323); ?> (SoapClient segmentation fault when XSD_TYPEKIND_EXTENSION contains itself). (Dmitry)</li>
    6250. 

  6250.   <li><?php bugfix(54312); ?> (soap_version logic bug). (tom at samplonius dot org)</li>
    6251. 

  6251. </ul>
    6252. 

  6252. </li>
    6253. 

  6253. 

  6254. <li>Sockets extension:
    6255. 

  6255. <ul>
    6256. 

  6256.   <li>Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938) Found by Mateusz Kocielski, Marek Kroemeke and Filip Palian. (Felipe)</li>
    6257. 

  6257.   <li>Changed socket_set_block() and socket_set_nonblock() so they emit warnings on error. (Gustavo)</li>
    6258. 

  6258.   <li><?php bugfix(51958); ?> (socket_accept() fails on IPv6 server sockets). (Gustavo)</li>
    6259. 

  6259. </ul>
    6260. 

  6260. </li>
    6261. 

  6261. 

  6262. <li>SPL extension:
    6263. 

  6263. <ul>
    6264. 

  6264.   <li><?php bugfix(54971); ?> (Wrong result when using iterator_to_array with use_keys on true). (Pierrick)</li>
    6265. 

  6265.   <li><?php bugfix(54970); ?> (SplFixedArray::setSize() isn't resizing). (Felipe)</li>
    6266. 

  6266.   <li><?php bugfix(54609); ?> (Certain implementation(s) of SplFixedArray cause hard crash). (Felipe)</li>
    6267. 

  6267.   <li><?php bugfix(54384); ?> (Dual iterators, GlobIterator, SplFileObject and SplTempFileObject crash when user-space classes don't call the paren constructor). (Gustavo)</li>
    6268. 

  6268.   <li><?php bugfix(54292); ?> (Wrong parameter causes crash in SplFileObject::__construct()). (Felipe)</li>
    6269. 

  6269.   <li><?php bugfix(54291); ?> (Crash iterating DirectoryIterator for dir name starting with \0). (Gustavo)</li>
    6270. 

  6270.   <li><?php bugfix(54281); ?> (Crash in non-initialized RecursiveIteratorIterator). (Felipe)</li>
    6271. 

  6271. </ul>
    6272. 

  6272. </li>
    6273. 

  6273. 

  6274. <li>Streams:
    6275. 

  6275. <ul>
    6276. 

  6276.   <li><?php bugfix(54946); ?> (stream_get_contents infinite loop). (Hannes)</li>
    6277. 

  6277.   <li><?php bugfix(54623); ?> (Segfault when writing to a persistent socket after closing a copy of the socket). (Gustavo)</li>
    6278. 

  6278.   <li><?php bugfix(54681); ?> (addGlob() crashes on invalid flags). (Felipe)</li>
    6279. 

  6279. </ul>
    6280. 

  6280. </li>
    6281. 

  6281. </ul>
    6282. 

  6282. 

  6283. <!-- }}} --></section>
    6284. 

  6284. 

  6285. <section class="version" id="5.3.6"><!-- {{{ 5.3.6 -->
    6286. 

  6286. <h3>Version 5.3.6</h3>
    6287. 

  6287. <?php release_date('17-Mar-2011'); ?>
    6288. 

  6288. 

  6289. <ul>
    6290. 

  6290. <li>Upgraded bundled Sqlite3 to version 3.7.4. (Ilia)</li>
    6291. 

  6291. <li>Upgraded bundled PCRE to version 8.11. (Ilia)</li>
    6292. 

  6292. 

  6293. <li>Zend Engine:
    6294. 

  6294. <ul>
    6295. 

  6295.   <li>Indirect reference to $this fails to resolve if direct $this is never used in method. (Scott)</li>
    6296. 

  6296.   <li>Fixed bug numerous crashes due to setlocale (crash on error, pcre, mysql etc.) on Windows in thread safe mode. (Pierre)</li>
    6297. 

  6297.   <li>Added options to debug backtrace functions. (Stas)</li>
    6298. 

  6298.   <li><?php bugfix(53971); ?> (isset() and empty() produce apparently spurious runtime error). (Dmitry)</li>
    6299. 

  6299.   <li><?php bugfix(53958); ?> (Closures can't 'use' shared variables by value and by reference). (Dmitry)</li>
    6300. 

  6300.   <li><?php bugfix(53629); ?> (memory leak inside highlight_string()). (Hannes, Ilia)</li>
    6301. 

  6301.   <li><?php bugfix(51458); ?> (Lack of error context with nested exceptions). (Stas)</li>
    6302. 

  6302.   <li><?php bugfix(47143); ?> (Throwing an exception in a destructor causes a fatal error). (Stas)</li>
    6303. 

  6303.   <li><?php bugfix(43512); ?> (same parameter name can be used multiple times in method/function definition). (Felipe)</li>
    6304. 

  6304. </ul>
    6305. 

  6305. </li>
    6306. 

  6306. 

  6307. <li>Core:
    6308. 

  6308. <ul>
    6309. 

  6309.   <li>Added ability to connect to HTTPS sites through proxy with basic authentication using stream_context/http/header/Proxy-Authorization (Dmitry)</li>
    6310. 

  6310.   <li>Changed default value of ini directive serialize_precision from 100 to 17. (Gustavo)</li>
    6311. 

  6311.   <li><?php bugfix(54055); ?> (buffer overrun with high values for precision ini setting). (Gustavo)</li>
    6312. 

  6312.   <li><?php bugfix(53959); ?> (reflection data for fgetcsv out-of-date). (Richard)</li>
    6313. 

  6313.   <li><?php bugfix(53577); ?> (Regression introduced in 5.3.4 in open_basedir with a trailing forward slash). (lekensteyn at gmail dot com, Pierre)</li>
    6314. 

  6314.   <li><?php bugfix(53682); ?> (Fix compile on the VAX). (Rasmus, jklos)</li>
    6315. 

  6315.   <li><?php bugfix(48484); ?> (array_product() always returns 0 for an empty array). (Ilia)</li>
    6316. 

  6316.   <li><?php bugfix(48607); ?> (fwrite() doesn't check reply from ftp server before exiting). (Ilia)</li>
    6317. 

  6317. </ul>
    6318. 

  6318. </li>
    6319. 

  6319.  
    6320. 

  6320. <li>Calendar extension:
    6321. 

  6321. <ul>
    6322. 

  6322.   <li><?php bugfix(53574); ?> (Integer overflow in SdnToJulian, sometimes leading to segfault). (Gustavo)</li>
    6323. 

  6323. </ul>
    6324. 

  6324. </li>
    6325. 

  6325. 

  6326. <li>DOM extension:
    6327. 

  6327. <ul>
    6328. 

  6328.   <li>Implemented FR <?php bugl(39771); ?> (Made DOMDocument::saveHTML accept an optional DOMNode like DOMDocument::saveXML). (Gustavo)</li>
    6329. 

  6329. </ul>
    6330. 

  6330. </li>
    6331. 

  6331.   
    6332. 

  6332. <li>DateTime extension:
    6333. 

  6333. <ul>
    6334. 

  6334.   <li>Fixed a bug in DateTime-&gt;modify() where absolute date/time statements had no effect. (Derick)</li>
    6335. 

  6335.   <li><?php bugfix(53729); ?> (DatePeriod fails to initialize recurrences on 64bit big-endian systems). (Derick, rein@basefarm.no)</li>
    6336. 

  6336.   <li><?php bugfix(52808); ?> (Segfault when specifying interval as two dates). (Stas)</li>
    6337. 

  6337.   <li><?php bugfix(52738); ?> (Can't use new properties in class extended from DateInterval). (Stas)</li>
    6338. 

  6338.   <li><?php bugfix(52290); ?> (setDate, setISODate, setTime works wrong when DateTime created from timestamp). (Stas)</li>
    6339. 

  6339.   <li><?php bugfix(52063); ?> (DateTime constructor's second argument doesn't have a null default value). (Gustavo, Stas)</li>
    6340. 

  6340. </ul>
    6341. 

  6341. </li>
    6342. 

  6342. 

  6343. <li>Exif extension:
    6344. 

  6344. <ul>
    6345. 

  6345.   <li><?php bugfix(54002); ?> (crash on crafted tag, reported by Luca Carettoni). (Pierre) (CVE-2011-0708)</li>
    6346. 

  6346. </ul>
    6347. 

  6347. </li>
    6348. 

  6348. 

  6349. <li>Filter extension:
    6350. 

  6350. <ul>
    6351. 

  6351.   <li><?php bugfix(53924); ?> (FILTER_VALIDATE_URL doesn't validate port number). (Ilia, Gustavo)</li>
    6352. 

  6352.   <li><?php bugfix(53150); ?> (FILTER_FLAG_NO_RES_RANGE is missing some IP ranges). (Ilia)</li>
    6353. 

  6353.   <li><?php bugfix(52209); ?> (INPUT_ENV returns NULL for set variables (CLI)). (Ilia)</li>
    6354. 

  6354.   <li><?php bugfix(47435); ?> (FILTER_FLAG_NO_RES_RANGE don't work with ipv6). (Ilia, valli at icsurselva dot ch)</li>
    6355. 

  6355. </ul>
    6356. 

  6356. </li>
    6357. 

  6357. 

  6358. <li>Fileinfo extension:
    6359. 

  6359. <ul>
    6360. 

  6360.   <li><?php bugfix(54016); ?> (finfo_file() Cannot determine filetype in archives). (Hannes)</li>
    6361. 

  6361. </ul>
    6362. 

  6362. </li>
    6363. 

  6363. 

  6364. <li>Gettext
    6365. 

  6365. <ul>
    6366. 

  6366.   <li><?php bugfix(53837); ?> (_() crashes on Windows when no LANG or LANGUAGE environment variable are set). (Pierre)</li>
    6367. 

  6367. </ul>
    6368. 

  6368. </li>
    6369. 

  6369. 

  6370. <li>IMAP extension:
    6371. 

  6371. <ul>
    6372. 

  6372.   <li>Implemented FR <?php bugl(53812); ?> (get MIME headers of the part of the email). (Stas)</li>
    6373. 

  6373.   <li><?php bugfix(53377); ?> (imap_mime_header_decode() doesn't ignore \t during long MIME header unfolding). (Adam)</li>
    6374. 

  6374. </ul>
    6375. 

  6375. </li>
    6376. 

  6376.     
    6377. 

  6377. <li>Intl extension:
    6378. 

  6378. <ul>
    6379. 

  6379.   <li><?php bugfix(53612); ?> (Segmentation fault when using cloned several intl objects). (Gustavo)</li>
    6380. 

  6380.   <li><?php bugfix(53512); ?> (NumberFormatter::setSymbol crash on bogus $attr values). (Felipe)</li>
    6381. 

  6381.   <li>Implemented clone functionality for number, date &amp; message formatters. (Stas).</li>
    6382. 

  6382. </ul>
    6383. 

  6383. </li>
    6384. 

  6384. 

  6385. <li>JSON extension:
    6386. 

  6386. <ul>
    6387. 

  6387.   <li><?php bugfix(53963); ?> (Ensure error_code is always set during some failed decodings). (Scott)</li>
    6388. 

  6388. </ul>
    6389. 

  6389. </li>
    6390. 

  6390. 

  6391. <li>mysqlnd
    6392. 

  6392. <ul>
    6393. 

  6393.   <li>Fixed problem with always returning 0 as num_rows for unbuffered sets. (Andrey, Ulf)</li>
    6394. 

  6394. </ul>
    6395. 

  6395. </li>
    6396. 

  6396. 

  6397. <li>MySQL Improved extension:
    6398. 

  6398. <ul>
    6399. 

  6399.   <li>Added 'db' and 'catalog' keys to the field fetching functions (FR <?php bugl(39847); ?>). (Kalle)</li>
    6400. 

  6400.   <li>Fixed buggy counting of affected rows when using the text protocol. The collected statistics were wrong when multi_query was used with mysqlnd (Andrey)</li>
    6401. 

  6401.   <li><?php bugfix(53795); ?> (Connect Error from MySqli (mysqlnd) when using SSL). (Kalle)</li>
    6402. 

  6402.   <li><?php bugfix(53503); ?> (mysqli::query returns false after successful LOAD DATA query). (Kalle, Andrey)</li>
    6403. 

  6403.   <li><?php bugfix(53425); ?> (mysqli_real_connect() ignores client flags when built to call libmysql). (Kalle, tre-php-net at crushedhat dot com)</li>
    6404. 

  6404. </ul>
    6405. 

  6405. </li>
    6406. 

  6406. 

  6407. <li>OpenSSL extension:
    6408. 

  6408. <ul>
    6409. 

  6409.   <li>Fixed stream_socket_enable_crypto() not honoring the socket timeout in server mode. (Gustavo)</li>
    6410. 

  6410.   <li><?php bugfix(54060); ?> (Memory leaks when openssl_encrypt). (Pierre)</li>
    6411. 

  6411.   <li><?php bugfix(54061); ?> (Memory leaks when openssl_decrypt). (Pierre)</li>
    6412. 

  6412.   <li><?php bugfix(53592); ?> (stream_socket_enable_crypto() busy-waits in client mode). (Gustavo)</li>
    6413. 

  6413.   <li>Implemented FR <?php bugl(53447); ?> (Cannot disable SessionTicket extension for servers that do not support it) by adding a no_ticket SSL context option. (Adam, Tony)</li>
    6414. 

  6414. </ul>
    6415. 

  6415. </li>
    6416. 

  6416. 

  6417. <li>PDO MySQL driver:
    6418. 

  6418. <ul>
    6419. 

  6419.   <li><?php bugfix(53551); ?> (PDOStatement execute segfaults for pdo_mysql driver). (Johannes)</li>
    6420. 

  6420.   <li>Implemented FR <?php bugl(47802); ?> (Support for setting character sets in DSN strings). (Kalle)</li>
    6421. 

  6421. </ul>
    6422. 

  6422. </li>
    6423. 

  6423. 

  6424. <li>PDO Oracle driver:
    6425. 

  6425. <ul>
    6426. 

  6426.   <li><?php bugfix(39199); ?> (Cannot load Lob data with more than 4000 bytes on ORACLE 10). (spatar at mail dot nnov dot ru)</li>
    6427. 

  6427. </ul>
    6428. 

  6428. </li>
    6429. 

  6429.     
    6430. 

  6430. <li>PDO PostgreSQL driver:
    6431. 

  6431. <ul>
    6432. 

  6432.   <li><?php bugfix(53517); ?> (segfault in pgsql_stmt_execute() when postgres is down). (gyp at balabit dot hu)</li>
    6433. 

  6433. </ul>
    6434. 

  6434. 

  6435. <li>Phar extension:
    6436. 

  6436. <ul>
    6437. 

  6437.   <li><?php bugfix(54247); ?> (format-string vulnerability on Phar). (Felipe) (CVE-2011-1153)</li>
    6438. 

  6438.   <li><?php bugfix(53541); ?> (format string bug in ext/phar). (crrodriguez at opensuse dot org, Ilia)</li>
    6439. 

  6439.   <li><?php bugfix(53898); ?> (PHAR reports invalid error message, when the directory does not exist). (Ilia)</li>
    6440. 

  6440. </ul>
    6441. 

  6441. </li>
    6442. 

  6442. 

  6443. <li>PHP-FPM SAPI:
    6444. 

  6444. <ul>
    6445. 

  6445.   <li>Enforce security in the fastcgi protocol parsing. (ef-lists at email dotde)</li>
    6446. 

  6446.   <li><?php bugfix(53777); ?> (php-fpm log format now match php_error log format). (fat)</li>
    6447. 

  6447.   <li><?php bugfix(53527); ?> (php-fpm --test doesn't set a valuable return value). (fat)</li>
    6448. 

  6448.   <li><?php bugfix(53434); ?> (php-fpm slowlog now also logs the original request). (fat)</li>
    6449. 

  6449. </ul>
    6450. 

  6450. </li>
    6451. 

  6451. 

  6452. <li>Readline extension:
    6453. 

  6453. <ul>
    6454. 

  6454.   <li><?php bugfix(53630); ?> (Fixed parameter handling inside readline() function). (jo at feuersee dot de, Ilia)</li>
    6455. 

  6455. </ul>
    6456. 

  6456. </li>
    6457. 

  6457. 

  6458. <li>Reflection extension:
    6459. 

  6459. <ul>
    6460. 

  6460.   <li><?php bugfix(53915); ?> (ReflectionClass::getConstant(s) emits fatal error on constants with self::). (Gustavo)</li>
    6461. 

  6461. </ul>
    6462. 

  6462. </li>
    6463. 

  6463. 

  6464. <li>Shmop extension:
    6465. 

  6465. <ul>
    6466. 

  6466.   <li><?php bugfix(54193); ?> (Integer overflow in shmop_read()). (Felipe) Reported by Jose Carlos Norte (CVE-2011-1092)</li>
    6467. 

  6467. </ul>
    6468. 

  6468. </li>
    6469. 

  6469. 

  6470. <li>SNMP extension:
    6471. 

  6471. <ul>
    6472. 

  6472.   <li><?php bugfix(51336); ?> (snmprealwalk (snmp v1) does not handle end of OID tree correctly). (Boris Lytochkin)</li>
    6473. 

  6473. </ul>
    6474. 

  6474. </li>
    6475. 

  6475. 

  6476. <li>SOAP extension:
    6477. 

  6477. <ul>
    6478. 

  6478.   <li>Fixed possible crash introduced by the NULL poisoning patch. (Mateusz Kocielski, Pierre)</li>
    6479. 

  6479. </ul>
    6480. 

  6480. </li>
    6481. 

  6481. 

  6482. <li>SPL extension:
    6483. 

  6483. <ul>
    6484. 

  6484.   <li>Fixed memory leak in DirectoryIterator::getExtension() and SplFileInfo::getExtension(). (Felipe)</li>
    6485. 

  6485.   <li><?php bugfix(53914); ?> (SPL assumes HAVE_GLOB is defined). (Chris Jones)</li>
    6486. 

  6486.   <li><?php bugfix(53515); ?> (property_exists incorrect on ArrayObject null and 0 values). (Felipe)</li>
    6487. 

  6487.   <li>Added SplFileInfo::getExtension(). FR <?php bugl(48767); ?>. (Peter Cowburn)</li>
    6488. 

  6488. </ul>
    6489. 

  6489. </li>
    6490. 

  6490. 

  6491. <li>SQLite3 extension:
    6492. 

  6492. <ul>
    6493. 

  6493.   <li>Fixed memory leaked introduced by the NULL poisoning patch. (Mateusz Kocielski, Pierre)</li>
    6494. 

  6494.   <li>Fixed memory leak on SQLite3Result and SQLite3Stmt when assigning to a reference. (Felipe)</li>
    6495. 

  6495.   <li>Add SQlite3_Stmt::readonly() for checking if a statement is read only. (Scott)</li>
    6496. 

  6496.   <li>Implemented FR <?php bugl(53466); ?> (SQLite3Result::columnType() should return false after all of the rows have been fetched). (Scott)</li>
    6497. 

  6497. </ul>
    6498. 

  6498. </li>
    6499. 

  6499. 

  6500. <li>Streams:
    6501. 

  6501. <ul>
    6502. 

  6502.   <li><?php bugfix(54092); ?> (Segmentation fault when using HTTP proxy with the FTP wrapper). (Gustavo)</li>
    6503. 

  6503.   <li><?php bugfix(53913); ?> (Streams functions assume HAVE_GLOB is defined). (Chris Jones)</li>
    6504. 

  6504.   <li><?php bugfix(53903); ?> (userspace stream stat callback does not separate the elements of the returned array before converting them). (Gustavo)</li>
    6505. 

  6505.   <li>Implemented FR <?php bugl(26158); ?> (open arbitrary file descriptor with fopen). (Gustavo)</li>
    6506. 

  6506. </ul>
    6507. 

  6507. </li>
    6508. 

  6508. 

  6509. <li>Tokenizer Extension
    6510. 

  6510. <ul>
    6511. 

  6511.   <li><?php bugfix(54089); ?> (token_get_all() does not stop after __halt_compiler). (Ilia)</li>
    6512. 

  6512. </ul>
    6513. 

  6513. </li>
    6514. 

  6514. 

  6515. <li>XSL extension:
    6516. 

  6516. <ul>
    6517. 

  6517.   <li>Fixed memory leaked introduced by the NULL poisoning patch. (Mateusz Kocielski, Pierre)</li>
    6518. 

  6518. </ul>
    6519. 

  6519. </li>
    6520. 

  6520. 

  6521. <li>Zip extension:
    6522. 

  6522. <ul>
    6523. 

  6523.   <li>Added the filename into the return value of stream_get_meta_data(). (Hannes)</li>
    6524. 

  6524.   <li><?php bugfix(53923); ?> (Zip functions assume HAVE_GLOB is defined). (Adam)</li>
    6525. 

  6525.   <li><?php bugfix(53893); ?> (Wrong return value for ZipArchive::extractTo()). (Pierre)</li>
    6526. 

  6526.   <li><?php bugfix(53885); ?> (ZipArchive segfault with FL_UNCHANGED on empty archive). (Stas, Maksymilian Arciemowicz). (CVE-2011-0421)</li>
    6527. 

  6527.   <li><?php bugfix(53854); ?> (Missing constants for compression type). (Richard, Adam)</li>
    6528. 

  6528.   <li><?php bugfix(53603); ?> (ZipArchive should quiet stat errors). (brad dot froehle at gmail dot com, Gustavo)</li>
    6529. 

  6529.   <li><?php bugfix(53579); ?> (stream_get_contents() segfaults on ziparchive streams). (Hannes)</li>
    6530. 

  6530.   <li><?php bugfix(53568); ?> (swapped memset arguments in struct initialization). (crrodriguez at opensuse dot org)</li>
    6531. 

  6531.   <li><?php bugfix(53166); ?> (Missing parameters in docs and reflection definition). (Richard)</li>
    6532. 

  6532.   <li><?php bugfix(49072); ?> (feof never returns true for damaged file in zip). (Gustavo, Richard Quadling)</li>
    6533. 

  6533. </ul>
    6534. 

  6534. </li>
    6535. 

  6535. 

  6536. </ul>
    6537. 

  6537. 

  6538. <!-- }}} --></section>
    6539. 

  6539. 

  6540. <section class="version" id="5.3.5"><!-- {{{ 5.3.5 -->
    6541. 

  6541. <h3>Version 5.3.5</h3>
    6542. 

  6542. <?php release_date('06-Jan-2011'); ?>
    6543. 

  6543. <ul>
    6544. 

  6544. 

  6545. <li><?php bugfix(53632); ?> (PHP hangs on numeric value 2.2250738585072011e-308). (CVE-2010-4645) (Rasmus, Scott)</li>
    6546. 

  6546. 

  6547. </ul>
    6548. 

  6548. 

  6549. <!-- }}} --></section>
    6550. 

  6550. 

  6551. <section class="version" id="5.2.17"><!-- {{{ 5.2.17 -->
    6552. 

  6552. <h3>Version 5.2.17</h3>
    6553. 

  6553. <?php release_date('06-Jan-2011'); ?>
    6554. 

  6554. <ul>
    6555. 

  6555. 

  6556. <li><?php bugfix(53632); ?> (PHP hangs on numeric value 2.2250738585072011e-308). (CVE-2010-4645) (Rasmus, Scott)</li>
    6557. 

  6557. 

  6558. </ul>
    6559. 

  6559. 

  6560. <!-- }}} --></section>
    6561. 

  6561. 

  6562. <section class="version" id="5.2.16"><!-- {{{ 5.2.16 -->
    6563. 

  6563. <h3>Version 5.2.16</h3>
    6564. 

  6564. <?php release_date('16-Dec-2010'); ?>
    6565. 

  6565. <ul>
    6566. 

  6566. 

  6567. <li><?php bugfix(53517); ?> (segfault in pgsql_stmt_execute() when postgres is down). (gyp at balabit dot hu)</li>
    6568. 

  6568. <li><?php bugfix(53516); ?> (Regression in open_basedir handling). (Ilia)</li>
    6569. 

  6569. 

  6570. </ul>
    6571. 

  6571. 

  6572. <!-- }}} --></section>
    6573. 

  6573. 

  6574. <section class="version" id="5.3.4"><!-- {{{ 5.3.4 -->
    6575. 

  6575. <h3>Version 5.3.4</h3>
    6576. 

  6576. <?php release_date('09-Dec-2010'); ?>
    6577. 

  6577. 

  6578. <ul>
    6579. 

  6579. <li>Upgraded bundled Sqlite3 to version 3.7.3. (Ilia)</li>
    6580. 

  6580. <li>Upgraded bundled PCRE to version 8.10. (Ilia)</li>
    6581. 

  6581. 

  6582. <li>Security enhancements:
    6583. 

  6583. <ul>
    6584. 

  6584.   <li>Fixed crash in zip extract method (possible CWE-170). 
    6585. 

  6585.     (Maksymilian Arciemowicz, Pierre)</li>
    6586. 

  6586.   <li>Paths with NULL in them (foo\0bar.txt) are now considered as invalid. (Rasmus)</li>
    6587. 

  6587.   <li>Fixed a possible double free in imap extension (Identified by Mateusz 
    6588. 

  6588.     Kocielski). (CVE-2010-4150). (Ilia)</li>
    6589. 

  6589.   <li>Fixed NULL pointer dereference in ZipArchive::getArchiveComment.
    6590. 

  6590.     (CVE-2010-3709). (Maksymilian Arciemowicz)</li>
    6591. 

  6591.   <li>Fixed possible flaw in open_basedir (CVE-2010-3436). (Pierre)</li>
    6592. 

  6592.   <li>Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950). (Pierre)</li>
    6593. 

  6593.   <li>Fixed symbolic resolution support when the target is a DFS share. (Pierre)</li>
    6594. 

  6594.   <li><?php bugfix(52929); ?> (Segfault in filter_var with FILTER_VALIDATE_EMAIL with
    6595. 

  6595.     large amount of data) (CVE-2010-3710). (Adam)</li>
    6596. 

  6596. </ul>
    6597. 

  6597. </li>
    6598. 

  6598. 

  6599. <li>General improvements:
    6600. 

  6600. <ul>
    6601. 

  6601.   <li>Added stat support for zip stream. (Pierre)</li>
    6602. 

  6602.   <li>Added follow_location (enabled by default) option for the http stream 
    6603. 

  6603.     support. (Pierre)</li>
    6604. 

  6604.   <li>Improved support for is_link and related functions on Windows. (Pierre)</li>
    6605. 

  6605.   <li>Added a 3rd parameter to get_html_translation_table. It now takes a charset
    6606. 

  6606.     hint, like htmlentities et al. (Gustavo)</li>
    6607. 

  6607. </ul> 
    6608. 

  6608. </li>
    6609. 

  6609. <li>Implemented feature requests:
    6610. 

  6610. <ul>
    6611. 

  6611.   <li>Implemented FR <?php bugl(52348); ?>, added new constant ZEND_MULTIBYTE to detect
    6612. 

  6612.     zend multibyte at runtime. (Kalle)</li>
    6613. 

  6613.   <li>Implemented FR <?php bugl(52173); ?>, added functions pcntl_get_last_error() and 
    6614. 

  6614.      pcntl_strerror(). (nick dot telford at gmail dot com, Arnaud)</li>
    6615. 

  6615.   <li>Implemented symbolic links support for open_basedir checks. (Pierre)</li>
    6616. 

  6616.   <li>Implemented FR <?php bugl(51804); ?>, SplFileInfo::getLinkTarget on Windows. (Pierre)</li>
    6617. 

  6617.   <li>Implemented FR <?php bugl(50692); ?>, not uploaded files don't count towards
    6618. 

  6618.     max_file_uploads limit. As a side improvement, temporary files are not opened
    6619. 

  6619.     for empty uploads and, in debug mode, 0-length uploads. (Gustavo)</li>
    6620. 

  6620. </ul>    
    6621. 

  6621. </li>
    6622. 

  6622. <li>Improved MySQLnd:
    6623. 

  6623. <ul>
    6624. 

  6624.   <li>Added new character sets to mysqlnd, which are available in MySQL 5.5
    6625. 

  6625.     (Andrey)</li>
    6626. 

  6626. </ul>
    6627. 

  6627. </li>
    6628. 

  6628. <li>Improved PHP-FPM SAPI:
    6629. 

  6629. <ul>
    6630. 

  6630.   <li>Added '-p/--prefix' to php-fpm to use a custom prefix and run multiple
    6631. 

  6631.     instances. (fat)</li>
    6632. 

  6632.   <li>Added custom process title for FPM. (fat)</li>
    6633. 

  6633.   <li>Added '-t/--test' to php-fpm to check and validate FPM conf file. (fat)</li>
    6634. 

  6634.   <li>Added statistics about listening socket queue length for FPM.
    6635. 

  6635.     (andrei dot nigmatulin at gmail dot com, fat)</li>
    6636. 

  6636. </ul>    
    6637. 

  6637. </li>
    6638. 

  6638. <li>Core:
    6639. 

  6639. <ul>
    6640. 

  6640.   <li>Fixed extract() to do not overwrite $GLOBALS and $this when using
    6641. 

  6641.     EXTR_OVERWRITE. (jorto at redhat dot com)</li>
    6642. 

  6642.   <li>Fixed bug in the Windows implementation of dns_get_record, where the two
    6643. 

  6643.     last parameters wouldn't be filled unless the type were DNS_ANY (Gustavo).</li>
    6644. 

  6644.   <li>Changed the $context parameter on copy() to actually have an effect. (Kalle)</li>
    6645. 

  6645.   <li>Fixed htmlentities/htmlspecialchars accepting certain ill-formed UTF-8
    6646. 

  6646.     sequences. (Gustavo)</li>
    6647. 

  6647.   <li><?php bugfix(53409); ?> (sleep() returns NULL on Windows). (Pierre)</li>
    6648. 

  6648.   <li><?php bugfix(53319); ?> (strip_tags() may strip '&lt;br /&gt;' incorrectly). (Felipe)</li>
    6649. 

  6649.   <li><?php bugfix(53304); ?> (quot_print_decode does not handle lower-case hex digits).
    6650. 

  6650.     (Ilia, daniel dot mueller at inexio dot net)</li>
    6651. 

  6651.   <li><?php bugfix(53248); ?> (rawurlencode RFC 3986 EBCDIC support misses tilde char).
    6652. 

  6652.     (Justin Martin)  </li>
    6653. 

  6653.   <li><?php bugfix(53226); ?> (file_exists fails on big filenames). (Adam)</li>
    6654. 

  6654.   <li><?php bugfix(53198); ?> (changing INI setting "from" with ini_set did not have any
    6655. 

  6655.     effect). (Gustavo)</li>
    6656. 

  6656.   <li><?php bugfix(53180); ?> (post_max_size=0 not disabling the limit when the content
    6657. 

  6657.     type is application/x-www-form-urlencoded or is not registered with PHP).
    6658. 

  6658.     (gm at tlink dot de, Gustavo)</li>
    6659. 

  6659.   <li><?php bugfix(53141); ?> (autoload misbehaves if called from closing session).
    6660. 

  6660.     (ladislav at marek dot su)</li>
    6661. 

  6661.   <li><?php bugfix(53021); ?> (In html_entity_decode, failure to convert numeric entities
    6662. 

  6662.     with ENT_NOQUOTES and ISO-8859-1). Fixed and extended the fix of ENT_NOQUOTES 
    6663. 

  6663.     in html_entity_decode that had introduced the bug (rev #185591) to other
    6664. 

  6664.     encodings. Additionaly, html_entity_decode() now doesn't decode &amp;#34; if
    6665. 

  6665.     ENT_NOQUOTES is given. (Gustavo)</li>
    6666. 

  6666.   <li><?php bugfix(52931); ?> (strripos not overloaded with function overloading enabled).
    6667. 

  6667.     (Felipe)</li>
    6668. 

  6668.   <li><?php bugfix(52772); ?> (var_dump() doesn't check for the existence of 
    6669. 

  6669.     get_class_name before calling it). (Kalle, Gustavo)</li>
    6670. 

  6670.   <li><?php bugfix(52534); ?> (var_export array with negative key). (Felipe)</li>
    6671. 

  6671.   <li><?php bugfix(52327); ?> (base64_decode() improper handling of leading padding in
    6672. 

  6672.     strict mode). (Ilia)</li>
    6673. 

  6673.   <li><?php bugfix(52260); ?> (dns_get_record fails with non-existing domain on Windows).
    6674. 

  6674.     (a_jelly_doughnut at phpbb dot com, Pierre)</li>
    6675. 

  6675.   <li><?php bugfix(50953); ?> (socket will not connect to IPv4 address when the host has
    6676. 

  6676.     both IPv4 and IPv6 addresses, on Windows). (Gustavo, Pierre)</li>
    6677. 

  6677.   <li><?php bugfix(50524); ?> (proc_open on Windows does not respect cwd as it does on
    6678. 

  6678.     other platforms). (Pierre)</li>
    6679. 

  6679.   <li><?php bugfix(49687); ?> (utf8_decode vulnerabilities and deficiencies in the number
    6680. 

  6680.     of reported malformed sequences). (CVE-2010-3870) (Gustavo)</li>
    6681. 

  6681.   <li><?php bugfix(49407); ?> (get_html_translation_table doesn't handle UTF-8). (Gustavo)</li>
    6682. 

  6682.   <li><?php bugfix(48831); ?> (php -i has different output to php --ini). (Richard, 
    6683. 

  6683.     Pierre)</li>
    6684. 

  6684.   <li><?php bugfix(47643); ?> (array_diff() takes over 3000 times longer than php 5.2.4).
    6685. 

  6685.     (Felipe)</li>
    6686. 

  6686.   <li><?php bugfix(47168); ?> (printf of floating point variable prints maximum of 40 
    6687. 

  6687.     decimal places). (Ilia)</li>
    6688. 

  6688.   <li><?php bugfix(46587); ?> (mt_rand() does not check that max is greater than min).
    6689. 

  6689.     (Ilia)</li>
    6690. 

  6690.   <li><?php bugfix(29085); ?> (bad default include_path on Windows). (Pierre)</li>
    6691. 

  6691.   <li><?php bugfix(25927); ?> (get_html_translation_table calls the ' &amp;#39; instead of
    6692. 

  6692.     &amp;#039;). (Gustavo)</li>
    6693. 

  6693. </ul>    
    6694. 

  6694. </li>
    6695. 

  6695. <li>Zend engine:
    6696. 

  6696. <ul>
    6697. 

  6697.   <li>Reverted fix for bug <?php bugl(51176); ?> (Static calling in non-static method behaves
    6698. 

  6698.     like $this-&gt;). (Felipe)</li>
    6699. 

  6699.   <li>Changed deprecated ini options on startup from E_WARNING to E_DEPRECATED. 
    6700. 

  6700.     (Kalle)</li>
    6701. 

  6701.   <li>Fixed NULL dereference in lex_scan on zend multibyte builds where the script
    6702. 

  6702.     had a flex incompatible encoding and there was no converter. (Gustavo)</li>
    6703. 

  6703.   <li>Fixed covariance of return-by-ref constraints. (Etienne)</li>
    6704. 

  6704.   <li><?php bugfix(53305); ?> (E_NOTICE when defining a constant starts with
    6705. 

  6705.     __COMPILER_HALT_OFFSET__). (Felipe)</li>
    6706. 

  6706.   <li><?php bugfix(52939); ?> (zend_call_function does not respect ZEND_SEND_PREFER_REF).
    6707. 

  6707.     (Dmitry)</li>
    6708. 

  6708.   <li><?php bugfix(52879); ?> (Objects unreferenced in __get, __set, __isset or __unset
    6709. 

  6709.     can be freed too early). (mail_ben_schmidt at yahoo dot com dot au, Dmitry)</li>
    6710. 

  6710.   <li><?php bugfix(52786); ?> (PHP should reset section to [PHP] after ini sections).
    6711. 

  6711.     (Fedora at famillecollet dot com)</li>
    6712. 

  6712.   <li><?php bugfix(52508); ?> (newline problem with parse_ini_file+INI_SCANNER_RAW).
    6713. 

  6713.     (Felipe)</li>
    6714. 

  6714.   <li><?php bugfix(52484); ?> (__set() ignores setting properties with empty names).
    6715. 

  6715.     (Felipe)</li>
    6716. 

  6716.   <li><?php bugfix(52361); ?> (Throwing an exception in a destructor causes invalid
    6717. 

  6717.     catching). (Dmitry)</li>
    6718. 

  6718.   <li><?php bugfix(51008); ?> (Zend/tests/bug45877.phpt fails). (Dmitry)</li>
    6719. 

  6719. </ul>
    6720. 

  6720. </li>
    6721. 

  6721. <li>Build issues:
    6722. 

  6722. <ul>
    6723. 

  6723.   <li><?php bugfix(52436); ?> (Compile error if systems do not have stdint.h)
    6724. 

  6724.     (Sriram Natarajan)</li>
    6725. 

  6725.   <li><?php bugfix(50345); ?> (nanosleep not detected properly on some solaris versions).
    6726. 

  6726.     (Ulf, Tony)</li>
    6727. 

  6727.   <li><?php bugfix(49215); ?> (make fails on glob_wrapper). (Felipe)</li>
    6728. 

  6728. </ul>
    6729. 

  6729. </li>
    6730. 

  6730. <li>Calendar extension:
    6731. 

  6731. <ul>
    6732. 

  6732.   <li><?php bugfix(52744); ?> (cal_days_in_month incorrect for December 1 BCE).
    6733. 

  6733.    (gpap at internet dot gr, Adam)</li>
    6734. 

  6734. </ul>
    6735. 

  6735. </li>
    6736. 

  6736. <li>cURL extension:
    6737. 

  6737. <ul>
    6738. 

  6738.   <li><?php bugfix(52828); ?> (curl_setopt does not accept persistent streams).
    6739. 

  6739.     (Gustavo, Ilia)</li>
    6740. 

  6740.   <li><?php bugfix(52827); ?> (cURL leaks handle and causes assertion error
    6741. 

  6741.     (CURLOPT_STDERR)). (Gustavo)</li>
    6742. 

  6742.   <li><?php bugfix(52202); ?> (CURLOPT_PRIVATE gets corrupted). (Ilia)</li>
    6743. 

  6743.   <li><?php bugfix(50410); ?> (curl extension slows down PHP on Windows). (Pierre)</li>
    6744. 

  6744. </ul>
    6745. 

  6745. </li>
    6746. 

  6746. <li>DateTime extension:
    6747. 

  6747. <ul>
    6748. 

  6748.   <li><?php bugfix(53297); ?> (gettimeofday implementation in php/win32/time.c can return
    6749. 

  6749.     1 million microsecs). (ped at 7gods dot org)</li>
    6750. 

  6750.   <li><?php bugfix(52668); ?> (Iterating over a dateperiod twice is broken). (Derick)</li>
    6751. 

  6751.   <li><?php bugfix(52454); ?> (Relative dates and getTimestamp increments by one day).
    6752. 

  6752.     (Derick)</li>
    6753. 

  6753.   <li><?php bugfix(52430); ?> (date_parse parse 24:xx:xx as valid time). (Derick)</li>
    6754. 

  6754.   <li>Added support for the ( and ) delimiters/separators to
    6755. 

  6755.     DateTime::createFromFormat(). (Derick)</li>
    6756. 

  6756. </ul>
    6757. 

  6757. </li>
    6758. 

  6758. <li>DBA extension:
    6759. 

  6759. <ul>
    6760. 

  6760.   <li>Added Berkeley DB 5.1 support to the DBA extension. (Oracle Corp.)</li>
    6761. 

  6761. </ul>
    6762. 

  6762. </li>
    6763. 

  6763. <li>DOM extension:
    6764. 

  6764. <ul>
    6765. 

  6765.   <li><?php bugfix(52656); ?> (DOMCdataSection does not work with splitText). (Ilia)</li>
    6766. 

  6766. </ul>
    6767. 

  6767. </li>
    6768. 

  6768. <li>Filter extension:
    6769. 

  6769. <ul>
    6770. 

  6770.   <li>Fixed the filter extension accepting IPv4 octets with a leading 0 as that
    6771. 

  6771.     belongs to the unsupported "dotted octal" representation. (Gustavo)</li>
    6772. 

  6772.   <li><?php bugfix(53236); ?> (problems in the validation of IPv6 addresses with leading
    6773. 

  6773.     and trailing :: in the filter extension). (Gustavo)</li>
    6774. 

  6774.   <li><?php bugfix(50117); ?> (problems in the validation of IPv6 addresses with IPv4
    6775. 

  6775.     addresses and ::). (Gustavo)</li>
    6776. 

  6776. </ul>
    6777. 

  6777. </li>
    6778. 

  6778. <li>GD extension:
    6779. 

  6779. <ul>
    6780. 

  6780.   <li><?php bugfix(53492); ?> (fix crash if anti-aliasing steps are invalid). (Pierre)</li>
    6781. 

  6781. </ul>
    6782. 

  6782. </li>
    6783. 

  6783. <li>GMP extension:
    6784. 

  6784. <ul>
    6785. 

  6785.   <li><?php bugfix(52906); ?> (gmp_mod returns negative result when non-negative is 
    6786. 

  6786.     expected). (Stas)</li>
    6787. 

  6787.   <li><?php bugfix(52849); ?> (GNU MP invalid version match). (Adam)</li>
    6788. 

  6788. </ul>
    6789. 

  6789. </li>
    6790. 

  6790. <li>Hash extension:
    6791. 

  6791. <ul>
    6792. 

  6792.   <li><?php bugfix(51003); ?> (unaligned memory access in ext/hash/hash_tiger.c).
    6793. 

  6793.     (Mike, Ilia)</li>
    6794. 

  6794. </ul>
    6795. 

  6795. </li>
    6796. 

  6796. <li>Iconv extension:
    6797. 

  6797. <ul>
    6798. 

  6798.   <li><?php bugfix(52941); ?> (The 'iconv_mime_decode_headers' function is skipping
    6799. 

  6799.     headers). (Adam)</li>
    6800. 

  6800.   <li><?php bugfix(52599); ?> (iconv output handler outputs incorrect content type
    6801. 

  6801.     when flags are used). (Ilia)</li>
    6802. 

  6802.   <li><?php bugfix(51250); ?> (iconv_mime_decode() does not ignore malformed Q-encoded 
    6803. 

  6803.     words). (Ilia)</li>
    6804. 

  6804. </ul>
    6805. 

  6805. </li>
    6806. 

  6806. <li>Intl extension:
    6807. 

  6807. <ul>
    6808. 

  6808.   <li>Fixed crashes on invalid parameters in intl extension. (CVE-2010-4409). (Stas, Maksymilian
    6809. 

  6809.     Arciemowicz)</li>
    6810. 

  6810.   <li>Added support for formatting the timestamp stored in a DateTime object.
    6811. 

  6811.     (Stas)</li>
    6812. 

  6812.   <li><?php bugfix(50590); ?> (IntlDateFormatter::parse result is limited to the integer
    6813. 

  6813.     range). (Stas)</li>
    6814. 

  6814. </ul>
    6815. 

  6815. </li>
    6816. 

  6816. <li>Mbstring extension:
    6817. 

  6817. <ul>
    6818. 

  6818.   <li><?php bugfix(53273); ?> (mb_strcut() returns garbage with the excessive length
    6819. 

  6819.     parameter). (CVE-2010-4156) (Mateusz Kocielski, Pierre, Moriyoshi)</li>
    6820. 

  6820.   <li><?php bugfix(52981); ?> (Unicode casing table was out-of-date. Updated with
    6821. 

  6821.     UnicodeData-6.0.0d7.txt and included the source of the generator program with
    6822. 

  6822.     the distribution) (Gustavo).</li>
    6823. 

  6823.   <li><?php bugfix(52681); ?> (mb_send_mail() appends an extra MIME-Version header).
    6824. 

  6824.     (Adam)</li>
    6825. 

  6825. </ul>
    6826. 

  6826. </li>
    6827. 

  6827. <li>MSSQL extension:
    6828. 

  6828. <ul>
    6829. 

  6829.   <li>Fixed possible crash in mssql_fetch_batch(). (Kalle)</li>
    6830. 

  6830.   <li><?php bugfix(52843); ?> (Segfault when optional parameters are not passed in to
    6831. 

  6831.     mssql_connect). (Felipe)</li>
    6832. 

  6832. </ul>
    6833. 

  6833. </li>
    6834. 

  6834. <li>MySQL extension:
    6835. 

  6835. <ul>
    6836. 

  6836.   <li><?php bugfix(52636); ?> (php_mysql_fetch_hash writes long value into int). 
    6837. 

  6837.     (Kalle, rein at basefarm dot no)</li>
    6838. 

  6838. </ul>
    6839. 

  6839. </li>
    6840. 

  6840. <li>MySQLi extension:
    6841. 

  6841. <ul>
    6842. 

  6842.   <li><?php bugfix(52891); ?> (Wrong data inserted with mysqli/mysqlnd when using
    6843. 

  6843.     mysqli_stmt_bind_param and value> PHP_INT_MAX). (Andrey)</li>
    6844. 

  6844.   <li><?php bugfix(52686); ?> (mysql_stmt_attr_[gs]et argument points to incorrect type).
    6845. 

  6845.     (rein at basefarm dot no)</li>
    6846. 

  6846.   <li><?php bugfix(52654); ?> (mysqli doesn't install headers with structures it uses).
    6847. 

  6847.     (Andrey)</li>
    6848. 

  6848.   <li><?php bugfix(52433); ?> (Call to undefined method mysqli::poll() - must be static).
    6849. 

  6849.     (Andrey)</li>
    6850. 

  6850.   <li><?php bugfix(52417); ?> (MySQLi build failure with mysqlnd on MacOS X). (Andrey)</li>
    6851. 

  6851.   <li><?php bugfix(52413); ?> (MySQLi/libmysql build failure on OS X, FreeBSD). (Andrey)</li>
    6852. 

  6852.   <li><?php bugfix(52390); ?> (mysqli_report() should be per-request setting). (Kalle)</li>
    6853. 

  6853.   <li><?php bugfix(52302); ?> (mysqli_fetch_all does not work with MYSQLI_USE_RESULT).
    6854. 

  6854.     (Andrey)</li>
    6855. 

  6855.   <li><?php bugfix(52221); ?> (Misbehaviour of magic_quotes_runtime (get/set)). (Andrey)</li>
    6856. 

  6856.   <li><?php bugfix(45921); ?> (Can't initialize character set hebrew). (Andrey)</li>
    6857. 

  6857. </ul>
    6858. 

  6858. </li>
    6859. 

  6859. <li>MySQLnd:
    6860. 

  6860. <ul>
    6861. 

  6861.   <li><?php bugfix(52613); ?> (crash in mysqlnd after hitting memory limit). (Andrey)</li>
    6862. 

  6862. </ul> 
    6863. 

  6863. </li>
    6864. 

  6864. <li>ODBC extension:
    6865. 

  6865. <ul>
    6866. 

  6866. <li><?php bugfix(52512); ?> (Broken error handling in odbc_execute).
    6867. 

  6867.     (mkoegler at auto dot tuwien dot ac dot at)</li>
    6868. 

  6868. </ul>
    6869. 

  6869. </li>
    6870. 

  6870. <li>Openssl extension:
    6871. 

  6871. <ul>
    6872. 

  6872.   <li>Fixed possible blocking behavior in openssl_random_pseudo_bytes on Windows.
    6873. 

  6873.     (Pierre)</li>
    6874. 

  6874.   <li><?php bugfix(53136); ?> (Invalid read on openssl_csr_new()). (Felipe)</li>
    6875. 

  6875.   <li><?php bugfix(52947); ?> (segfault when ssl stream option capture_peer_cert_chain
    6876. 

  6876.     used). (Felipe)</li>
    6877. 

  6877. </ul>
    6878. 

  6878. </li>
    6879. 

  6879. <li>Oracle Database extension (OCI8):
    6880. 

  6880. <ul>
    6881. 

  6881.   <li><?php bugfix(53284); ?> (Valgrind warnings in oci_set_* functions) (Oracle Corp.)</li>
    6882. 

  6882.   <li><?php bugfix(51610); ?> (Using oci_connect causes PHP to take a long time to
    6883. 

  6883.     exit).  Requires Oracle 11.2.0.2 client libraries (or Oracle bug fix
    6884. 

  6884.     9891199) for this patch to have an effect. (Oracle Corp.)</li>
    6885. 

  6885. </ul>
    6886. 

  6886. </li>
    6887. 

  6887. <li>PCNTL extension:
    6888. 

  6888. <ul>
    6889. 

  6889.   <li><?php bugfix(52784); ?> (Race condition when handling many concurrent signals).
    6890. 

  6890.     (nick dot telford at gmail dot com, Arnaud)</li>
    6891. 

  6891. </ul>
    6892. 

  6892. </li>
    6893. 

  6893. <li>PCRE extension:
    6894. 

  6894. <ul>
    6895. 

  6895.   <li><?php bugfix(52971); ?> (PCRE-Meta-Characters not working with utf-8). (Felipe)</li>
    6896. 

  6896.   <li><?php bugfix(52732); ?> (Docs say preg_match() returns FALSE on error, but it
    6897. 

  6897.     returns int(0)). (slugonamission at gmail dot com)</li>
    6898. 

  6898. </ul>
    6899. 

  6899. </li>
    6900. 

  6900. <li>PHAR extension:
    6901. 

  6901. <ul>
    6902. 

  6902.   <li><?php bugfix(50987); ?> (unaligned memory access in phar.c).
    6903. 

  6903.     (geissert at debian dot org, Ilia)</li>
    6904. 

  6904. </ul>
    6905. 

  6905. </li>
    6906. 

  6906. <li>PHP-FPM SAPI:
    6907. 

  6907. <ul>
    6908. 

  6908.   <li><?php bugfix(53412); ?> (segfault when using -y). (fat)</li>
    6909. 

  6909.   <li>Fixed inconsistent backlog default value (-1) in FPM on many systems. (fat)</li>
    6910. 

  6910.   <li><?php bugfix(52501); ?> (libevent made FPM crashed when forking - libevent has
    6911. 

  6911.     been removed). (fat)</li>
    6912. 

  6912.   <li><?php bugfix(52725); ?> (gcc builtin atomic functions were sometimes used when they
    6913. 

  6913.     were not available). (fat)</li>
    6914. 

  6914.   <li><?php bugfix(52693); ?> (configuration file errors are not logged to stderr). (fat)</li>
    6915. 

  6915.   <li><?php bugfix(52674); ?> (FPM Status page returns inconsistent Content-Type headers).
    6916. 

  6916.     (fat)</li>
    6917. 

  6917.   <li><?php bugfix(52498); ?> (libevent was not only linked to php-fpm). (fat)</li>
    6918. 

  6918. </ul>
    6919. 

  6919. </li>
    6920. 

  6920. <li>PDO:
    6921. 

  6921. <ul>
    6922. 

  6922.   <li><?php bugfix(52699); ?> (PDO bindValue writes long int 32bit enum).
    6923. 

  6923.     (rein at basefarm dot no) </li>
    6924. 

  6924.   <li><?php bugfix(52487); ?> (PDO::FETCH_INTO leaks memory). (Felipe)</li>
    6925. 

  6925. </ul>
    6926. 

  6926. </li>
    6927. 

  6927. <li>PDO DBLib driver:
    6928. 

  6928. <ul>
    6929. 

  6929.   <li><?php bugfix(52546); ?> (pdo_dblib segmentation fault when iterating MONEY values).
    6930. 

  6930.     (Felipe)</li>
    6931. 

  6931. </ul>
    6932. 

  6932. </li>
    6933. 

  6933. <li>PDO Firebird driver:
    6934. 

  6934. <ul>
    6935. 

  6935.   <li>Restored firebird support (VC9 builds only). (Pierre)</li>
    6936. 

  6936.   <li><?php bugfix(53335); ?> (pdo_firebird did not implement rowCount()).
    6937. 

  6937.     (preeves at ibphoenix dot com)</li>
    6938. 

  6938.   <li><?php bugfix(53323); ?> (pdo_firebird getAttribute() crash).
    6939. 

  6939.     (preeves at ibphoenix dot com)</li>
    6940. 

  6940. </ul>
    6941. 

  6941. </li>
    6942. 

  6942. <li>PDO MySQL driver:
    6943. 

  6943. <ul>
    6944. 

  6944.   <li><?php bugfix(52745); ?> (Binding params doesn't work when selecting a date inside a
    6945. 

  6945.     CASE-WHEN). (Andrey)</li>
    6946. 

  6946. </ul>
    6947. 

  6947. </li>
    6948. 

  6948. <li>PostgreSQL extension:
    6949. 

  6949. <ul>
    6950. 

  6950.   <li><?php bugfix(47199); ?> (pg_delete() fails on NULL). (ewgraf at gmail dot com)</li>
    6951. 

  6951. </ul>
    6952. 

  6952. </li>
    6953. 

  6953. <li>Reflection extension:
    6954. 

  6954. <ul>
    6955. 

  6955.   <li>Fixed ReflectionProperty::isDefault() giving a wrong result for properties
    6956. 

  6956.     obtained with ReflectionClass::getProperties(). (Gustavo)</li>
    6957. 

  6957.   <li><?php bugfix(53366); ?> (Reflection doesnt get dynamic property value from
    6958. 

  6958.     getProperty()). (Felipe)</li>
    6959. 

  6959.   <li><?php bugfix(52854); ?> (ReflectionClass::newInstanceArgs does not work for classes
    6960. 

  6960.     without constructors). (Johannes)</li>
    6961. 

  6961. </ul>
    6962. 

  6962. </li>
    6963. 

  6963. <li>SOAP extension:
    6964. 

  6964. <ul>
    6965. 

  6965.   <li><?php bugfix(44248); ?> (RFC2616 transgression while HTTPS request through proxy
    6966. 

  6966.     with SoapClient object). (Dmitry)</li>
    6967. 

  6967. </ul>
    6968. 

  6968. </li>
    6969. 

  6969. <li>SPL extension:
    6970. 

  6970. <ul>
    6971. 

  6971.   <li><?php bugfix(53362); ?> (Segmentation fault when extending SplFixedArray). (Felipe)</li>
    6972. 

  6972.   <li><?php bugfix(53279); ?> (SplFileObject doesn't initialise default CSV escape
    6973. 

  6973.     character). (Adam)</li>
    6974. 

  6974.   <li><?php bugfix(53144); ?> (Segfault in SplObjectStorage::removeAll()). (Felipe)</li>
    6975. 

  6975.   <li><?php bugfix(53071); ?> (SPLObjectStorage defeats gc_collect_cycles). (Gustavo)</li>
    6976. 

  6976.   <li><?php bugfix(52573); ?> (SplFileObject::fscanf Segmentation fault). (Felipe)</li>
    6977. 

  6977.   <li><?php bugfix(51763); ?> (SplFileInfo::getType() does not work symbolic link 
    6978. 

  6978.     and directory). (Pierre)</li>
    6979. 

  6979.   <li><?php bugfix(50481); ?> (Storing many SPLFixedArray in an array crashes). (Felipe)</li>
    6980. 

  6980.   <li><?php bugfix(50579); ?> (RegexIterator::REPLACE doesn't work). (Felipe)</li>
    6981. 

  6981. </ul>
    6982. 

  6982. </li>
    6983. 

  6983. <li>SQLite3 extension:
    6984. 

  6984. <ul>
    6985. 

  6985.   <li><?php bugfix(53463); ?> (sqlite3 columnName() segfaults on bad column_number).
    6986. 

  6986.     (Felipe)</li>
    6987. 

  6987. </ul>
    6988. 

  6988. </li>
    6989. 

  6989. <li>Streams:
    6990. 

  6990. <ul>
    6991. 

  6991.   <li>Fixed forward stream seeking emulation in streams that don't support seeking
    6992. 

  6992.     in situations where the read operation gives back less data than requested
    6993. 

  6993.     and when there was data in the buffer before the emulation started. Also made
    6994. 

  6994.     more consistent its behavior -- should return failure every time less data
    6995. 

  6995.     than was requested was skipped. (Gustavo)</li>
    6996. 

  6996.   <li><?php bugfix(53241); ?> (stream casting that relies on fdopen/fopencookie fails
    6997. 

  6997.     with streams opened with, inter alia, the 'xb' mode). (Gustavo)</li>
    6998. 

  6998.   <li><?php bugfix(53006); ?> (stream_get_contents has an unpredictable behavior when the
    6999. 

  6999.     underlying stream does not support seeking). (Gustavo)</li>
    7000. 

  7000.   <li><?php bugfix(52944); ?> (Invalid write on second and subsequent reads with an
    7001. 

  7001.     inflate filter fed invalid data). (Gustavo)</li>
    7002. 

  7002.   <li><?php bugfix(52820); ?> (writes to fopencookie FILE* not commited when seeking the
    7003. 

  7003.     stream). (Gustavo)</li>
    7004. 

  7004. </ul>
    7005. 

  7005. </li>
    7006. 

  7006. <li>WDDX extension:
    7007. 

  7007. <ul>
    7008. 

  7008.   <li><?php bugfix(52468); ?> (wddx_deserialize corrupts integer field value when left
    7009. 

  7009.     empty). (Felipe)</li>
    7010. 

  7010. </ul>
    7011. 

  7011. </li>
    7012. 

  7012. <li>Zlib extension:
    7013. 

  7013. <ul>
    7014. 

  7014.   <li><?php bugfix(52926); ?> (zlib fopen wrapper does not use context). (Gustavo)</li>
    7015. 

  7015. </ul>
    7016. 

  7016. </li>
    7017. 

  7017. </ul>
    7018. 

  7018. 

  7019. <!-- }}} --></section>
    7020. 

  7020. 

  7021. <section class="version" id="5.2.15"><!-- {{{ 5.2.15 -->
    7022. 

  7022. <h3>Version 5.2.15</h3>
    7023. 

  7023. <?php release_date('08-Dec-2010'); ?>
    7024. 

  7024. <ul>
    7025. 

  7025. 

  7026. <li>Fixed extract() to do not overwrite $GLOBALS and $this when using EXTR_OVERWRITE. (jorto at redhat dot com)</li>
    7027. 

  7027. <li>Fixed crash in zip extract method (possible CWE-170).  (Maksymilian Arciemowicz, Pierre)</li>
    7028. 

  7028. <li>Fixed a possible double free in imap extension (Identified by Mateusz  Kocielski). (CVE-2010-4150). (Ilia)</li>
    7029. 

  7029. <li>Fixed possible flaw in open_basedir (CVE-2010-3436). (Pierre)</li>
    7030. 

  7030. <li>Fixed possible crash in mssql_fetch_batch(). (Kalle)</li>
    7031. 

  7031. <li>Fixed NULL pointer dereference in ZipArchive::getArchiveComment. (CVE-2010-3709). (Maksymilian Arciemowicz)</li>
    7032. 

  7032. 

  7033. <li><?php bugfix(53492); ?> (fix crash if anti-aliasing steps are invalid). (Pierre)</li>
    7034. 

  7034. <li><?php bugfix(53323); ?> (pdo_firebird getAttribute() crash). (preeves at ibphoenix dot com)</li>
    7035. 

  7035. <li><?php bugfix(52929); ?> (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data). (CVE-2010-3709). (Adam)</li>
    7036. 

  7036. <li><?php bugfix(52879); ?> (Objects unreferenced in __get, __set, __isset or __unset can be freed too early). (mail_ben_schmidt at yahoo dot com dot au, Dmitry)</li>
    7037. 

  7037. <li><?php bugfix(52772); ?> (var_dump() doesn't check for the existence of  get_class_name before calling it). (Kalle, Gustavo)</li>
    7038. 

  7038. <li><?php bugfix(52546); ?> (pdo_dblib segmentation fault when iterating MONEY values). (Felipe, Adam)</li>
    7039. 

  7039. <li><?php bugfix(52436); ?> (Compile error if systems do not have stdint.h) (Sriram Natarajan)</li>
    7040. 

  7040. <li><?php bugfix(52390); ?> (mysqli_report() should be per-request setting). (Kalle)</li>
    7041. 

  7041. <li><?php bugfix(51008); ?> (Zend/tests/bug45877.phpt fails). (Dmitry)</li>
    7042. 

  7042. <li><?php bugfix(47643); ?> (array_diff() takes over 3000 times longer than php 5.2.4). (Felipe)</li>
    7043. 

  7043. <li><?php bugfix(44248); ?> (RFC2616 transgression while HTTPS request through proxy with SoapClient object). (Dmitry)</li>
    7044. 

  7044. 

  7045. </ul>
    7046. 

  7046. 

  7047. <!-- }}} --></section>
    7048. 

  7048. 

  7049. <section class="version" id="5.3.3"><!-- {{{ 5.3.3 -->
    7050. 

  7050. <h3>Version 5.3.3</h3>
    7051. 

  7051. <?php release_date('22-Jul-2010'); ?>
    7052. 

  7052. <ul>
    7053. 

  7053. <li>Upgraded bundled sqlite to version 3.6.23.1. (Ilia)</li>
    7054. 

  7054. <li>Upgraded bundled PCRE to version 8.02. (Ilia)</li>
    7055. 

  7055. </ul>
    7056. 

  7056. <ul>
    7057. 

  7057. <li>Added support for JSON_NUMERIC_CHECK option in json_encode() that converts numeric strings to integers. (Ilia)</li>
    7058. 

  7058. <li>Added stream_set_read_buffer, allows to set the buffer for read operation. (Pierre)</li>
    7059. 

  7059. <li>Added stream filter support to mcrypt extension (ported from mcrypt_filter). (Stas)</li>
    7060. 

  7060. <li>Added full_special_chars filter to ext/filter. (Rasmus)</li>
    7061. 

  7061. <li>Added backlog socket context option for stream_socket_server(). (Mike)</li>
    7062. 

  7062. <li>Added fifth parameter to openssl_encrypt()/openssl_decrypt() (string $iv) to use non-NULL IV.
    7063. 

  7063.   Made implicit use of NULL IV a warning. (Sara)</li>
    7064. 

  7064. <li>Added openssl_cipher_iv_length(). (Sara)</li>
    7065. 

  7065. <li>Added FastCGI Process Manager (FPM) SAPI. (Tony)</li>
    7066. 

  7066. <li>Added recent Windows versions to php_uname and fix undefined windows version support. (Pierre)</li>
    7067. 

  7067. <li>Added Berkeley DB 5 support to the DBA extension. (Johannes, Chris Jones)</li>
    7068. 

  7068. <li>Added support for copy to/from array/file for pdo_pgsql extension. (Denis Gasparin, Ilia)</li>
    7069. 

  7069. <li>Added inTransaction() method to PDO, with specialized support for Postgres. (Ilia, Denis Gasparin)</li>
    7070. 

  7070. </ul>
    7071. 

  7071. <ul>
    7072. 

  7072. <li>Changed namespaced classes so that the ctor can only be named __construct now. (Stas)</li>
    7073. 

  7073. <li>Reset error state in PDO::beginTransaction() reset error state. (Ilia)</li>
    7074. 

  7074. </ul>
    7075. 

  7075. <ul>
    7076. 

  7076. <li>Implemented FR <?php bugl(51295); ?> (SQLite3::busyTimeout not existing). (Mark)</li>
    7077. 

  7077. <li>Implemented FR <?php bugl(35638); ?> (Adding udate to imap_fetch_overview results). (Charles_Duffy at dell dot com )</li>
    7078. 

  7078. <li>Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs (CVE-2010-2531). (Scott)</li>
    7079. 

  7079. <li>Fixed possible buffer overflows in mysqlnd_list_fields,  mysqlnd_change_user. (Andrey)</li>
    7080. 

  7080. <li>Fixed possible buffer overflows when handling error packets in mysqlnd. Reported by Stefan Esser. (Andrey)</li>
    7081. 

  7081. <li>Fixed very rare memory leak in mysqlnd, when binding thousands of columns. (Andrey)</li>
    7082. 

  7082. <li>Fixed a crash when calling an inexistent method of a class that inherits PDOStatement if instantiated directly instead of doing by the PDO methods. (Felipe)</li>
    7083. 

  7083. </ul>
    7084. 

  7084. <ul>
    7085. 

  7085. <li>Fixed memory leak on error in mcrypt_create_iv on Windows. (Pierre)</li>
    7086. 

  7086. <li>Fixed a possible crash because of recursive GC invocation. (Dmitry)</li>
    7087. 

  7087. <li>Fixed a possible resource destruction issues in shm_put_var(). Reported by Stefan Esser. (Dmitry)</li>
    7088. 

  7088. <li>Fixed a possible information leak because of interruption of XOR operator. Reported by Stefan Esser. (Dmitry)</li>
    7089. 

  7089. <li>Fixed a possible memory corruption because of unexpected call-time pass by refernce and following memory clobbering through callbacks.
    7090. 

  7090.   Reported by Stefan Esser. (Dmitry)</li>
    7091. 

  7091. <li>Fixed a possible memory corruption in ArrayObject::uasort(). Reported by Stefan Esser. (Dmitry)</li>
    7092. 

  7092. <li>Fixed a possible memory corruption in parse_str(). Reported by Stefan Esser. (Dmitry)</li>
    7093. 

  7093. <li>Fixed a possible memory corruption in pack(). Reported by Stefan Esser. (Dmitry)</li>
    7094. 

  7094. <li>Fixed a possible memory corruption in substr_replace(). Reported by Stefan Esser. (Dmitry)</li>
    7095. 

  7095. <li>Fixed a possible memory corruption in addcslashes(). Reported by Stefan Esser. (Dmitry)</li>
    7096. 

  7096. <li>Fixed a possible stack exhaustion inside fnmatch(). Reported by Stefan Esser. (Ilia)</li>
    7097. 

  7097. <li>Fixed a possible dechunking filter buffer overflow. Reported by Stefan Esser. (Pierre)</li>
    7098. 

  7098. <li>Fixed a possible arbitrary memory access inside sqlite extension. Reported by Mateusz Kocielski. (Ilia)</li>
    7099. 

  7099. <li>Fixed string format validation inside phar extension. Reported by Stefan Esser. (Ilia)</li>
    7100. 

  7100. <li>Fixed handling of session variable serialization on certain prefix characters. Reported by Stefan Esser. (Ilia)</li>
    7101. 

  7101. <li>Fixed a NULL pointer dereference when processing invalid XML-RPC requests (Fixes CVE-2010-0397, bug <?php bugl(51288); ?>). (Raphael Geissert)</li>
    7102. 

  7102. <li>Fixed 64-bit integer overflow in mhash_keygen_s2k(). (Clément LECIGNE, Stas)</li>
    7103. 

  7103. <li>Fixed SplObjectStorage unserialization problems (CVE-2010-2225). (Stas)</li>
    7104. 

  7104. <li>Fixed the mail.log ini setting when no filename was given. (Johannes)</li>
    7105. 

  7105. </ul>
    7106. 

  7106. <ul>
    7107. 

  7107. <li><?php bugfix(52317); ?> (Segmentation fault when using mail() on a rhel 4.x (only 64 bit)). (Adam)</li>
    7108. 

  7108. <li><?php bugfix(52262); ?> (json_decode() shows no errors on invalid UTF-8). (Scott)</li>
    7109. 

  7109. <li><?php bugfix(52240); ?> (hash_copy() does not copy the HMAC key, causes wrong results and PHP crashes). (Felipe)</li>
    7110. 

  7110. <li><?php bugfix(52238); ?> (Crash when an Exception occured in iterator_to_array). (Johannes)</li>
    7111. 

  7111. <li><?php bugfix(52193); ?> (converting closure to array yields empty array). (Felipe)</li>
    7112. 

  7112. <li><?php bugfix(52183); ?> (Reflectionfunction reports invalid number of arguments for function aliases). (Felipe)</li>
    7113. 

  7113. <li><?php bugfix(52162); ?> (custom request header variables with numbers are removed). (Sriram Natarajan)</li>
    7114. 

  7114. <li><?php bugfix(52160); ?> (Invalid E_STRICT redefined constructor error). (Felipe)</li>
    7115. 

  7115. <li><?php bugfix(52138); ?> (Constants are parsed into the ini file for section names). (Felipe)</li>
    7116. 

  7116. <li><?php bugfix(52115); ?> (mysqli_result::fetch_all returns null, not an empty array).  (Andrey)</li>
    7117. 

  7117. <li><?php bugfix(52101); ?> (dns_get_record() garbage in 'ipv6' field on Windows).  (Pierre)</li>
    7118. 

  7118. <li><?php bugfix(52082); ?> (character_set_client &amp; character_set_connection reset after mysqli_change_user()). (Andrey)</li>
    7119. 

  7119. <li><?php bugfix(52043); ?> (GD doesn't recognize latest libJPEG versions). (php at group dot apple dot com, Pierre) </li>
    7120. 

  7120. <li><?php bugfix(52041); ?> (Memory leak when writing on uninitialized variable returned from function). (Dmitry)</li>
    7121. 

  7121. <li><?php bugfix(52060); ?> (Memory leak when passing a closure to method_exists()). (Felipe)</li>
    7122. 

  7122. <li><?php bugfix(52057); ?> (ReflectionClass fails on Closure class). (Felipe)</li>
    7123. 

  7123. <li><?php bugfix(52051); ?> (handling of case sensitivity of old-style constructors changed in 5.3+). (Felipe)</li>
    7124. 

  7124. <li><?php bugfix(52037); ?> (Concurrent builds fail in install-programs). (seanius at debian dot org, Kalle)</li>
    7125. 

  7125. <li><?php bugfix(52019); ?> (make lcov doesn't support TESTS variable anymore). (Patrick)</li>
    7126. 

  7126. <li><?php bugfix(52010); ?> (open_basedir restrictions mismatch on vacuum command). (Ilia)</li>
    7127. 

  7127. <li><?php bugfix(52001); ?> (Memory allocation problems after using variable variables). (Dmitry)</li>
    7128. 

  7128. <li><?php bugfix(51991); ?> (spl_autoload and *nix support with namespace). (Felipe)</li>
    7129. 

  7129. <li><?php bugfix(51943); ?> (AIX: Several files are out of ANSI spec). (Kalle, coreystup at gmail dot com)</li>
    7130. 

  7130. <li><?php bugfix(51911); ?> (ReflectionParameter::getDefaultValue() memory leaks with constant array). (Felipe)</li>
    7131. 

  7131. <li><?php bugfix(51905); ?> (ReflectionParameter fails if default value is an array with an access to self::). (Felipe)</li>
    7132. 

  7132. <li><?php bugfix(51899); ?> (Parse error in parse_ini_file() function when empy value followed by no newline). (Felipe)</li>
    7133. 

  7133. <li><?php bugfix(51844); ?> (checkdnsrr does not support types other than MX). (Pierre)</li>
    7134. 

  7134. <li><?php bugfix(51827); ?> (Bad warning when register_shutdown_function called with wrong num of parameters). (Felipe)</li>
    7135. 

  7135. <li><?php bugfix(51822); ?> (Segfault with strange __destruct() for static class variables). (Dmitry)</li>
    7136. 

  7136. <li><?php bugfix(51791); ?> (constant() aborts execution when fail to check undefined constant). (Felipe)</li>
    7137. 

  7137. <li><?php bugfix(51732); ?> (Fileinfo __construct or open does not work with NULL). (Pierre)</li>
    7138. 

  7138. <li><?php bugfix(51725); ?> (xmlrpc_get_type() returns true on invalid dates). (Mike)</li>
    7139. 

  7139. <li><?php bugfix(51723); ?> (Content-length header is limited to 32bit integer with Apache2 on Windows). (Pierre)</li>
    7140. 

  7140. <li><?php bugfix(51721); ?> (mark DOMNodeList and DOMNamedNodeMap as Traversable). (David Zuelke)</li>
    7141. 

  7141. <li><?php bugfix(51712); ?> (Test mysql_mysqlnd_read_timeout_long must fail on MySQL4). (Andrey)</li>
    7142. 

  7142. <li><?php bugfix(51697); ?> (Unsafe operations in free_storage of SPL iterators, causes crash during shutdown). (Etienne)</li>
    7143. 

  7143. <li><?php bugfix(51690); ?> (Phar::setStub looks for case-sensitive __HALT_COMPILER()). (Ilia)</li>
    7144. 

  7144. <li><?php bugfix(51688); ?> (ini per dir crashes when invalid document root  are given). (Pierre)</li>
    7145. 

  7145. <li><?php bugfix(51671); ?> (imagefill does not work correctly for small images). (Pierre)</li>
    7146. 

  7146. <li><?php bugfix(51670); ?> (getColumnMeta causes segfault when re-executing query after calling nextRowset). (Pierrick)</li>
    7147. 

  7147. <li><?php bugfix(51647); ?> Certificate file without private key (pk in another file) doesn't work. (Andrey)</li>
    7148. 

  7148. <li><?php bugfix(51629); ?> (CURLOPT_FOLLOWLOCATION error message is misleading). (Pierre)</li>
    7149. 

  7149. <li><?php bugfix(51627); ?> (script path not correctly evaluated). (russell dot tempero at rightnow dot com)</li>
    7150. 

  7150. <li><?php bugfix(51624); ?> (Crash when calling mysqli_options()). (Felipe)</li>
    7151. 

  7151. <li><?php bugfix(51615); ?> (PHP crash with wrong HTML in SimpleXML). (Felipe)</li>
    7152. 

  7152. <li><?php bugfix(51609); ?> (pg_copy_to: Invalid results when using fourth parameter). (Felipe)</li>
    7153. 

  7153. <li><?php bugfix(51608); ?> (pg_copy_to: WARNING: nonstandard use of \\ in a string literal). (cbandy at jbandy dot com)</li>
    7154. 

  7154. <li><?php bugfix(51607); ?> (pg_copy_from does not allow schema in the tablename argument). (cbandy at jbandy dot com)</li>
    7155. 

  7155. <li><?php bugfix(51605); ?> (Mysqli - zombie links). (Andrey)</li>
    7156. 

  7156. <li><?php bugfix(51604); ?> (newline in end of header is shown in start of message). (Daniel Egeberg)</li>
    7157. 

  7157. <li><?php bugfix(51590); ?> (JSON_ERROR_UTF8 is undefined). (Felipe)</li>
    7158. 

  7158. <li><?php bugfix(51583); ?> (Bus error due to wrong alignment in mysqlnd). (Rainer Jung)</li>
    7159. 

  7159. <li><?php bugfix(51582); ?> (Don't assume UINT64_C it's ever available). (reidrac at usebox dot net, Pierre)</li>
    7160. 

  7160. <li><?php bugfix(51577); ?> (Uninitialized memory reference with oci_bind_array_by_name) (Oracle Corp.)</li>
    7161. 

  7161. <li><?php bugfix(51562); ?> (query timeout in mssql can not be changed per query). (ejsmont dot artur at gmail dot com)</li>
    7162. 

  7162. <li><?php bugfix(51552); ?> (debug_backtrace() causes segmentation fault and/or memory issues). (Dmitry)</li>
    7163. 

  7163. <li><?php bugfix(51445); ?> (var_dump() invalid/slow *RECURSION* detection). (Felipe)</li>
    7164. 

  7164. <li><?php bugfix(51435); ?> (Missing ifdefs / logic bug in crypt code cause compile errors). (Felipe)</li>
    7165. 

  7165. <li><?php bugfix(51424); ?> (crypt() function hangs after 3rd call). (Pierre, Sriram)</li>
    7166. 

  7166. <li><?php bugfix(51394); ?> (Error line reported incorrectly if error handler throws an exception). (Stas)</li>
    7167. 

  7167. <li><?php bugfix(51393); ?> (DateTime::createFromFormat() fails if format string contains timezone). (Adam)</li>
    7168. 

  7168. <li><?php bugfix(51347); ?> (mysqli_close / connection memory leak). (Andrey, Johannes)</li>
    7169. 

  7169. <li><?php bugfix(51338); ?> (URL-Rewriter is still enabled if use_only_cookies is on). (Ilia, j dot jeising at gmail dot com)</li>
    7170. 

  7170. <li><?php bugfix(51291); ?> (oci_error doesn't report last error when called two times) (Oracle Corp.)</li>
    7171. 

  7171. <li><?php bugfix(51276); ?> (php_load_extension() is missing when HAVE_LIBDL is undefined). (Tony)</li>
    7172. 

  7172. <li><?php bugfix(51273); ?> (Faultstring property does not exist when the faultstring is empty) (Ilia, dennis at transip dot nl)</li>
    7173. 

  7173. <li><?php bugfix(51269); ?> (zlib.output_compression Overwrites Vary Header). (Adam)</li>
    7174. 

  7174. <li><?php bugfix(51257); ?> (CURL_VERSION_LARGEFILE incorrectly used after libcurl version 7.10.1). (aron dot ujvari at microsec dot hu)</li>
    7175. 

  7175. <li><?php bugfix(51242); ?> (Empty mysql.default_port does not default to 3306 anymore, but 0). (Adam)</li>
    7176. 

  7176. <li><?php bugfix(51237); ?> (milter SAPI crash on startup). (igmar at palsenberg dot com)</li>
    7177. 

  7177. <li><?php bugfix(51213); ?> (pdo_mssql is trimming value of the money column). (Ilia,  alexr at oplot dot com)</li>
    7178. 

  7178. <li><?php bugfix(51190); ?> (ftp_put() returns false when transfer was successful). (Ilia)</li>
    7179. 

  7179. <li><?php bugfix(51183); ?> (ext/date/php_date.c fails to compile with Sun Studio). (Sriram Natarajan)</li>
    7180. 

  7180. <li><?php bugfix(51176); ?> (Static calling in non-static method behaves like $this-&gt;). (Felipe)</li>
    7181. 

  7181. <li><?php bugfix(51171); ?> (curl_setopt() doesn't output any errors or warnings when an invalid option is provided). (Ilia)</li>
    7182. 

  7182. <li><?php bugfix(51128); ?> (imagefill() doesn't work with large images). (Pierre)</li>
    7183. 

  7183. <li><?php bugfix(51096); ?> ('last day' and 'first day' are handled incorrectly when parsing date strings). (Derick)</li>
    7184. 

  7184. <li><?php bugfix(51086); ?> (DBA DB4 doesn't work with Berkeley DB 4.8). (Chris Jones)</li>
    7185. 

  7185. <li><?php bugfix(51062); ?> (DBA DB4 uses mismatched headers and libraries). (Chris Jones)</li>
    7186. 

  7186. <li><?php bugfix(51026); ?> (mysqli_ssl_set not working). (Andrey)</li>
    7187. 

  7187. <li><?php bugfix(51023); ?> (filter doesn't detect int overflows with GCC 4.4). (Raphael Geissert)</li>
    7188. 

  7188. <li><?php bugfix(50999); ?> (unaligned memory access in dba_fetch()). (Felipe)</li>
    7189. 

  7189. <li><?php bugfix(50976); ?> (Soap headers Authorization not allowed). (Brain France, Dmitry)</li>
    7190. 

  7190. <li><?php bugfix(50828); ?> (DOMNotation is not subclass of DOMNode). (Rob)</li>
    7191. 

  7191. <li><?php bugfix(50810); ?> (property_exists does not work for private). (Felipe)</li>
    7192. 

  7192. <li><?php bugfix(50762); ?> (in WSDL mode Soap Header handler function only being called if defined in WSDL). (mephius at gmail dot com)</li>
    7193. 

  7193. <li><?php bugfix(50731); ?> (Inconsistent namespaces sent to functions registered with spl_autoload_register). (Felipe)</li>
    7194. 

  7194. <li><?php bugfix(50563); ?> (removing E_WARNING from parse_url). (ralph at smashlabs dot com, Pierre)</li>
    7195. 

  7195. <li><?php bugfix(50578); ?> (incorrect shebang in phar.phar). (Fedora at FamilleCollet dot com)</li>
    7196. 

  7196. <li><?php bugfix(50392); ?> (date_create_from_format enforces 6 digits for 'u' format character). (Derick)</li>
    7197. 

  7197. <li><?php bugfix(50383); ?> (Exceptions thrown in __call / __callStatic do not include file and line in trace). (Felipe)</li>
    7198. 

  7198. <li><?php bugfix(50358); ?> (Compile failure compiling ext/phar/util.lo). (Felipe)</li>
    7199. 

  7199. <li><?php bugfix(50101); ?> (name clash between global and local variable). (patch by yoarvi at gmail dot com)</li>
    7200. 

  7200. <li><?php bugfix(50055); ?> (DateTime::sub() allows 'relative' time modifications). (Derick)</li>
    7201. 

  7201. <li><?php bugfix(51002); ?> (fix possible memory corruption with very long names). (Pierre)</li>
    7202. 

  7202. <li><?php bugfix(49893); ?> (Crash while creating an instance of Zend_Mail_Storage_Pop3). (Dmitry)</li>
    7203. 

  7203. <li><?php bugfix(49819); ?> (STDOUT losing data with posix_isatty()). (Mike)</li>
    7204. 

  7204. <li><?php bugfix(49778); ?> (DateInterval::format("%a") is always zero when an interval is created from an ISO string). (Derick)</li>
    7205. 

  7205. <li><?php bugfix(49700); ?> (memory leaks in php_date.c if garbage collector is enabled). (Dmitry)</li>
    7206. 

  7206. <li><?php bugfix(49576); ?> (FILTER_VALIDATE_EMAIL filter needs updating) (Rasmus)</li>
    7207. 

  7207. <li><?php bugfix(49490); ?> (XPath namespace prefix conflict). (Rob)</li>
    7208. 

  7208. <li><?php bugfix(49429); ?> (odbc_autocommit doesn't work). (Felipe)</li>
    7209. 

  7209. <li><?php bugfix(49320); ?> (PDO returns null when SQLite connection fails). (Felipe)</li>
    7210. 

  7210. <li><?php bugfix(49234); ?> (mysqli_ssl_set not found). (Andrey)</li>
    7211. 

  7211. <li><?php bugfix(49216); ?> (Reflection doesn't seem to work properly on MySqli). (Andrey)</li>
    7212. 

  7212. <li><?php bugfix(49192); ?> (PHP crashes when GC invoked on COM object). (Stas)</li>
    7213. 

  7213. <li><?php bugfix(49081); ?> (DateTime::diff() mistake if start in January and interval &gt; 28 days). (Derick)</li>
    7214. 

  7214. <li><?php bugfix(49059); ?> (DateTime::diff() repeats previous sub() operation). (yoarvi@gmail.com, Derick)</li>
    7215. 

  7215. <li><?php bugfix(48983); ?> (DomDocument : saveHTMLFile wrong charset). (Rob)</li>
    7216. 

  7216. <li><?php bugfix(48930); ?> (__COMPILER_HALT_OFFSET__ incorrect in PHP &gt;= 5.3). (Felipe)</li>
    7217. 

  7217. <li><?php bugfix(48902); ?> (Timezone database fallback map is outdated). (Derick)</li>
    7218. 

  7218. <li><?php bugfix(48781); ?> (Cyclical garbage collector memory leak). (Dmitry)</li>
    7219. 

  7219. <li><?php bugfix(48601); ?> (xpath() returns FALSE for legitimate query). (Rob)</li>
    7220. 

  7220. <li><?php bugfix(48361); ?> (SplFileInfo::getPathInfo should return the parent dir). (Etienne)</li>
    7221. 

  7221. <li><?php bugfix(48289); ?> (iconv_mime_encode() quoted-printable scheme is broken). (Adam, patch from hiroaki dot kawai at gmail dot com).</li>
    7222. 

  7222. <li><?php bugfix(47842); ?> (sscanf() does not support 64-bit values). (Mike)</li>
    7223. 

  7223. <li><?php bugfix(46111); ?> (Some timezone identifiers can not be parsed). (Derick)</li>
    7224. 

  7224. <li><?php bugfix(45808); ?> (stream_socket_enable_crypto() blocks and eats CPU). (vincent at optilian dot com)</li>
    7225. 

  7225. <li><?php bugfix(43233); ?> (sasl support for ldap on Windows). (Pierre)</li>
    7226. 

  7226. <li><?php bugfix(35673); ?> (formatOutput does not work with saveHTML). (Rob)</li>
    7227. 

  7227. <li><?php bugfix(33210); ?> (getimagesize() fails to detect width/height on certain JPEGs). (Ilia)</li>
    7228. 

  7228. </ul>
    7229. 

  7229. 

  7230. <!-- }}} --></section>
    7231. 

  7231. 

  7232. <section class="version" id="5.2.14"><!-- {{{ 5.2.14 -->
    7233. 

  7233. <h3>Version 5.2.14</h3>
    7234. 

  7234. <?php release_date('22-Jul-2010'); ?>
    7235. 

  7235. <ul>
    7236. 

  7236. <li>Reverted bug fix #49521 (PDO fetchObject sets values before calling constructor). (Felipe)</li>
    7237. 

  7237. </ul>
    7238. 

  7238. <ul>
    7239. 

  7239. <li>Updated timezone database to version 2010.5. (Derick)</li>
    7240. 

  7240. <li>Upgraded bundled PCRE to version 8.02. (Ilia)</li>
    7241. 

  7241. </ul>
    7242. 

  7242. <ul>
    7243. 

  7243. <li>Rewrote var_export() to use smart_str rather than output buffering, revents  data disclosure if a fatal error occurs (CVE-2010-2531). (Scott)</li>
    7244. 

  7244. <li>Fixed a possible interruption array leak in strrchr(). Reported by Péter Veres. (CVE-2010-2484) (Felipe)</li>
    7245. 

  7245. <li>Fixed a possible interruption array leak in strchr(), strstr(), substr(), chunk_split(), strtok(), addcslashes(), str_repeat(), trim(). (Felipe)</li>
    7246. 

  7246. <li>Fixed a possible memory corruption in substr_replace() (Dmitry)</li>
    7247. 

  7247. <li>Fixed SplObjectStorage unserialization problems (CVE-2010-2225). (Stas)</li>
    7248. 

  7248. <li>Fixed a possible stack exaustion inside fnmatch(). Reporeted by Stefan Esser (Ilia)</li>
    7249. 

  7249. <li>Reset error state in PDO::beginTransaction() reset error state. (Ilia)</li>
    7250. 

  7250. <li>Fixed a NULL pointer dereference when processing invalid XML-RPC requests (Fixes CVE-2010-0397, bug <?php bugl(51288); ?>). (Raphael Geissert)</li>
    7251. 

  7251. <li>Fixed handling of session variable serialization on certain prefix characters. Reported by Stefan Esser (Ilia)</li>
    7252. 

  7252. <li>Fixed a possible arbitrary memory access inside sqlite extension. Reported by Mateusz Kocielski. (Ilia)  </li>
    7253. 

  7253. <li>Fixed a crash when calling an inexistent method of a class that inherits  PDOStatement if instantiated directly instead of doing by the PDO methods. (Felipe)</li>
    7254. 

  7254. </ul>
    7255. 

  7255. <ul>
    7256. 

  7256. <li><?php bugfix(52317); ?> (Segmentation fault when using mail() on a rhel 4.x (only 64 bit)). (Adam)</li>
    7257. 

  7257. <li><?php bugfix(52238); ?> (Crash when an Exception occured in iterator_to_array). (Johannes)</li>
    7258. 

  7258. <li><?php bugfix(52237); ?> (Crash when passing the reference of the property of a non-object). (Dmitry)</li>
    7259. 

  7259. <li><?php bugfix(52163); ?> (SplFileObject::fgetss() fails due to parameter that can't be set). (Felipe)</li>
    7260. 

  7260. <li><?php bugfix(52162); ?> (custom request header variables with numbers are removed). (Sriram Natarajan)</li>
    7261. 

  7261. <li><?php bugfix(52160); ?> (Invalid E_STRICT redefined constructor error). (Felipe)</li>
    7262. 

  7262. <li><?php bugfix(52061); ?> (memory_limit above 2G). (Felipe)</li>
    7263. 

  7263. <li><?php bugfix(52041); ?> (Memory leak when writing on uninitialized variable returned from function). (Dmitry)</li>
    7264. 

  7264. <li><?php bugfix(52037); ?> (Concurrent builds fail in install-programs). (seanius at debian dot org, Kalle)</li>
    7265. 

  7265. <li><?php bugfix(52019); ?> (make lcov doesn't support TESTS variable anymore). (Patrick)</li>
    7266. 

  7266. <li><?php bugfix(52010); ?> (open_basedir restrictions mismatch on vacuum command). (Ilia, Felipe)</li>
    7267. 

  7267. <li><?php bugfix(51943); ?> (AIX: Several files are out of ANSI spec). (Kalle, coreystup at gmail dot com)</li>
    7268. 

  7268. <li><?php bugfix(51911); ?> (ReflectionParameter::getDefaultValue() memory leaks with constant array). (Felipe)</li>
    7269. 

  7269. <li><?php bugfix(51905); ?> (ReflectionParameter fails if default value is an array with an access to self::). (Felipe)</li>
    7270. 

  7270. <li><?php bugfix(51822); ?> (Segfault with strange __destruct() for static class variables). (Dmitry)</li>
    7271. 

  7271. <li><?php bugfix(51671); ?> (imagefill does not work correctly for small images). (Pierre)</li>
    7272. 

  7272. <li><?php bugfix(51670); ?> (getColumnMeta causes segfault when re-executing query after calling nextRowset). (Pierrick)</li>
    7273. 

  7273. <li><?php bugfix(51629); ?> (CURLOPT_FOLLOWLOCATION error message is misleading). (Pierre)</li>
    7274. 

  7274. <li><?php bugfix(51617); ?> (PDO PGSQL still broken against PostGreSQL &lt;7.4). (Felipe, wdierkes at 5dollarwhitebox dot org)</li>
    7275. 

  7275. <li><?php bugfix(51615); ?> (PHP crash with wrong HTML in SimpleXML). (Felipe)</li>
    7276. 

  7276. <li><?php bugfix(51609); ?> (pg_copy_to: Invalid results when using fourth parameter). (Felipe)</li>
    7277. 

  7277. <li><?php bugfix(51608); ?> (pg_copy_to: WARNING: nonstandard use of \\ in a string literal). (cbandy at jbandy dot com)</li>
    7278. 

  7278. <li><?php bugfix(51607); ?> (pg_copy_from does not allow schema in the tablename argument). (cbandy at jbandy dot com)</li>
    7279. 

  7279. <li><?php bugfix(51604); ?> (newline in end of header is shown in start of message). (Daniel Egeberg)</li>
    7280. 

  7280. <li><?php bugfix(51562); ?> (query timeout in mssql can not be changed per query). (ejsmont dot artur at gmail dot com)</li>
    7281. 

  7281. <li><?php bugfix(51552); ?> (debug_backtrace() causes segmentation fault and/or memory issues). (Dmitry)</li>
    7282. 

  7282. <li><?php bugfix(51532); ?> (Wrong prototype for SplFileObject::fscanf()). (Etienne)</li>
    7283. 

  7283. <li><?php bugfix(51445); ?> (var_dump() invalid/slow *RECURSION* detection). (Felipe)</li>
    7284. 

  7284. <li><?php bugfix(51393); ?> (DateTime::createFromFormat() fails if format string contains timezone). (Adam)</li>
    7285. 

  7285. <li><?php bugfix(51374); ?> (Wrongly initialized object properties). (Etienne)</li>
    7286. 

  7286. <li><?php bugfix(51338); ?> (URL-Rewriter is still enabled if use_only_cookies is on). (Ilia, j dot jeising at gmail dot com)</li>
    7287. 

  7287. <li><?php bugfix(51273); ?> (Faultstring property does not exist when the faultstring is empty) (Ilia, dennis at transip dot nl)</li>
    7288. 

  7288. <li><?php bugfix(51269); ?> (zlib.output_compression Overwrites Vary Header). (Adam)</li>
    7289. 

  7289. <li><?php bugfix(51263); ?> (imagettftext and rotated text uses wrong baseline)  (cschneid at cschneid dot com, Takeshi Abe)</li>
    7290. 

  7290. <li><?php bugfix(51237); ?> (milter SAPI crash on startup). (igmar at palsenberg dot com)</li>
    7291. 

  7291. <li><?php bugfix(51213); ?> (pdo_mssql is trimming value of the money column). (Ilia, alexr at oplot dot com)</li>
    7292. 

  7292. <li><?php bugfix(51192); ?> (FILTER_VALIDATE_URL will invalidate a hostname that includes '-'). (Adam, solar at azrael dot ws).</li>
    7293. 

  7293. <li><?php bugfix(51190); ?> (ftp_put() returns false when transfer was successful). (Ilia)</li>
    7294. 

  7294. <li><?php bugfix(51183); ?> (ext/date/php_date.c fails to compile with Sun Studio). (Sriram Natarajan)</li>
    7295. 

  7295. <li><?php bugfix(51171); ?> (curl_setopt() doesn't output any errors or warnings when an invalid option is provided). (Ilia)</li>
    7296. 

  7296. <li><?php bugfix(51128); ?> (imagefill() doesn't work with large images). (Pierre)</li>
    7297. 

  7297. <li><?php bugfix(51086); ?> (DBA DB4 doesn't work with Berkeley DB 4.8). (Chris Jones)</li>
    7298. 

  7298. <li><?php bugfix(51062); ?> (DBA DB4 uses mismatched headers and libraries). (Chris Jones)</li>
    7299. 

  7299. <li><?php bugfix(51023); ?> (filter doesn't detect int overflows with GCC 4.4). (Raphael Geissert)</li>
    7300. 

  7300. <li><?php bugfix(50762); ?> (in WSDL mode Soap Header handler function only being called if defined in WSDL). (mephius at gmail dot com)</li>
    7301. 

  7301. <li><?php bugfix(50698); ?> (SoapClient should handle wsdls with some incompatiable endpoints). (Justin Dearing)</li>
    7302. 

  7302. <li><?php bugfix(50383); ?> (Exceptions thrown in __call() / __callStatic() do not include file and line in trace). (Felipe)</li>
    7303. 

  7303. <li><?php bugfix(49730); ?> (Firebird - new PDO() returns NULL). (Felipe)</li>
    7304. 

  7304. <li><?php bugfix(49723); ?> (LimitIterator with empty SeekableIterator). (Etienne)</li>
    7305. 

  7305. <li><?php bugfix(49576); ?> (FILTER_VALIDATE_EMAIL filter needs updating) (Rasmus)</li>
    7306. 

  7306. <li><?php bugfix(49320); ?> (PDO returns null when SQLite connection fails). (Felipe)</li>
    7307. 

  7307. <li><?php bugfix(49267); ?> (Linking fails for iconv). (Moriyosh)</li>
    7308. 

  7308. <li><?php bugfix(48601); ?> (xpath() returns FALSE for legitimate query). (Rob)</li>
    7309. 

  7309. <li><?php bugfix(48289); ?> (iconv_mime_encode() quoted-printable scheme is broken).
    7310. 

  7310.   (Adam, patch from hiroaki dot kawai at gmail dot com).</li>
    7311. 

  7311. <li><?php bugfix(43314); ?> (iconv_mime_encode(), broken Q scheme). (Rasmus)</li>
    7312. 

  7312. <li><?php bugfix(33210); ?> (getimagesize() fails to detect width/height on certain
    7313. 

  7313.   JPEGs). (Ilia)</li>
    7314. 

  7314. <li><?php bugfix(23229); ?> (syslog() truncates messages). (Adam)</li>
    7315. 

  7315. </ul>
    7316. 

  7316. 

  7317. <!-- }}} --></section>
    7318. 

  7318. 

  7319. <section class="version" id="5.3.2"><!-- {{{ 5.3.2 -->
    7320. 

  7320. <h3>Version 5.3.2</h3>
    7321. 

  7321. <?php release_date('04-Mar-2010'); ?>
    7322. 

  7322. <ul>
    7323. 

  7323. <li>Security Fixes
    7324. 

  7324. 	<ul>
    7325. 

  7325. 		<li>Improved LCG entropy. (Rasmus, Samy Kamkar)</li>
    7326. 

  7326. 		<li>Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)</li>
    7327. 

  7327. 		<li>Fixed a possible open_basedir/safe_mode bypass in the session extension identified by Grzegorz Stachowiak. (Ilia)</li>
    7328. 

  7328. 	</ul>
    7329. 

  7329. </li>
    7330. 

  7330. 

  7331. 

  7332. <li>Upgraded bundled sqlite to version 3.6.22. (Ilia)</li>
    7333. 

  7333. <li>Upgraded bundled libmagic to version 5.03. (Mikko)</li>
    7334. 

  7334. <li>Upgraded bundled PCRE to version 8.00. (Scott)</li>
    7335. 

  7335. <li>Updated timezone database to version 2010.3. (Derick)</li>
    7336. 

  7336. 

  7337. <li>Improved LCG entropy. (Rasmus, Samy Kamkar)</li>
    7338. 

  7338. <li>Improved crypt support for edge cases (UFC compatibility). (Solar Designer, Joey, Pierre)</li>
    7339. 

  7339. 

  7340. <li>Changed gmp_strval() to use full range from 2 to 62, and -2 to -36. FR <?php bugl(50283); ?> (David Soria Parra)</li>
    7341. 

  7341. <li>Changed "post_max_size" php.ini directive to allow unlimited post size by setting it to 0. (Rasmus)</li>
    7342. 

  7342. <li>Changed tidyNode class to disallow manual node creation. (Pierrick)</li>
    7343. 

  7343. 

  7344. <li>Removed automatic file descriptor unlocking happening on shutdown and/or  stream close (on all OSes). (Tony, Ilia)</li>
    7345. 

  7345. 

  7346. <li>Added libpng 1.4.0 support. (Pierre)</li>
    7347. 

  7347. <li>Added support for DISABLE_AUTHENTICATOR for imap_open. (Pierre)</li>
    7348. 

  7348. <li>Added missing host validation for HTTP urls inside FILTER_VALIDATE_URL. (Ilia)</li>
    7349. 

  7349. <li>Added stream_resolve_include_path(). (Mikko)</li>
    7350. 

  7350. <li>Added INTERNALDATE support to imap_append. (nick at mailtrust dot com)</li>
    7351. 

  7351. <li>Added support for SHA-256 and SHA-512 to php's crypt. (Pierre)</li>
    7352. 

  7352. <li>Added realpath_cache_size() and realpath_cache_get() functions. (Stas)</li>
    7353. 

  7353. <li>Added FILTER_FLAG_STRIP_BACKTICK option to the filter extension. (Ilia)</li>
    7354. 

  7354. <li>Added protection for $_SESSION from interrupt corruption and improved "session.save_path" check. (Stas)</li>
    7355. 

  7355. <li>Added LIBXML_PARSEHUGE constant to override the maximum text size of a single text node when using libxml2.7.3+. (Kalle)</li>
    7356. 

  7356. <li>Added ReflectionMethod::setAccessible() for invoking non-public methods through the Reflection API. (Sebastian)</li>
    7357. 

  7357. <li>Added Collator::getSortKey for intl extension. (Stas)</li>
    7358. 

  7358. <li>Added support for CURLOPT_POSTREDIR. FR <?php bugl(49571); ?>. (Sriram Natarajan)</li>
    7359. 

  7359. <li>Added support for CURLOPT_CERTINFO. FR <?php bugl(49253); ?>. (Linus Nielsen Feltzing &lt;linus@haxx.se&gt;)</li>
    7360. 

  7360. <li>Added client-side server name indication support in openssl. (Arnaud)</li>
    7361. 

  7361. 

  7362. <li>Improved fix for bug <?php bugl(50006); ?> (Segfault caused by uksort()). (Stas)</li>
    7363. 

  7363. 

  7364. <li>Fixed mysqlnd hang when queries exactly 16777214 bytes long are sent. (Andrey)</li>
    7365. 

  7365. <li>Fixed incorrect decoding of 5-byte BIT sequences in mysqlnd. (Andrey)</li>
    7366. 

  7366. <li>Fixed error_log() to be binary safe when using message_type 3. (Jani)</li>
    7367. 

  7367. <li>Fixed unnecessary invocation of setitimer when timeouts have been disabled. (Arvind Srinivasan)</li>
    7368. 

  7368. <li>Fixed memory leak in extension loading when an error occurs on Windows. (Pierre)</li>
    7369. 

  7369. <li>Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)</li>
    7370. 

  7370. <li>Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak. (Ilia)</li>
    7371. 

  7371. <li>Fixed possible crash when a error/warning is raised during php startup. (Pierre)</li>
    7372. 

  7372. <li>Fixed possible bad behavior of rename on windows when used with symbolic links or invalid paths. (Pierre)</li>
    7373. 

  7373. <li>Fixed error output to stderr on Windows. (Pierre)</li>
    7374. 

  7374. <li>Fixed memory leaks in is_writable/readable/etc on Windows. (Pierre)</li>
    7375. 

  7375. <li>Fixed memory leaks in the ACL function on Windows. (Pierre)</li>
    7376. 

  7376. <li>Fixed memory leak in the realpath cache on Windows. (Pierre)</li>
    7377. 

  7377. <li>Fixed memory leak in zip_close. (Pierre)</li>
    7378. 

  7378. <li>Fixed crypt's blowfish sanity check of the "setting" string, to reject iteration counts encoded as 36 through 39. (Solar Designer, Joey, Pierre)</li>
    7379. 

    7380. 

  7380. <li><?php bugfix(51059); ?> (crypt crashes when invalid salt are given). (Pierre)</li>
    7381. 

  7381. <li><?php bugfix(50952); ?> (allow underscore _ in constants parsed in php.ini files). (Jani)</li>
    7382. 

  7382. <li><?php bugfix(50940); ?> (Custom content-length set incorrectly in Apache SAPIs). (Brian France, Rasmus)</li>
    7383. 

  7383. <li><?php bugfix(50930); ?> (Wrong date by php_date.c patch with ancient gcc/glibc versions). (Derick)</li>
    7384. 

  7384. <li><?php bugfix(50907); ?> (X-PHP-Originating-Script adding two new lines in *NIX). (Ilia)</li>
    7385. 

  7385. <li><?php bugfix(50859); ?> (build fails with openssl 1.0 due to md2 deprecation). (Ilia, hanno at hboeck dot de)</li>
    7386. 

  7386. <li><?php bugfix(50847); ?> (strip_tags() removes all tags greater then 1023 bytes long). (Ilia)</li>
    7387. 

  7387. <li><?php bugfix(50829); ?> (php.ini directive pdo_mysql.default_socket is ignored). (Ilia)</li>
    7388. 

  7388. <li><?php bugfix(50832); ?> (HTTP fopen wrapper does not support passwordless HTTP authentication). (Jani)</li>
    7389. 

  7389. <li><?php bugfix(50787); ?> (stream_set_write_buffer() has no effect on socket streams). (vnegrier at optilian dot com, Ilia)</li>
    7390. 

  7390. <li><?php bugfix(50761); ?> (system.multiCall crashes in xmlrpc extension). (hiroaki dot kawai at gmail dot com, Ilia)</li>
    7391. 

  7391. <li><?php bugfix(50756); ?> (CURLOPT_FTP_SKIP_PASV_IP does not exist). (Sriram)</li>
    7392. 

  7392. <li><?php bugfix(50732); ?> (exec() adds single byte twice to $output array). (Ilia)</li>
    7393. 

  7393. <li><?php bugfix(50728); ?> (All PDOExceptions hardcode 'code' property to 0). (Joey, Ilia)</li>
    7394. 

  7394. <li><?php bugfix(50723); ?> (Bug in garbage collector causes crash). (Dmitry)</li>
    7395. 

  7395. <li><?php bugfix(50690); ?> (putenv does not set ENV when the value is only one char). (Pierre)</li>
    7396. 

  7396. <li><?php bugfix(50680); ?> (strtotime() does not support eighth ordinal number). (Ilia)</li>
    7397. 

  7397. <li><?php bugfix(50661); ?> (DOMDocument::loadXML does not allow UTF-16). (Rob)</li>
    7398. 

  7398. <li><?php bugfix(50657); ?> (copy() with an empty (zero-byte) HTTP source succeeds but returns false). (Ilia)</li>
    7399. 

  7399. <li><?php bugfix(50632); ?> (filter_input() does not return default value if the variable does not exist). (Ilia)</li>
    7400. 

  7400. <li><?php bugfix(50576); ?> (XML_OPTION_SKIP_TAGSTART option has no effect). (Pierrick)</li>
    7401. 

  7401. <li><?php bugfix(50558); ?> (Broken object model when extending tidy). (Pierrick)</li>
    7402. 

  7402. <li><?php bugfix(50540); ?> (Crash while running ldap_next_reference test cases). (Sriram)</li>
    7403. 

  7403. <li><?php bugfix(50519); ?> (segfault in garbage collection when using set_error_handler and DomDocument). (Dmitry)</li>
    7404. 

  7404. <li><?php bugfix(50508); ?> (compile failure: Conflicting HEADER type declarations). (Jani)</li>
    7405. 

  7405. <li><?php bugfix(50496); ?> (Use of &lt;stdbool.h&gt; is valid only in a c99 compilation environment. (Sriram)</li>
    7406. 

  7406. <li><?php bugfix(50464); ?> (declare encoding doesn't work within an included file). (Felipe)</li>
    7407. 

  7407. <li><?php bugfix(50458); ?> (PDO::FETCH_FUNC fails with Closures). (Felipe, Pierrick)</li>
    7408. 

  7408. <li><?php bugfix(50445); ?> (PDO-ODBC stored procedure call from Solaris 64-bit causes seg fault). (davbrown4 at yahoo dot com, Felipe)</li>
    7409. 

  7409. <li><?php bugfix(50416); ?> (PROCEDURE db.myproc can't return a result set in the given context). (Andrey)</li>
    7410. 

  7410. <li><?php bugfix(50394); ?> (Reference argument converted to value in __call). (Stas)</li>
    7411. 

  7411. <li><?php bugfix(50351); ?> (performance regression handling objects, ten times slowerin 5.3 than in 5.2). (Dmitry)</li>
    7412. 

  7412. <li><?php bugfix(50392); ?> (date_create_from_format() enforces 6 digits for 'u' format character). (Ilia)</li>
    7413. 

  7413. <li><?php bugfix(50345); ?> (nanosleep not detected properly on some solaris versions). (Jani)</li>
    7414. 

  7414. <li><?php bugfix(50340); ?> (php.ini parser does not allow spaces in ini keys). (Jani)</li>
    7415. 

  7415. <li><?php bugfix(50334); ?> (crypt ignores sha512 prefix). (Pierre)</li>
    7416. 

  7416. <li><?php bugfix(50323); ?> (Allow use of ; in values via ;; in PDO DSN). (Ilia, Pierrick)</li>
    7417. 

  7417. <li><?php bugfix(50285); ?> (xmlrpc does not preserve keys in encoded indexed arrays). (Felipe)</li>
    7418. 

  7418. <li><?php bugfix(50282); ?> (xmlrpc_encode_request() changes object into array in calling function). (Felipe)</li>
    7419. 

  7419. <li><?php bugfix(50267); ?> (get_browser(null) does not use HTTP_USER_AGENT). (Jani)</li>
    7420. 

  7420. <li><?php bugfix(50266); ?> (conflicting types for llabs). (Jani)</li>
    7421. 

  7421. <li><?php bugfix(50261); ?> (Crash When Calling Parent Constructor with call_user_func()). (Dmitry)</li>
    7422. 

  7422. <li><?php bugfix(50255); ?> (isset() and empty() silently casts array to object). (Felipe)</li>
    7423. 

  7423. <li><?php bugfix(50240); ?> (pdo_mysql.default_socket in php.ini shouldn't used if it is empty). (foutrelis at gmail dot com, Ilia)</li>
    7424. 

  7424. <li><?php bugfix(50231); ?> (Socket path passed using --with-mysql-sock is ignored when mysqlnd is enabled). (Jani)</li>
    7425. 

  7425. <li><?php bugfix(50219); ?> (soap call Segmentation fault on a redirected url). (Pierrick)</li>
    7426. 

  7426. <li><?php bugfix(50212); ?> (crash by ldap_get_option() with LDAP_OPT_NETWORK_TIMEOUT). (Ilia, shigeru_kitazaki at cybozu dot co dot jp)</li>
    7427. 

  7427. <li><?php bugfix(50209); ?> (Compiling with libedit cannot find readline.h). (tcallawa at redhat dot com)</li>
    7428. 

  7428. <li><?php bugfix(50207); ?> (segmentation fault when concatenating very large strings on 64bit linux). (Ilia)</li>
    7429. 

  7429. <li><?php bugfix(50196); ?> (stream_copy_to_stream() produces warning when source is not file). (Stas)</li>
    7430. 

  7430. <li><?php bugfix(50195); ?> (pg_copy_to() fails when table name contains schema. (Ilia)</li>
    7431. 

  7431. <li><?php bugfix(50185); ?> (ldap_get_entries() return false instead of an empty array when there is no error). (Jani)</li>
    7432. 

  7432. <li><?php bugfix(50174); ?> (Incorrectly matched docComment). (Felipe)</li>
    7433. 

  7433. <li><?php bugfix(50168); ?> (FastCGI fails with wrong error on HEAD request to non-existant file). (Dmitry)</li>
    7434. 

  7434. <li><?php bugfix(50162); ?> (Memory leak when fetching timestamp column from Oracle database). (Felipe)</li>
    7435. 

  7435. <li><?php bugfix(50159); ?> (wrong working directory in symlinked files). (Dmitry)</li>
    7436. 

  7436. <li><?php bugfix(50158); ?> (FILTER_VALIDATE_EMAIL fails with valid addresses containing = or ?). (Pierrick)</li>
    7437. 

  7437. <li><?php bugfix(50152); ?> (ReflectionClass::hasProperty behaves like isset() not property_exists). (Felipe)</li>
    7438. 

  7438. <li><?php bugfix(50146); ?> (property_exists: Closure object cannot have properties). (Felipe)</li>
    7439. 

  7439. <li><?php bugfix(50145); ?> (crash while running bug35634.phpt). (Felipe)</li>
    7440. 

  7440. <li><?php bugfix(50140); ?> (With default compilation option, php symbols are unresolved for nsapi). (Uwe Schindler)</li>
    7441. 

  7441. <li><?php bugfix(50087); ?> (NSAPI performance improvements). (Uwe Schindler)</li>
    7442. 

  7442. <li><?php bugfix(50073); ?> (parse_url() incorrect when ? in fragment). (Ilia)</li>
    7443. 

  7443. <li><?php bugfix(50023); ?> (pdo_mysql doesn't use PHP_MYSQL_UNIX_SOCK_ADDR). (Ilia)</li>
    7444. 

  7444. <li><?php bugfix(50005); ?> (Throwing through Reflection modified Exception object makes segmentation fault). (Felipe)</li>
    7445. 

  7445. <li><?php bugfix(49990); ?> (SNMP3 warning message about security level printed twice). (Jani)</li>
    7446. 

  7446. <li><?php bugfix(49985); ?> (pdo_pgsql prepare() re-use previous aborted transaction). (ben dot pineau at gmail dot com, Ilia, Matteo)  </li>
    7447. 

  7447. <li><?php bugfix(49938); ?> (Phar::isBuffering() returns inverted value). (Greg)</li>
    7448. 

  7448. <li><?php bugfix(49936); ?> (crash with ftp stream in php_stream_context_get_option()). (Pierrick)</li>
    7449. 

  7449. <li><?php bugfix(49921); ?> (Curl post upload functions changed). (Ilia)</li>
    7450. 

  7450. <li><?php bugfix(49866); ?> (Making reference on string offsets crashes PHP). (Dmitry)</li>
    7451. 

  7451. <li><?php bugfix(49855); ?> (import_request_variables() always returns NULL). (Ilia, sjoerd at php dot net)</li>
    7452. 

  7452. <li><?php bugfix(49851); ?>, #50451 (http wrapper breaks on 1024 char long headers). (Ilia)</li>
    7453. 

  7453. <li><?php bugfix(49800); ?> (SimpleXML allow (un)serialize() calls without warning). (Ilia, wmeler at wp-sa dot pl)</li>
    7454. 

  7454. <li><?php bugfix(49719); ?> (ReflectionClass::hasProperty returns true for a private property in base class). (Felipe)</li>
    7455. 

  7455. <li><?php bugfix(49677); ?> (ini parser crashes with apache2 and using ${something} ini variables). (Jani)</li>
    7456. 

  7456. <li><?php bugfix(49660); ?> (libxml 2.7.3+ limits text nodes to 10MB). (Felipe)</li>
    7457. 

  7457. <li><?php bugfix(49647); ?> (DOMUserData does not exist). (Rob)</li>
    7458. 

  7458. <li><?php bugfix(49600); ?> (imageTTFText text shifted right). (Takeshi Abe)</li>
    7459. 

  7459. <li><?php bugfix(49585); ?> (date_format buffer not long enough for >4 digit years). (Derick, Adam)</li>
    7460. 

  7460. <li><?php bugfix(49560); ?> (oci8: using LOBs causes slow PHP shutdown). (Oracle Corp.)</li>
    7461. 

  7461. <li><?php bugfix(49521); ?> (PDO fetchObject sets values before calling constructor). (Pierrick)</li>
    7462. 

  7462. <li><?php bugfix(49472); ?> (Constants defined in Interfaces can be overridden). (Felipe)</li>
    7463. 

  7463. <li><?php bugfix(49463); ?> (setAttributeNS fails setting default namespace). (Rob)</li>
    7464. 

  7464. <li><?php bugfix(49244); ?> (Floating point NaN cause garbage characters). (Sjoerd)</li>
    7465. 

  7465. <li><?php bugfix(49224); ?> (Compile error due to old DNS functions on AIX systems). (Scott)</li>
    7466. 

  7466. <li><?php bugfix(49174); ?> (crash when extending PDOStatement and trying to set queryString property). (Felipe)</li>
    7467. 

  7467. <li><?php bugfix(48811); ?> (Directives in PATH section do not get applied to subdirectories). (Patch by: ct at swin dot edu dot au)</li>
    7468. 

  7468. <li><?php bugfix(48590); ?> (SoapClient does not honor max_redirects). (Sriram)</li>
    7469. 

  7469. <li><?php bugfix(48190); ?> (Content-type parameter "boundary" is not case-insensitive in HTTP uploads). (Ilia)</li>
    7470. 

  7470. <li><?php bugfix(47848); ?> (importNode doesn't preserve attribute namespaces). (Rob)</li>
    7471. 

  7471. <li><?php bugfix(47409); ?> (extract() problem with array containing word "this"). (Ilia, chrisstocktonaz at gmail dot com)</li>
    7472. 

  7472. <li><?php bugfix(47281); ?> ($php_errormsg is limited in size of characters) (Oracle Corp.)</li>
    7473. 

  7473. <li><?php bugfix(46478); ?> (htmlentities() uses obsolete mapping table for character entity references). (Moriyoshi)</li>
    7474. 

  7474. <li><?php bugfix(45599); ?> (strip_tags() truncates rest of string with invalid attribute). (Ilia, hradtke)</li>
    7475. 

  7475. <li><?php bugfix(45120); ?> (PDOStatement->execute() returns true then false for same statement). (Pierrick)</li>
    7476. 

  7476. <li><?php bugfix(44827); ?> (define() allows :: in constant names). (Ilia)</li>
    7477. 

  7477. <li><?php bugfix(44098); ?> (imap_utf8() returns only capital letters). (steffen at dislabs dot de, Pierre)</li>
    7478. 

  7478. <li><?php bugfix(34852); ?> (Failure in odbc_exec() using oracle-supplied odbc driver). (tim dot tassonis at trivadis dot com)</li>
    7479. 

  7479. </ul>
    7480. 

  7480. <!-- }}} --></section>
    7481. 

  7481. 

  7482. <section class="version" id="5.2.13"><!-- {{{ 5.2.13 -->
    7483. 

  7483. <h3>Version 5.2.13</h3>
    7484. 

  7484. <?php release_date('25-Feb-2010'); ?>
    7485. 

  7485. <ul>
    7486. 

  7486. <li>Security Fixes
    7487. 

  7487. 	<ul>
    7488. 

  7488. 		<li>Improved LCG entropy. (Rasmus, Samy Kamkar)</li>
    7489. 

  7489. 		<li>Fixed safe_mode validation inside tempnam() when the directory path does not end with a /). (Martin Jansen)</li>
    7490. 

  7490. 		<li>Fixed a possible open_basedir/safe_mode bypass in the session extension identified by Grzegorz Stachowiak. (Ilia)</li>
    7491. 

  7491. 	</ul>
    7492. 

  7492. </li>
    7493. 

  7493. 

  7494. <li>Updated timezone database to version 2010.2. (Derick)</li>
    7495. 

  7495. <li>Upgraded bundled PCRE to version 7.9. (Ilia)</li>
    7496. 

  7496. 

  7497. <li>Removed automatic file descriptor unlocking happening on shutdown and/or  stream close (on all OSes excluding Windows). (Tony, Ilia)</li>
    7498. 

  7498. 

  7499. <li>Changed tidyNode class to disallow manual node creation. (Pierrick)</li>
    7500. 

  7500. 

  7501. <li>Added missing host validation for HTTP urls inside FILTER_VALIDATE_URL. (Ilia)</li>
    7502. 

  7502. 

  7503. <li>Fixed bug in bundled libgd causing spurious horizontal lines drawn by  gdImageFilledPolygon (libgd #100). (Takeshi Abe)</li>
    7504. 

  7504. <li>Fixed build of mysqli with MySQL 5.5.0-m2. (Andrey)</li>
    7505. 

  7505. 

  7506. <li><?php bugfix(50940); ?> (Custom content-length set incorrectly in Apache sapis). (Brian France, Rasmus)</li>
    7507. 

  7507. <li><?php bugfix(50930); ?> (Wrong date by php_date.c patch with ancient gcc/glibc versions). (Derick)</li>
    7508. 

  7508. <li><?php bugfix(50859); ?> (build fails with openssl 1.0 due to md2 deprecation). (Ilia, hanno at hboeck dot de)</li>
    7509. 

  7509. <li><?php bugfix(50847); ?> (strip_tags() removes all tags greater then 1023 bytes long). (Ilia)</li>
    7510. 

  7510. <li><?php bugfix(50832); ?> (HTTP fopen wrapper does not support passwordless HTTP authentication). (Jani)</li>
    7511. 

  7511. <li><?php bugfix(50823); ?> (ReflectionFunction::isDeprecated producing &quot;cannot be called statically&quot; error). (Jani, Felipe)</li>
    7512. 

  7512. <li><?php bugfix(50791); ?> (Compile failure: Bad logic in defining fopencookie emulation). (Jani)</li>
    7513. 

  7513. <li><?php bugfix(50787); ?> (stream_set_write_buffer() has no effect on socket streams). (vnegrier at optilian dot com, Ilia)</li>
    7514. 

  7514. <li><?php bugfix(50772); ?> (mysqli constructor without parameters does not return a working mysqli object). (Andrey)</li>
    7515. 

  7515. <li><?php bugfix(50761); ?> (system.multiCall crashes in xmlrpc extension). (hiroaki dot kawai at gmail dot com, Ilia)</li>
    7516. 

  7516. <li><?php bugfix(50732); ?> (exec() adds single byte twice to $output array). (Ilia)</li>
    7517. 

  7517. <li><?php bugfix(50728); ?> (All PDOExceptions hardcode 'code' property to 0). (Joey, Ilia)</li>
    7518. 

  7518. <li><?php bugfix(50727); ?> (Accessing mysqli->affected_rows on no connection causes segfault). (Andrey, Johannes)</li>
    7519. 

  7519. <li><?php bugfix(50680); ?> (strtotime() does not support eighth ordinal number). (Ilia)</li>
    7520. 

  7520. <li><?php bugfix(50661); ?> (DOMDocument::loadXML does not allow UTF-16). (Rob)</li>
    7521. 

  7521. <li><?php bugfix(50657); ?> (copy() with an empty (zero-byte) HTTP source succeeds but returns false). (Ilia)</li>
    7522. 

  7522. <li><?php bugfix(50636); ?> (MySQLi_Result sets values before calling constructor). (Pierrick)</li>
    7523. 

  7523. <li><?php bugfix(50632); ?> (filter_input() does not return default value if the variable does not exist). (Ilia)</li>
    7524. 

  7524. <li><?php bugfix(50576); ?> (XML_OPTION_SKIP_TAGSTART option has no effect). (Pierrick)</li>
    7525. 

  7525. <li><?php bugfix(50575); ?> (PDO_PGSQL LOBs are not compatible with PostgreSQL 8.5). (Matteo)</li>
    7526. 

  7526. <li><?php bugfix(50558); ?> (Broken object model when extending tidy). (Pierrick)</li>
    7527. 

  7527. <li><?php bugfix(50540); ?> (Crash while running ldap_next_reference test cases). (Sriram)</li>
    7528. 

  7528. <li><?php bugfix(50508); ?> (compile failure: Conflicting HEADER type declarations). (Jani)</li>
    7529. 

  7529. <li><?php bugfix(50394); ?> (Reference argument converted to value in __call). (Stas)</li>
    7530. 

  7530. <li><?php bugfix(49851); ?> (http wrapper breaks on 1024 char long headers). (Ilia)</li>
    7531. 

  7531. <li><?php bugfix(49600); ?> (imageTTFText text shifted right). (Takeshi Abe)</li>
    7532. 

  7532. <li><?php bugfix(49585); ?> (date_format buffer not long enough for >4 digit years). (Derick, Adam)</li>
    7533. 

  7533. <li><?php bugfix(49463); ?> (setAttributeNS fails setting default namespace). (Rob)</li>
    7534. 

  7534. <li><?php bugfix(48667); ?> (Implementing Iterator and IteratorAggregate). (Etienne)</li>
    7535. 

  7535. <li><?php bugfix(48590); ?> (SoapClient does not honor max_redirects). (Sriram)</li>
    7536. 

  7536. <li><?php bugfix(48190); ?> (Content-type parameter &quot;boundary&quot; is not case-insensitive in HTTP uploads). (Ilia)</li>
    7537. 

  7537. <li><?php bugfix(47601); ?> (defined() requires class to exist when testing for class constants). (Ilia)</li>
    7538. 

  7538. <li><?php bugfix(47409); ?> (extract() problem with array containing word &quot;this&quot;). (Ilia, chrisstocktonaz at gmail dot com)</li>
    7539. 

  7539. <li><?php bugfix(47002); ?> (Field truncation when reading from dbase dbs with more then 1024 fields). (Ilia, sjoerd-php at linuxonly dot nl)</li>
    7540. 

  7540. <li><?php bugfix(45599); ?> (strip_tags() truncates rest of string with invalid attribute). (Ilia, hradtke)  </li>
    7541. 

  7541. <li><?php bugfix(44827); ?> (define() allows :: in constant names). (Ilia)</li>
    7542. 

  7542. 

  7543. </ul>
    7544. 

  7544. <!-- }}} --></section>
    7545. 

  7545. 

  7546. <section class="version" id="5.3.1"><!-- {{{ 5.3.1 -->
    7547. 

  7547. <h3>Version 5.3.1</h3>
    7548. 

  7548. <?php release_date('19-Nov-2009'); ?>
    7549. 

  7549. <ul>
    7550. 

  7550. <li>Security Fixes
    7551. 

  7551. 	<ul>
    7552. 

  7552. 		<li>Added "max_file_uploads" INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion. (Ilia)</li>
    7553. 

  7553. 		<li>Added missing sanity checks around exif processing. (Ilia)</li>
    7554. 

  7554. 		<li>Fixed a safe_mode bypass in tempnam(). (Rasmus)</li>  
    7555. 

  7555. 		<li>Fixed a open_basedir bypass in posix_mkfifo(). (Rasmus)</li> 
    7556. 

  7556. 		<li><?php bugfix(50063); ?> (safe_mode_include_dir fails). (Johannes, christian at elmerot dot se)</li>
    7557. 

  7557. 	</ul>
    7558. 

  7558. </li>
    7559. 

  7559. 

  7560. <li>Added error constant when json_encode() detects an invalid UTF-8 sequence. (Scott)</li>
    7561. 

  7561. <li>Added support for ACL on Windows for thread safe SAPI (Apache2 for example) and fix its support on NTS. (Pierre)</li>
    7562. 

  7562. 

  7563. <li>Upgraded bundled sqlite to version 3.6.19. (Scott)</li>
    7564. 

  7564. <li>Updated timezone database to version 2009.17 (2009q). (Derick)</li>
    7565. 

  7565. 

  7566. <li>Fixed crash in com_print_typeinfo when an invalid typelib is given. (Pierre)</li>
    7567. 

  7567. <li>Fixed a safe_mode bypass in tempnam() identified by Grzegorz Stachowiak. (Rasmus)</li>
    7568. 

  7568. <li>Fixed a open_basedir bypass in posix_mkfifo() identified by Grzegorz  Stachowiak. (Rasmus)</li>
    7569. 

  7569. <li>Fixed certificate validation inside php_openssl_apply_verification_policy (Ryan Sleevi, Ilia)</li>
    7570. 

  7570. <li>Fixed crash in SQLiteDatabase::ArrayQuery() and SQLiteDatabase::SingleQuery() when calling using Reflection. (Felipe)</li>
    7571. 

  7571. <li>Fixed crash when instantiating PDORow and PDOStatement through Reflection. (Felipe)</li>
    7572. 

  7572. <li>Fixed sanity check for the color index in imagecolortransparent. (Pierre)</li>
    7573. 

  7573. <li>Fixed scandir/readdir when used mounted points on Windows. (Pierre)</li>
    7574. 

  7574. <li>Fixed zlib.deflate compress filter to actually accept level parameter. (Jani)</li>
    7575. 

  7575. <li>Fixed leak on error in popen/exec (and related functions) on Windows. (Pierre)</li>
    7576. 

  7576. <li>Fixed possible bad caching of symlinked directories in the realpath cache on Windows. (Pierre)</li>
    7577. 

  7577. <li>Fixed atime and mtime in stat related functions on Windows. (Pierre)</li>
    7578. 

  7578. <li>Fixed spl_autoload_unregister/spl_autoload_functions wrt. Closures and Functors. (Christian Seiler)</li>
    7579. 

  7579. <li>Fixed open_basedir circumvention for "mail.log" ini directive. (Maksymilian Arciemowicz, Stas)</li>
    7580. 

  7580. <li>Fixed signature generation/validation for zip archives in ext/phar. (Greg)</li>
    7581. 

  7581. <li>Fixed memory leak in stream_is_local(). (Felipe, Tony)</li>
    7582. 

  7582. <li>Fixed BC break in mime_content_type(), removes the content encoding. (Scott) </li>
    7583. 

  7583. 

  7584. <li>Changed ini file directives [PATH=](on Win32) and [HOST=](on all) to be case  insensitive (garretts)</li>
    7585. 

  7585. <li>Restored shebang line check to CGI sapi (not checked by scanner anymore). (Jani)</li>
    7586. 

  7586. 

  7587. <li>Improve symbolic, mounted volume and junctions support for realpath on  Windows. (Pierre)</li>
    7588. 

  7588. <li>Improved readlink on Windows, suppress \??\ and use the drive syntax only. (Pierre)</li>
    7589. 

  7589. <li>Improved dns_get_record() AAAA support on windows. Always available when IPv6 is support is installed, format is now the same than on unix. (Pierre)</li>
    7590. 

  7590. <li>Improved the DNS functions on OSX to use newer APIs, also use Bind 9 API where available on other platforms. (Scott)</li>
    7591. 

  7591. <li>Improved shared extension loading on OSX to use the standard Unix dlopen() API. (Scott)</li>
    7592. 

  7592. <li><?php bugfix(50063); ?> (safe_mode_include_dir fails). (Johannes, christian at elmerot dot se)</li>
    7593. 

  7593. <li><?php bugfix(50052); ?> (Different Hashes on Windows and Linux on wrong Salt size). (Pierre)</li>
    7594. 

  7594. <li><?php bugfix(49910); ?> (no support for ././@LongLink for long filenames in phar tar support). (Greg)</li>
    7595. 

  7595. <li><?php bugfix(49908); ?> (throwing exception in __autoload crashes when interface is not defined). (Felipe)</li>
    7596. 

  7596. <li><?php bugfix(49847); ?> (exec() fails to return data inside 2nd parameter, given output lines &gt;4095 bytes). (Ilia)</li>
    7597. 

  7597. <li><?php bugfix(49809); ?> (time_sleep_until() is not available on OpenSolaris). (Jani)</li>
    7598. 

  7598. <li><?php bugfix(49757); ?> (long2ip() can return wrong value in a multi-threaded applications). (Ilia, Florian Anderiasch)</li>
    7599. 

  7599. <li><?php bugfix(49738); ?> (calling mcrypt after mcrypt_generic_deinit crashes). (Sriram Natarajan)</li>
    7600. 

  7600. <li><?php bugfix(49732); ?> (crashes when using fileinfo when timestamp conversion fails). (Pierre)</li>
    7601. 

  7601. <li><?php bugfix(49698); ?> (Unexpected change in strnatcasecmp()). (Rasmus)</li>
    7602. 

  7602. <li><?php bugfix(49630); ?> (imap_listscan function missing). (Felipe)</li>
    7603. 

  7603. <li><?php bugfix(49572); ?> (use of C++ style comments causes build failure). (Sriram Natarajan)</li>
    7604. 

  7604. <li><?php bugfix(49531); ?> (CURLOPT_INFILESIZE sometimes causes warning "CURLPROTO_FILE cannot be set"). (Felipe)</li>
    7605. 

  7605. <li><?php bugfix(49517); ?> (cURL's CURLOPT_FILE prevents file from being deleted after fclose). (Ilia)</li>
    7606. 

  7606. <li><?php bugfix(49470); ?> (FILTER_SANITIZE_EMAIL allows disallowed characters). (Ilia)</li>
    7607. 

  7607. <li><?php bugfix(49447); ?> (php engine need to correctly check for socket API  return status on windows). (Sriram Natarajan)</li>
    7608. 

  7608. <li><?php bugfix(49391); ?> (ldap.c utilizing deprecated ldap_modify_s). (Ilia)</li>
    7609. 

  7609. <li><?php bugfix(49361); ?> (wordwrap() wraps incorrectly on end of line boundaries). (Ilia, code-it at mail dot ru)</li>
    7610. 

  7610. <li><?php bugfix(49372); ?> (segfault in php_curl_option_curl). (Pierre)</li>
    7611. 

  7611. <li><?php bugfix(49306); ?> (inside pdo_mysql default socket settings are ignored). (Ilia)</li>
    7612. 

  7612. <li><?php bugfix(49289); ?> (bcmath module doesn't compile with phpize configure). (Jani)</li>
    7613. 

  7613. <li><?php bugfix(49286); ?> (php://input (php_stream_input_read) is broken). (Jani)</li>
    7614. 

  7614. <li><?php bugfix(49269); ?> (Ternary operator fails on Iterator object when used inside foreach declaration). (Etienne, Dmitry)</li>
    7615. 

  7615. <li><?php bugfix(49236); ?> (Missing PHP_SUBST(PDO_MYSQL_SHARED_LIBADD)). (Jani)</li>
    7616. 

  7616. <li><?php bugfix(49223); ?> (Inconsistency using get_defined_constants). (Garrett)</li>
    7617. 

  7617. <li><?php bugfix(49193); ?> (gdJpegGetVersionString() inside gd_compact identifies wrong type in declaration). (Ilia)</li>
    7618. 

  7618. <li><?php bugfix(49183); ?> (dns_get_record does not return NAPTR records). (Pierre)</li>
    7619. 

  7619. <li><?php bugfix(49144); ?> (Import of schema from different host transmits original authentication details). (Dmitry)</li>
    7620. 

  7620. <li><?php bugfix(49142); ?> (crash when exception thrown from __tostring()). (David Soria Parra)</li>
    7621. 

  7621. <li><?php bugfix(49986); ?> (Missing ICU DLLs on windows package). (Pierre)</li>
    7622. 

  7622. <li><?php bugfix(49132); ?> (posix_times returns false without error). (phpbugs at gunnu dot us)</li>
    7623. 

  7623. <li><?php bugfix(49125); ?> (Error in dba_exists C code). (jdornan at stanford dot edu)</li>
    7624. 

  7624. <li><?php bugfix(49122); ?> (undefined reference to mysqlnd_stmt_next_result on compile with --with-mysqli and MySQL 6.0). (Jani)</li>
    7625. 

  7625. <li><?php bugfix(49108); ?> (2nd scan_dir produces segfault). (Felipe)</li>
    7626. 

  7626. <li><?php bugfix(49098); ?> (mysqli segfault on error). (Rasmus)</li>
    7627. 

  7627. <li><?php bugfix(49095); ?> (proc_get_status['exitcode'] fails on win32). (Felipe)</li>
    7628. 

  7628. <li><?php bugfix(49092); ?> (ReflectionFunction fails to work with functions in fully qualified namespaces). (Kalle, Jani)</li>
    7629. 

  7629. <li><?php bugfix(49074); ?> (private class static fields can be modified by using reflection). (Jani)</li>
    7630. 

  7630. <li><?php bugfix(49072); ?> (feof never returns true for damaged file in zip). (Pierre)</li>
    7631. 

  7631. <li><?php bugfix(49065); ?> ("disable_functions" php.ini option does not work on  Zend extensions). (Stas)</li>
    7632. 

  7632. <li><?php bugfix(49064); ?> (--enable-session=shared does not work: undefined symbol: php_url_scanner_reset_vars). (Jani)</li>
    7633. 

  7633. <li><?php bugfix(49056); ?> (parse_ini_file() regression in 5.3.0 when using non-ASCII strings as option keys). (Jani)</li>
    7634. 

  7634. <li><?php bugfix(49052); ?> (context option headers freed too early when using --with-curlwrappers). (Jani)</li>
    7635. 

  7635. <li><?php bugfix(49047); ?> (The function touch() fails on directories on Windows). (Pierre)</li>
    7636. 

  7636. <li><?php bugfix(49032); ?> (SplFileObject::fscanf() variables passed by reference). (Jani)</li>
    7637. 

  7637. <li><?php bugfix(49027); ?> (mysqli_options() doesn't work when using mysqlnd). (Andrey)</li>
    7638. 

  7638. <li><?php bugfix(49026); ?> (proc_open() can bypass safe_mode_protected_env_vars restrictions). (Ilia)</li>
    7639. 

  7639. <li><?php bugfix(49012); ?> (phar tar signature algorithm reports as Unknown (0) in getSignature() call). (Greg)</li>
    7640. 

  7640. <li><?php bugfix(49020); ?> (phar misinterprets ustar long filename standard). (Greg)</li>
    7641. 

  7641. <li><?php bugfix(49018); ?> (phar tar stores long filenames wit prefix/name reversed). (Greg)</li>
    7642. 

  7642. <li><?php bugfix(49014); ?> (dechunked filter broken when serving more than 8192 bytes in a chunk). (andreas dot streichardt at globalpark dot com, Ilia)</li>
    7643. 

  7643. <li><?php bugfix(49000); ?> (PHP CLI in Interactive mode (php -a) crashes  when including files from function). (Stas)</li>
    7644. 

  7644. <li><?php bugfix(48994); ?> (zlib.output_compression does not output HTTP headers when set to a string value). (Jani)</li>
    7645. 

  7645. <li><?php bugfix(48980); ?> (Crash when compiling with pdo_firebird). (Felipe)</li>
    7646. 

  7646. <li><?php bugfix(48962); ?> (cURL does not upload files with specified filename). (Ilia)</li>
    7647. 

  7647. <li><?php bugfix(48929); ?> (Double \r\n after HTTP headers when "header" context option is an array). (David Zülke)</li>
    7648. 

  7648. <li><?php bugfix(48913); ?> (Too long error code strings in pdo_odbc driver). (naf at altlinux dot ru, Felipe)</li>
    7649. 

  7649. <li><?php bugfix(48912); ?> (Namespace causes unexpected strict behaviour with extract()). (Dmitry)</li>
    7650. 

  7650. <li><?php bugfix(48909); ?> (Segmentation fault in mysqli_stmt_execute()). (Andrey)</li>
    7651. 

  7651. <li><?php bugfix(48899); ?> (is_callable returns true even if method does not exist in parent class). (Felipe)</li>
    7652. 

  7652. <li><?php bugfix(48893); ?> (Problems compiling with Curl). (Felipe)</li>
    7653. 

  7653. <li><?php bugfix(48872); ?> (string.c: errors: duplicate case values). (Kalle)</li>
    7654. 

  7654. <li><?php bugfix(48854); ?> (array_merge_recursive modifies arrays after first one). (Felipe)</li>
    7655. 

  7655. <li><?php bugfix(48805); ?> (IPv6 socket transport is not working). (Ilia)</li>
    7656. 

  7656. <li><?php bugfix(48802); ?> (printf() returns incorrect outputted length). (Jani)</li>
    7657. 

  7657. <li><?php bugfix(48880); ?> (Random Appearing open_basedir problem). (Rasmus, Gwynne)</li>
    7658. 

  7658. <li><?php bugfix(48791); ?> (open office files always reported as corrupted). (Greg)</li>
    7659. 

  7659. <li><?php bugfix(48788); ?> (RecursiveDirectoryIterator doesn't descend into symlinked directories). (Ilia)</li>
    7660. 

  7660. <li><?php bugfix(48783); ?> (make install will fail saying phar file exists). (Greg)</li>
    7661. 

  7661. <li><?php bugfix(48774); ?> (SIGSEGVs when using curl_copy_handle()). (Sriram Natarajan)</li>
    7662. 

  7662. <li><?php bugfix(48771); ?> (rename() between volumes fails and reports no error on  Windows). (Pierre)</li>
    7663. 

  7663. <li><?php bugfix(48768); ?> (parse_ini_*() crash with INI_SCANNER_RAW). (Jani)</li>
    7664. 

  7664. <li><?php bugfix(48763); ?> (ZipArchive produces corrupt archive). (dani dot church at  gmail dot com, Pierre)</li>
    7665. 

  7665. <li><?php bugfix(48762); ?> (IPv6 address filter still rejects valid address). (Felipe)</li>
    7666. 

  7666. <li><?php bugfix(48757); ?> (ReflectionFunction::invoke() parameter issues). (Kalle)</li>
    7667. 

  7667. <li><?php bugfix(48754); ?> (mysql_close() crash php when no handle specified). (Johannes, Andrey)</li>
    7668. 

  7668. <li><?php bugfix(48752); ?> (Crash during date parsing with invalid date). (Pierre)</li>
    7669. 

  7669. <li><?php bugfix(48746); ?> (Unable to browse directories within Junction Points). (Pierre, Kanwaljeet Singla)</li>
    7670. 

  7670. <li><?php bugfix(48745); ?> (mysqlnd: mysql_num_fields returns wrong column count for mysql_list_fields). (Andrey)</li>
    7671. 

  7671. <li><?php bugfix(48740); ?> (PHAR install fails when INSTALL_ROOT is not the final install location). (james dot cohen at digitalwindow dot com, Greg)</li>
    7672. 

  7672. <li><?php bugfix(48733); ?> (CURLOPT_WRITEHEADER|CURLOPT_FILE|CURLOPT_STDERR warns on files that have been opened with r+). (Ilia)</li>
    7673. 

  7673. <li><?php bugfix(48719); ?> (parse_ini_*(): scanner_mode parameter is not checked for sanity). (Jani)</li>
    7674. 

  7674. <li><?php bugfix(48718); ?> (FILTER_VALIDATE_EMAIL does not allow numbers in domain   components). (Ilia)</li>
    7675. 

  7675. <li><?php bugfix(48681); ?> (openssl signature verification for tar archives broken). (Greg)</li>
    7676. 

  7676. <li><?php bugfix(48660); ?> (parse_ini_*(): dollar sign as last character of value fails). (Jani)</li>
    7677. 

  7677. <li><?php bugfix(48645); ?> (mb_convert_encoding() doesn't understand hexadecimal html-entities). (Moriyoshi)</li>
    7678. 

  7678. <li><?php bugfix(48637); ?> ("file" fopen wrapper is overwritten when using --with-curlwrappers). (Jani)</li>
    7679. 

  7679. <li><?php bugfix(48608); ?> (Invalid libreadline version not detected during configure). (Jani)</li>
    7680. 

  7680. <li><?php bugfix(48400); ?> (imap crashes when closing stream opened with OP_PROTOTYPE flag). (Jani)</li>
    7681. 

  7681. <li><?php bugfix(48377); ?> (error message unclear on converting phar with existing file). (Greg)</li>
    7682. 

  7682. <li><?php bugfix(48247); ?> (Infinite loop and possible crash during startup with errors when errors are logged). (Jani)</li>
    7683. 

  7683. <li><?php bugfix(48198); ?> error: 'MYSQLND_LLU_SPEC' undeclared. Cause for #48780 and #46952 - both fixed too. (Andrey)</li>
    7684. 

  7684. <li><?php bugfix(48189); ?> (ibase_execute error in return param). (Kalle)</li>
    7685. 

  7685. <li><?php bugfix(48182); ?> (ssl handshake fails during asynchronous socket connection). (Sriram Natarajan)</li>
    7686. 

  7686. <li><?php bugfix(48116); ?> (Fixed build with Openssl 1.0). (Pierre,  Al dot Smith at aeschi dot ch dot eu dot org)</li>
    7687. 

  7687. <li><?php bugfix(48057); ?> (Only the date fields of the first row are fetched, others are empty). (info at programmiernutte dot net)</li>
    7688. 

  7688. <li><?php bugfix(47481); ?> (natcasesort() does not sort extended ASCII characters correctly). (Herman Radtke)</li>
    7689. 

  7689. <li><?php bugfix(47351); ?> (Memory leak in DateTime). (Derick, Tobias John)</li>
    7690. 

  7690. <li><?php bugfix(47273); ?> (Encoding bug in SoapServer-&gt;fault). (Dmitry)</li>
    7691. 

  7691. <li><?php bugfix(46682); ?> (touch() afield returns different values on windows). (Pierre)</li>
    7692. 

  7692. <li><?php bugfix(46614); ?> (Extended MySQLi class gives incorrect empty() result). (Andrey)</li>
    7693. 

  7693. <li><?php bugfix(46020); ?> (with Sun Java System Web Server 7.0 on HPUX, #define HPUX). (Uwe Schindler)</li>
    7694. 

  7694. <li><?php bugfix(45905); ?> (imagefilledrectangle() clipping error). (markril at hotmail dot com, Pierre)</li>
    7695. 

  7695. <li><?php bugfix(45554); ?> (Inconsistent behavior of the u format char). (Derick)</li>
    7696. 

  7696. <li><?php bugfix(45141); ?> (setcookie will output expires years of &gt;4 digits). (Ilia)</li>
    7697. 

  7697. <li><?php bugfix(44683); ?> (popen crashes when an invalid mode is passed). (Pierre)</li>
    7698. 

  7698. <li><?php bugfix(43510); ?> (stream_get_meta_data() does not return same mode as used in fopen). (Jani)</li>
    7699. 

  7699. <li><?php bugfix(42434); ?> (ImageLine w/ antialias = 1px shorter). (wojjie at gmail dot com, Kalle)</li>
    7700. 

  7700. <li><?php bugfix(40013); ?> (php_uname() does not return nodename on Netware (Guenter Knauf)</li>
    7701. 

  7701. <li><?php bugfix(38091); ?> (Mail() does not use FQDN when sending SMTP helo). (Kalle, Rick Yorgason)</li>
    7702. 

  7702. <li><?php bugfix(28038); ?> (Sent incorrect RCPT TO commands to SMTP server) (Garrett)</li>
    7703. 

  7703. <li><?php bugfix(27051); ?> (Impersonation with FastCGI does not exec process as impersonated user). (Pierre)</li>
    7704. 

  7704. <li><?php peclbugfix(16842) ?> (oci_error return false when NO_DATA_FOUND is raised). (Chris Jones)</li>
    7705. 

  7705. 

  7706. </ul>
    7707. 

  7707. <!-- }}} --></section>
    7708. 

  7708. 

  7709. <section class="version" id="5.3.0"><!-- {{{ 5.3.0 -->
    7710. 

  7710. <h3>Version 5.3.0</h3>
    7711. 

  7711. <?php release_date('30-Jun-2009'); ?>
    7712. 

  7712. <ul>
    7713. 

  7713. 

  7714. 	<li>Upgraded bundled PCRE to version 7.9. (Nuno)</li>
    7715. 

  7715. 	<li>Upgraded bundled sqlite to version 3.6.15. (Scott)</li>
    7716. 

  7716. 

  7717. 	<li>Moved extensions to PECL (Derick, Lukas, Pierre, Scott):
    7718. 

  7718. 	<ul>
    7719. 

  7719. 		<li>ext/dbase</li>
    7720. 

  7720. 		<li>ext/fbsql</li>
    7721. 

  7721. 		<li>ext/fdf</li>
    7722. 

  7722. 		<li>ext/ncurses</li>
    7723. 

  7723. 		<li>ext/mhash (BC layer is now entirely within ext/hash)</li>
    7724. 

  7724. 		<li>ext/ming</li>
    7725. 

  7725. 		<li>ext/msql</li>
    7726. 

  7726. 		<li>ext/sybase (not maintained anymore, sybase_ct has to be used instead)</li>
    7727. 

  7727. 	</ul>
    7728. 

  7728. 	</li>
    7729. 

  7729. 

  7730. 	<li>Removed the experimental RPL (master/slave) functions from mysqli. (Andrey)</li>
    7731. 

  7731. 	<li>Removed zend.ze1_compatibility_mode. (Dmitry)</li>
    7732. 

  7732. 	<li>Removed all zend_extension_* php.ini directives. Zend extensions are now
    7733. 

  7733.   always loaded using zend_extension directive. (Derick)</li>
    7734. 

  7734. 	<li>Removed special treatment of "/tmp" in sessions for open_basedir.
    7735. 

  7735.   Note: This undocumented behaviour was introduced in 5.2.2. (Alexey)</li>
    7736. 

  7736. 	<li>Removed shebang line check from CGI sapi (checked by scanner). (Dmitry)</li>
    7737. 

  7737. 

  7738. 	<li>Changed PCRE, Reflection and SPL extensions to be always enabled. (Marcus)</li>
    7739. 

  7739. 	<li>Changed md5() to use improved implementation. (Solar Designer, Dmitry)</li>
    7740. 

  7740. 	<li>Changed HTTP stream wrapper to accept any code between and including
    7741. 

  7741.   200 to 399 as successful. (Mike, Noah Fontes)</li>
    7742. 

  7742. 	<li>Changed __call() to be invoked on private/protected method access, similar to
    7743. 

  7743.   properties and __get(). (Andrei)</li>
    7744. 

  7744. 	<li>Changed dl() to be disabled by default. Enabled only when explicitly
    7745. 

  7745.   registered by the SAPI. Currently enabled with cli, cgi and embed SAPIs.
    7746. 

  7746.   (Dmitry)</li>
    7747. 

  7747. 	<li>Changed opendir(), dir() and scandir() to use default context when no context
    7748. 

  7748.   argument is passed. (Sara)</li>
    7749. 

  7749. 	<li>Changed open_basedir to allow tightening in runtime contexts. (Sara)</li>
    7750. 

  7750. 	<li>Changed PHP/Zend extensions to use flexible build IDs. (Stas)</li>
    7751. 

  7751. 	<li>Changed error level E_ERROR into E_WARNING in Soap extension methods
    7752. 

  7752.   parameter validation. (Felipe)</li>
    7753. 

  7753. 	<li>Changed openssl info to show the shared library version number. (Scott)</li>
    7754. 

  7754. 	<li>Changed floating point behaviour to consistently use double precision on all
    7755. 

  7755.   platforms and with all compilers. (Christian Seiler)</li>
    7756. 

  7756. 	<li>Changed round() to act more intuitively when rounding to a certain precision
    7757. 

  7757.   and round very large and very small exponents correctly. (Christian Seiler)</li>
    7758. 

  7758. 	<li>Changed session_start() to return false when session startup fails. (Jani)</li>
    7759. 

  7759. 	<li>Changed property_exists() to check the existence of a property independent of
    7760. 

  7760.   accessibility (like method_exists()). (Felipe)</li>
    7761. 

  7761. 	<li>Changed array_reduce() to allow mixed $initial (Christian Seiler)</li>
    7762. 

  7762. 

  7763. 	<li>Improved PHP syntax and semantics:
    7764. 

  7764. 	<ul>
    7765. 

  7765. 		<li>Added lambda functions and closures. (Christian Seiler, Dmitry)</li>
    7766. 

  7766. 		<li>Added "jump label" operator (limited "goto"). (Dmitry, Sara)</li>
    7767. 

  7767. 		<li>Added NOWDOC syntax. (Gwynne Raskind, Stas, Dmitry)</li>
    7768. 

  7768. 		<li>Added HEREDOC syntax with double quotes. (Lars Strojny, Felipe)</li>
    7769. 

  7769. 		<li>Added support for using static HEREDOCs to initialize static variables and
    7770. 

  7770.     class members or constants. (Matt)</li>
    7771. 

  7771. 		<li>Improved syntax highlighting and consistency for variables in double-quoted
    7772. 

  7772.     strings and literal text in HEREDOCs and backticks. (Matt)</li>
    7773. 

  7773. 		<li>Added "?:" operator. (Marcus)</li>
    7774. 

  7774. 		<li>Added support for namespaces. (Dmitry, Stas, Gregory, Marcus)</li>
    7775. 

  7775. 		<li>Added support for Late Static Binding. (Dmitry, Etienne Kneuss)</li>
    7776. 

  7776. 		<li>Added support for __callStatic() magic method. (Sara)</li>
    7777. 

  7777. 		<li>Added forward_static_call(_array) to complete LSB. (Mike Lively)</li>
    7778. 

  7778. 		<li>Added support for dynamic access of static members using $foo::myFunc().
    7779. 

  7779.     (Etienne Kneuss)</li>
    7780. 

  7780. 		<li>Improved checks for callbacks. (Marcus)</li>
    7781. 

  7781. 		<li>Added __DIR__ constant. (Lars Strojny)</li>
    7782. 

  7782. 		<li>Added new error modes E_USER_DEPRECATED and E_DEPRECATED.
    7783. 

  7783.     E_DEPRECATED is used to inform about stuff being scheduled for removal
    7784. 

  7784.     in future PHP versions. (Lars Strojny, Felipe, Marcus)</li>
    7785. 

  7785. 		<li>Added "request_order" INI variable to control specifically $_REQUEST
    7786. 

  7786.     behavior. (Stas)</li>
    7787. 

  7787. 		<li>Added support for exception linking. (Marcus)</li>
    7788. 

  7788. 		<li>Added ability to handle exceptions in destructors. (Marcus)</li>
    7789. 

  7789. 	</ul>
    7790. 

  7790. 	</li>
    7791. 

  7791. 

  7792. 	<li>Improved PHP runtime speed and memory usage:
    7793. 

  7793. 	<ul>
    7794. 

  7794. 		<li>Substitute global-scope, persistent constants with their values at compile
    7795. 

  7795.     time. (Matt)</li>
    7796. 

  7796. 		<li>Optimized ZEND_SIGNED_MULTIPLY_LONG(). (Matt)</li>
    7797. 

  7797. 		<li>Removed direct executor recursion. (Dmitry)</li>
    7798. 

  7798. 		<li>Use fastcall calling convention in executor on x86. (Dmitry)</li>
    7799. 

  7799. 		<li>Use IS_CV for direct access to $this variable. (Dmitry)</li>
    7800. 

  7800. 		<li>Use ZEND_FREE() opcode instead of ZEND_SWITCH_FREE(IS_TMP_VAR). (Dmitry)</li>
    7801. 

  7801. 		<li>Lazy EG(active_symbol_table) initialization. (Dmitry)</li>
    7802. 

  7802. 		<li>Optimized ZEND_RETURN opcode to not allocate and copy return value if it is
    7803. 

  7803.     not used. (Dmitry)</li>
    7804. 

  7804. 		<li>Replaced all flex based scanners with re2c based scanners.
    7805. 

  7805.     (Marcus, Nuno, Scott)</li>
    7806. 

  7806. 		<li>Added garbage collector. (David Wang, Dmitry).</li>
    7807. 

  7807. 		<li>Improved PHP binary size and startup speed with GCC4 visibility control.
    7808. 

  7808.     (Nuno)</li>
    7809. 

  7809. 		<li>Improved engine stack implementation for better performance and stability.
    7810. 

  7810.     (Dmitry)</li>
    7811. 

  7811. 		<li>Improved memory usage by moving constants to read only memory.
    7812. 

  7812.     (Dmitry, Pierre)</li>
    7813. 

  7813. 		<li>Changed exception handling. Now each op_array doesn't contain
    7814. 

  7814.     ZEND_HANDLE_EXCEPTION opcode in the end. (Dmitry)</li>
    7815. 

  7815. 		<li>Optimized require_once() and include_once() by eliminating fopen(3) on
    7816. 

  7816.     second usage. (Dmitry)</li>
    7817. 

  7817. 		<li>Optimized ZEND_FETCH_CLASS + ZEND_ADD_INTERFACE into single
    7818. 

  7818.     ZEND_ADD_INTERFACE opcode. (Dmitry)</li>
    7819. 

  7819. 		<li>Optimized string searching for a single character.
    7820. 

  7820.     (Michal Dziemianko, Scott)</li>
    7821. 

  7821. 		<li>Optimized interpolated strings to use one less opcode. (Matt)</li>
    7822. 

  7822. 	</ul>
    7823. 

  7823. 	</li>
    7824. 

  7824. 

  7825. 	<li>Improved php.ini handling: (Jani)
    7826. 

  7826. 	<ul>
    7827. 

  7827. 		<li>Added ".htaccess" style user-defined php.ini files support for CGI/FastCGI.</li>
    7828. 

  7828. 		<li>Added support for special [PATH=/opt/httpd/www.example.com/] and
    7829. 

  7829.     [HOST=www.example.com] sections. Directives set in these sections can
    7830. 

  7830.     not be overridden by user-defined ini-files or during runtime.</li>
    7831. 

  7831. 		<li>Added better error reporting for php.ini syntax errors.</li>
    7832. 

  7832. 		<li>Allowed using full path to load modules using "extension" directive.</li>
    7833. 

  7833. 		<li>Allowed "ini-variables" to be used almost everywhere ini php.ini files.</li>
    7834. 

  7834. 		<li>Allowed using alphanumeric/variable indexes in "array" ini options.</li>
    7835. 

  7835. 		<li>Added 3rd optional parameter to parse_ini_file() to specify the scanning
    7836. 

  7836.     mode of INI_SCANNER_NORMAL or INI_SCANNER_RAW. In raw mode option values
    7837. 

  7837.     and section values are treated as-is.</li>
    7838. 

  7838. 		<li>Fixed get_cfg_var() to be able to return "array" ini options.</li>
    7839. 

  7839. 		<li>Added optional parameter to ini_get_all() to only retrieve the current
    7840. 

  7840.     value. (Hannes)</li>
    7841. 

  7841. 	</ul>
    7842. 

  7842. 	</li>
    7843. 

  7843. 

  7844. 	<li>Improved Windows support:
    7845. 

  7845. 	<ul>
    7846. 

  7846. 		<li>Update all libraries to their latest stable version. (Pierre, Rob, Liz,
    7847. 

  7847.     Garrett).</li>
    7848. 

  7848. 		<li>Added Windows support for stat(), touch(), filemtime(), filesize() and
    7849. 

  7849.     related functions. (Pierre)</li>
    7850. 

  7850. 		<li>Re-added socket_create_pair() for Windows in sockets extension. (Kalle)</li>
    7851. 

  7851. 		<li>Added inet_pton() and inet_ntop() also for Windows platforms.
    7852. 

  7852.     (Kalle, Pierre)</li>
    7853. 

  7853. 		<li>Added mcrypt_create_iv() for Windows platforms. (Pierre)</li>
    7854. 

  7854. 		<li>Added ACL Cache support on Windows.
    7855. 

  7855.     (Kanwaljeet Singla, Pierre, Venkat Raman Don)</li>
    7856. 

  7856. 		<li>Added constants based on Windows' GetVersionEx information.
    7857. 

  7857.     PHP_WINDOWS_VERSION_* and PHP_WINDOWS_NT_*. (Pierre)</li>
    7858. 

  7858. 		<li>Added support for ACL (is_writable, is_readable, reports now correct
    7859. 

  7859.     results) on Windows. (Pierre, Venkat Raman Don, Kanwaljeet Singla)</li>
    7860. 

  7860. 		<li>Added support for fnmatch() on Windows. (Pierre)</li>
    7861. 

  7861. 		<li>Added support for time_nanosleep() and time_sleep_until() on Windows.
    7862. 

  7862.     (Pierre)</li>
    7863. 

  7863. 		<li>Added support for symlink(), readlink(), linkinfo() and link() on Windows.
    7864. 

  7864.     They are available only when the running platform supports them. (Pierre)</li>
    7865. 

  7865. 		<li>the GMP extension now relies on MPIR instead of the GMP library. (Pierre)</li>
    7866. 

  7866. 		<li>Added Windows support for stream_socket_pair(). (Kalle)</li>
    7867. 

  7867. 		<li>Drop all external dependencies for the core features. (Pierre)</li>
    7868. 

  7868. 		<li>Drastically improve the build procedure (Pierre, Kalle, Rob):
    7869. 

  7869. 		<ul>
    7870. 

  7870. 			<li>VC9 (Visual C++ 2008) or later support</li>
    7871. 

  7871. 			<li>Initial experimental x64 support</li>
    7872. 

  7872. 		</ul>
    7873. 

  7873. 		</li>
    7874. 

  7874. 		<li>MSI installer now supports all recent Windows versions, including
    7875. 

  7875.     Windows 7. (John, Kanwaljeet Singla)</li>
    7876. 

  7876. 	</ul>
    7877. 

  7877. 	</li>
    7878. 

  7878. 

  7879. 	<li>Improved and cleaned CGI code:
    7880. 

  7880. 	<ul>
    7881. 

  7881. 		<li>FastCGI is now always enabled and cannot be disabled.
    7882. 

  7882.     See sapi/cgi/CHANGES for more details. (Dmitry)</li>
    7883. 

  7883. 		<li>Added CGI SAPI -T option which can be used to measure execution
    7884. 

  7884.     time of script repeated several times. (Dmitry)</li>
    7885. 

  7885. 	</ul>
    7886. 

  7886. 	</li>
    7887. 

  7887. 

  7888. 	<li>Improved streams:
    7889. 

  7889. 	<ul>
    7890. 

  7890. 		<li>Fixed confusing error message on failure when no errors are logged. (Greg)</li>
    7891. 

  7891. 		<li>Added stream_supports_lock() function. (Benjamin Schulz)</li>
    7892. 

  7892. 		<li>Added context parameter for copy() function. (Sara)</li>
    7893. 

  7893. 		<li>Added "glob://" stream wrapper. (Marcus)</li>
    7894. 

  7894. 		<li>Added "params" as optional parameter for stream_context_create(). (Sara)</li>
    7895. 

  7895. 		<li>Added ability to use stream wrappers in include_path. (Gregory, Dmitry)</li>
    7896. 

  7896. 	</ul>
    7897. 

  7897. 	</li>
    7898. 

  7898. 

  7899. 	<li>Improved DNS API
    7900. 

  7900. 	<ul>
    7901. 

  7901. 		<li>Added Windows support for dns_check_record(), dns_get_mx(), checkdnsrr() and
    7902. 

  7902.     getmxrr(). (Pierre)</li>
    7903. 

  7903. 		<li>Added support for old style DNS functions (supports OSX and FBSD). (Scott)</li>
    7904. 

  7904. 		<li>Added a new "entries" array in dns_check_record() containing the TXT
    7905. 

  7905.     elements. (Felipe, Pierre)</li>
    7906. 

  7906. 	</ul>
    7907. 

  7907. 	</li>
    7908. 

  7908. 

  7909. 	<li>Improved hash extension:
    7910. 

  7910. 	<ul>
    7911. 

  7911. 		<li>Changed mhash to be a wrapper layer around the hash extension. (Scott)</li>
    7912. 

  7912. 		<li>Added hash_copy() function. (Tony)</li>
    7913. 

  7913. 		<li>Added sha224 hash algorithm to the hash extension. (Scott)</li>
    7914. 

  7914. 	</ul>
    7915. 

  7915. 	</li>
    7916. 

  7916. 

  7917. 	<li>Improved IMAP support (Pierre):
    7918. 

  7918. 	<ul>
    7919. 

  7919. 		<li>Added imap_gc() to clear the imap cache</li>
    7920. 

  7920. 		<li>Added imap_utf8_to_mutf7() and imap_mutf7_to_utf8()</li>
    7921. 

  7921. 	</ul>
    7922. 

  7922. 	</li>
    7923. 

  7923. 

  7924. 	<li>Improved mbstring extension:
    7925. 

  7925. 	<ul>
    7926. 

  7926. 		<li>Added "mbstring.http_output_conv_mimetypes" INI directive that allows
    7927. 

  7927.     common non-text types such as "application/xhtml+xml" to be converted
    7928. 

  7928.     by mb_output_handler(). (Moriyoshi)</li>
    7929. 

  7929. 	</ul>
    7930. 

  7930. 	</li>
    7931. 

  7931. 

  7932. 	<li>Improved OCI8 extension (Chris Jones/Oracle Corp.):
    7933. 

  7933. 	<ul>
    7934. 

  7934. 		<li>Added Database Resident Connection Pooling (DRCP) and Fast
    7935. 

  7935.     Application Notification (FAN) support.</li>
    7936. 

  7936. 		<li>Added support for Oracle External Authentication (not supported
    7937. 

  7937.     on Windows).</li>
    7938. 

  7938. 		<li>Improve persistent connection handling of restarted DBs.</li>
    7939. 

  7939. 		<li>Added SQLT_AFC (aka CHAR datatype) support to oci_bind_by_name.</li>
    7940. 

  7940. 		<li><?php bugfix(45458); ?> (Numeric keys for associative arrays are not
    7941. 

  7941.     handled properly)</li>
    7942. 

  7942. 		<li><?php bugfix(41069); ?> (Segmentation fault with query over DB link).</li>
    7943. 

  7943. 		<li>Fixed define of SQLT_BDOUBLE and SQLT_BFLOAT constants with Oracle
    7944. 

  7944.     10g ORACLE_HOME builds.</li>
    7945. 

  7945. 		<li>Changed default value of oci8.default_prefetch from 10 to 100.</li>
    7946. 

  7946. 		<li><?php peclbugfix(16035); ?> (OCI8: oci_connect without ORACLE_HOME defined causes
    7947. 

  7947.     segfault) (Chris Jones/Oracle Corp.)</li>
    7948. 

  7948. 		<li><?php peclbugfix(15988); ?> (OCI8: sqlnet.ora isn't read with older Oracle
    7949. 

  7949.     libraries) (Chris Jones/Oracle Corp.)</li>
    7950. 

  7950. 		<li><?php peclbugfix(14268); ?> (Allow "pecl install oci8" command to "autodetect" an
    7951. 

  7951.     Instant Client RPM install) (Chris Jones/Oracle Corp.)</li>
    7952. 

  7952. 		<li><?php peclbugfix(12431); ?> (OCI8 ping functionality is broken).</li>
    7953. 

  7953. 		<li>Allow building (e.g from PECL) the PHP 5.3-based OCI8 code with
    7954. 

  7954.     PHP 4.3.9 onwards.</li>
    7955. 

  7955. 		<li>Provide separate extensions for Oracle 11g and 10g on Windows.
    7956. 

  7956.     (Pierre, Chris)</li>
    7957. 

  7957. 	</ul>
    7958. 

  7958. 	</li>
    7959. 

  7959. 

  7960. 	<li>Improved OpenSSL extension:
    7961. 

  7961. 	<ul>
    7962. 

  7962. 		<li>Added support for OpenSSL digest and cipher functions. (Dmitry)</li>
    7963. 

  7963. 		<li>Added access to internal values of DSA, RSA and DH keys. (Dmitry)</li>
    7964. 

  7964. 		<li>Fixed a memory leak on openssl_decrypt(). (Henrique)</li>
    7965. 

  7965. 		<li>Fixed segfault caused by openssl_pkey_new(). (Henrique)</li>
    7966. 

  7966. 		<li>Fixed bug caused by uninitilized variables in openssl_pkcs7_encrypt() and
    7967. 

  7967.     openssl_pkcs7_sign(). (Henrique)</li>
    7968. 

  7968. 		<li>Fixed error message in openssl_seal(). (Henrique)</li>
    7969. 

  7969. 	</ul>
    7970. 

  7970. 	</li>
    7971. 

  7971. 

  7972. 	<li>Improved pcntl extension: (Arnaud)
    7973. 

  7973. 	<ul>
    7974. 

  7974. 		<li>Added pcntl_signal_dispatch().</li>
    7975. 

  7975. 		<li>Added pcntl_sigprocmask().</li>
    7976. 

  7976. 		<li>Added pcntl_sigwaitinfo().</li>
    7977. 

  7977. 		<li>Added pcntl_sigtimedwait().</li>
    7978. 

  7978. 	</ul>
    7979. 

  7979. 	</li>
    7980. 

  7980. 

  7981. 	<li>Improved SOAP extension:
    7982. 

  7982. 	<ul>
    7983. 

  7983. 		<li>Added support for element names in context of XMLSchema's &lt;any>. (Dmitry)</li>
    7984. 

  7984. 		<li>Added ability to use Traversable objects instead of plain arrays.
    7985. 

  7985.     (Joshua Reese, Dmitry)</li>
    7986. 

  7986. 		<li>Fixed possible crash bug caused by an uninitialized value. (Zdash Urf)</li>
    7987. 

  7987. 	</ul>
    7988. 

  7988. 	</li>
    7989. 

  7989. 

  7990. 	<li>Improved SPL extension:
    7991. 

  7991. 	<ul>
    7992. 

  7992. 		<li>Added SPL to list of standard extensions that cannot be disabled. (Marcus)</li>
    7993. 

  7993. 		<li>Added ability to store associative information with objects in
    7994. 

  7994.     SplObjectStorage. (Marcus)</li>
    7995. 

  7995. 		<li>Added ArrayAccess support to SplObjectStorage. (Marcus)</li>
    7996. 

  7996. 		<li>Added SplDoublyLinkedList, SplStack, SplQueue classes. (Etienne)</li>
    7997. 

  7997. 		<li>Added FilesystemIterator. (Marcus)</li>
    7998. 

  7998. 		<li>Added GlobIterator. (Marcus)</li>
    7999. 

  7999. 		<li>Added SplHeap, SplMinHeap, SplMaxHeap, SplPriorityQueue classes. (Etienne)</li>
    8000. 

  8000. 		<li>Added new parameter $prepend to spl_autoload_register(). (Etienne)</li>
    8001. 

  8001. 		<li>Added SplFixedArray. (Etienne, Tony)</li>
    8002. 

  8002. 		<li>Added delaying exceptions in SPL's autoload mechanism. (Marcus)</li>
    8003. 

  8003. 		<li>Added RecursiveTreeIterator. (Arnaud, Marcus)</li>
    8004. 

  8004. 		<li>Added MultipleIterator. (Arnaud, Marcus, Johannes)</li>
    8005. 

  8005. 	</ul>
    8006. 

  8006. 	</li>
    8007. 

  8007. 

  8008. 	<li>Improved Zend Engine:
    8009. 

  8009. 	<ul>
    8010. 

  8010. 		<li>Added "compact" handler for Zend MM storage. (Dmitry)</li>
    8011. 

  8011. 		<li>Added "+" and "*" specifiers to zend_parse_parameters(). (Andrei)</li>
    8012. 

  8012. 		<li>Added concept of "delayed early binding" that allows opcode caches to
    8013. 

  8013.     perform class declaration (early and/or run-time binding) in exactly
    8014. 

  8014.     the same order as vanilla PHP. (Dmitry)</li>
    8015. 

  8015. 	</ul>
    8016. 

  8016. 	</li>
    8017. 

  8017. 

  8018. 	<li>Improved crypt() function: (Pierre)
    8019. 

  8019. 	<ul>
    8020. 

  8020. 		<li>Added Blowfish and extended DES support. (Using Blowfish implementation
    8021. 

  8021.     from Solar Designer).</li>
    8022. 

  8022. 		<li>Made crypt features portable by providing our own implementations
    8023. 

  8023.     for crypt_r and the algorithms which are used when OS does not provide
    8024. 

  8024.     them. PHP implementations are always used for Windows builds.</li>
    8025. 

  8025. 	</ul>
    8026. 

  8026. 	</li>
    8027. 

  8027. 

  8028. 	<li>Deprecated session_register(), session_unregister() and
    8029. 

  8029.   session_is_registered(). (Hannes)</li>
    8030. 

  8030. 	<li>Deprecated define_syslog_variables(). (Kalle)</li>
    8031. 

  8031. 	<li>Deprecated ereg extension. (Felipe)</li>
    8032. 

  8032. 

  8033. 	<li>Added new extensions:
    8034. 

  8034. 	<ul>
    8035. 

  8035. 		<li>Added Enchant extension as a way to access spell checkers. (Pierre)</li>
    8036. 

  8036. 		<li>Added fileinfo extension as replacement for mime_magic extension. (Derick)</li>
    8037. 

  8037. 		<li>Added intl extension for Internationalization. (Ed B., Vladimir I.,
    8038. 

  8038.     Dmitry L., Stanislav M., Vadim S., Kirti V.)</li>
    8039. 

  8039. 		<li>Added mysqlnd extension as replacement for libmysql for ext/mysql, mysqli
    8040. 

  8040.     and PDO_mysql. (Andrey, Johannes, Ulf)</li>
    8041. 

  8041. 		<li>Added phar extension for handling PHP Archives. (Greg, Marcus, Steph)</li>
    8042. 

  8042. 		<li>Added SQLite3 extension. (Scott)</li>
    8043. 

  8043. 	</ul>
    8044. 

  8044. 	</li>
    8045. 

  8045. 

  8046. 	<li>Added new date/time functionality: (Derick)
    8047. 

  8047. 	<ul>
    8048. 

  8048. 		<li>date_parse_from_format(): Parse date/time strings according to a format.</li>
    8049. 

  8049. 		<li>date_create_from_format()/DateTime::createFromFormat(): Create a date/time
    8050. 

  8050.     object by parsing a date/time string according to a given format.</li>
    8051. 

  8051. 		<li>date_get_last_errors()/DateTime::getLastErrors(): Return a list of warnings
    8052. 

  8052.     and errors that were found while parsing a date/time string through:
    8053. 

  8053. 		<ul>
    8054. 

  8054. 			<li>strtotime() / new DateTime</li>
    8055. 

  8055. 			<li>date_create_from_format() / DateTime::createFromFormat()</li>
    8056. 

  8056. 			<li>date_parse_from_format().</li>
    8057. 

  8057. 		</ul>
    8058. 

  8058. 		</li>
    8059. 

  8059. 		<li>support for abbreviation and offset based timezone specifiers for
    8060. 

  8060.     the 'e' format specifier, DateTime::__construct(), DateTime::getTimeZone()
    8061. 

  8061.     and DateTimeZone::getName().</li>
    8062. 

  8062. 		<li>support for selectively listing timezone identifiers by continent or
    8063. 

  8063.     country code through timezone_identifiers_list() / DateTimezone::listIdentifiers().</li>
    8064. 

  8064. 		<li>timezone_location_get() / DateTimezone::getLocation() for retrieving
    8065. 

  8065.     location information from timezones.</li>
    8066. 

  8066. 		<li>date_timestamp_set() / DateTime::setTimestamp() to set a Unix timestamp
    8067. 

  8067.     without invoking the date parser. (Scott, Derick)</li>
    8068. 

  8068. 		<li>date_timestamp_get() / DateTime::getTimestamp() to retrieve the Unix
    8069. 

  8069.     timestamp belonging to a date object.</li>
    8070. 

  8070. 		<li>two optional parameters to timezone_transitions_get() /
    8071. 

  8071.     DateTimeZone::getTranstions() to limit the range of transitions being
    8072. 

  8072.     returned.</li>
    8073. 

  8073. 		<li>support for "first/last day of &lt;month&gt;" style texts.</li>
    8074. 

  8074. 		<li>support for date/time strings returned by MS SQL.</li>
    8075. 

  8075. 		<li>support for serialization and unserialization of DateTime objects.</li>
    8076. 

  8076. 		<li>support for diffing date/times through date_diff() / DateTime::diff().</li>
    8077. 

  8077. 		<li>support for adding/subtracting weekdays with strtotime() and
    8078. 

  8078.     DateTime::modify().</li>
    8079. 

  8079. 		<li>DateInterval class to represent the difference between two date/times.</li>
    8080. 

  8080. 		<li>support for parsing ISO intervals for use with DateInterval.</li>
    8081. 

  8081. 		<li>date_add() / DateTime::add(), date_sub() / DateTime::sub() for applying an
    8082. 

  8082.     interval to an existing date/time.</li>
    8083. 

  8083. 		<li>proper support for "this week", "previous week"/"last week" and "next week"
    8084. 

  8084.     phrases so that they actually mean the week and not a seven day period
    8085. 

  8085.     around the current day.</li>
    8086. 

  8086. 		<li>support for "&lt;xth&gt; &lt;weekday&gt; of" and "last &lt;weekday&gt; of" phrases to be used
    8087. 

  8087.     with months - like in "last saturday of februari 2008".</li>
    8088. 

  8088. 		<li>support for "back of &lt;hour&gt;" and "front of &lt;hour&gt;" phrases that are used in
    8089. 

  8089.     Scotland.</li>
    8090. 

  8090. 		<li>DatePeriod class which supports iterating over a DateTime object applying
    8091. 

  8091.     DateInterval on each iteration, up to an end date or limited by maximum
    8092. 

  8092.     number of occurences.</li>
    8093. 

  8093. 	</ul>
    8094. 

  8094. 	</li>
    8095. 

  8095. 

  8096. 	<li>Added compatibility mode in GD, imagerotate, image(filled)ellipse
    8097. 

  8097.   imagefilter, imageconvolution and imagecolormatch are now always enabled.
    8098. 

  8098.   (Pierre)</li>
    8099. 

  8099. 	<li>Added array_replace() and array_replace_recursive() functions. (Matt)</li>
    8100. 

  8100. 	<li>Added ReflectionProperty::setAccessible() method that allows non-public
    8101. 

  8101.   property's values to be read through ::getValue() and set through
    8102. 

  8102.   ::setValue(). (Derick, Sebastian)</li>
    8103. 

  8103. 	<li>Added msg_queue_exists() function to sysvmsg extension. (Benjamin Schulz)</li>
    8104. 

  8104. 	<li>Added Firebird specific attributes that can be set via PDO::setAttribute()
    8105. 

  8105.   to control formatting of date/timestamp columns: PDO::FB_ATTR_DATE_FORMAT,
    8106. 

  8106.   PDO::FB_ATTR_TIME_FORMAT and PDO::FB_ATTR_TIMESTAMP_FORMAT. (Lars W)</li>
    8107. 

  8107. 	<li>Added gmp_testbit() function. (Stas)</li>
    8108. 

  8108. 	<li>Added icon format support to getimagesize(). (Scott)</li>
    8109. 

  8109. 	<li>Added LDAP_OPT_NETWORK_TIMEOUT option for ldap_set_option() to allow
    8110. 

  8110.   setting network timeout (FR <?php bugl(42837); ?>). (Jani)</li>
    8111. 

  8111. 	<li>Added optional escape character parameter to fgetcsv(). (David Soria Parra)</li>
    8112. 

  8112. 	<li>Added an optional parameter to strstr() and stristr() for retrieval of either
    8113. 

  8113.   the part of haystack before or after first occurrence of needle.
    8114. 

  8114.   (Johannes, Felipe)</li>
    8115. 

  8115. 	<li>Added xsl->setProfiling() for profiling stylesheets. (Christian)</li>
    8116. 

  8116. 	<li>Added long-option feature to getopt() and made getopt() available also on
    8117. 

  8117.   win32 systems by adding a common getopt implementation into core.
    8118. 

  8118.   (David Soria Parra, Jani)</li>
    8119. 

  8119. 	<li>Added support for optional values, and = as separator, in getopt(). (Hannes)</li>
    8120. 

  8120. 	<li>Added lcfirst() function. (David C)</li>
    8121. 

  8121. 	<li>Added PREG_BAD_UTF8_OFFSET_ERROR constant. (Nuno)</li>
    8122. 

  8122. 	<li>Added native support for asinh(), acosh(), atanh(), log1p() and expm1().
    8123. 

  8123.   (Kalle)</li>
    8124. 

  8124. 	<li>Added LIBXML_LOADED_VERSION constant (libxml2 version currently used). (Rob)</li>
    8125. 

  8125. 	<li>Added JSON_FORCE_OBJECT flag to json_encode(). (Scott, Richard Quadling)</li>
    8126. 

  8126. 	<li>Added timezone_version_get() to retrieve the version of the used timezone
    8127. 

  8127.   database. (Derick)</li>
    8128. 

  8128. 	<li>Added 'n' flag to fopen to allow passing O_NONBLOCK to the underlying
    8129. 

  8129.   open(2) system call. (Mikko)</li>
    8130. 

  8130. 	<li>Added "dechunk" filter which can decode HTTP responses with chunked
    8131. 

  8131.   transfer-encoding. HTTP streams use this filter automatically in case
    8132. 

  8132.   "Transfer-Encoding: chunked" header is present in response. It's possible to
    8133. 

  8133.   disable this behaviour using "http"=>array("auto_decode"=>0) in stream
    8134. 

  8134.   context. (Dmitry)</li>
    8135. 

  8135. 	<li>Added support for CP850 encoding in mbstring extension.
    8136. 

  8136.   (Denis Giffeler, Moriyoshi)</li>
    8137. 

  8137. 	<li>Added stream_cast() and stream_set_options() to user-space stream wrappers,
    8138. 

  8138.   allowing stream_select(), stream_set_blocking(), stream_set_timeout() and
    8139. 

  8139.   stream_set_write_buffer() to work with user-space stream wrappers. (Arnaud)</li>
    8140. 

  8140. 	<li>Added header_remove() function. (chsc at peytz dot dk, Arnaud)</li>
    8141. 

  8141. 	<li>Added stream_context_get_params() function. (Arnaud)</li>
    8142. 

  8142. 	<li>Added optional parameter "new" to sybase_connect(). (Timm)</li>
    8143. 

  8143. 	<li>Added parse_ini_string() function. (grange at lemonde dot fr, Arnaud)</li>
    8144. 

  8144. 	<li>Added str_getcsv() function. (Sara)</li>
    8145. 

  8145. 	<li>Added openssl_random_pseudo_bytes() function. (Scott)</li>
    8146. 

  8146. 	<li>Added ability to send user defined HTTP headers with SOAP request.
    8147. 

  8147.   (Brian J.France, Dmitry)</li>
    8148. 

  8148. 	<li>Added concatenation option to bz2.decompress stream filter.
    8149. 

  8149.   (Keisial at gmail dot com, Greg)</li>
    8150. 

  8150. 	<li>Added support for using compressed connections with PDO_mysql. (Johannes)</li>
    8151. 

  8151. 	<li>Added the ability for json_decode() to take a user specified depth. (Scott)</li>
    8152. 

  8152. 	<li>Added support for the mysql_stmt_next_result() function from libmysql.
    8153. 

  8153.   (Andrey)</li>
    8154. 

  8154. 	<li>Added function preg_filter() that does grep and replace in one go. (Marcus)</li>
    8155. 

  8155. 	<li>Added system independent realpath() implementation which caches intermediate
    8156. 

  8156.   directories in realpath-cache. (Dmitry)</li>
    8157. 

  8157. 	<li>Added optional clear_realpath_cache and filename parameters to
    8158. 

  8158.   clearstatcache(). (Jani, Arnaud)</li>
    8159. 

  8159. 	<li>Added litespeed SAPI module. (George Wang)</li>
    8160. 

  8160. 	<li>Added ext/hash support to ext/session's ID generator. (Sara)</li>
    8161. 

  8161. 	<li>Added quoted_printable_encode() function. (Tony)</li>
    8162. 

  8162. 	<li>Added stream_context_set_default() function. (Davey Shafik)</li>
    8163. 

  8163. 	<li>Added optional "is_xhtml" parameter to nl2br() which makes the function
    8164. 

  8164.   output &lt;br&gt; when false and &lt;br /&gt; when true (FR <?php bugl(34381); ?>). (Kalle)</li>
    8165. 

  8165. 	<li>Added PHP_MAXPATHLEN constant (maximum length of a path). (Pierre)</li>
    8166. 

  8166. 	<li>Added support for SSH via libssh2 in cURL. (Pierre)</li>
    8167. 

  8167. 	<li>Added support for gray levels PNG image with alpha in GD extension. (Pierre)</li>
    8168. 

  8168. 	<li>Added support for salsa hashing functions in HASH extension. (Scott)</li>
    8169. 

  8169. 	<li>Added DOMNode::getLineNo to get line number of parsed node. (Rob)</li>
    8170. 

  8170. 	<li>Added table info to PDO::getColumnMeta() with SQLite. (Martin Jansen, Scott)</li>
    8171. 

  8171. 	<li>Added mail logging functionality that allows logging of mail sent via
    8172. 

  8172.   mail() function. (Ilia)</li>
    8173. 

  8173. 	<li>Added json_last_error() to return any error information from json_decode().
    8174. 

  8174.   (Scott)</li>
    8175. 

  8175. 	<li>Added gethostname() to return the current system host name. (Ilia)</li>
    8176. 

  8176. 	<li>Added shm_has_var() function. (Mike)</li>
    8177. 

  8177. 	<li>Added depth parameter to json_decode() to lower the nesting depth from the
    8178. 

  8178.   maximum if required. (Scott)</li>
    8179. 

  8179. 	<li>Added pixelation support in imagefilter(). (Takeshi Abe, Kalle)</li>
    8180. 

  8180. 	<li>Added SplObjectStorage::addAll/removeAll. (Etienne)</li>
    8181. 

  8181. 

  8182. 	<li>Implemented FR <?php bugl(41712); ?> (curl progress callback: CURLOPT_PROGRESSFUNCTION).
    8183. 

  8183.   (sdteffen[at]gmail[dot].com, Pierre)</li>
    8184. 

  8184. 	<li>Implemented FR <?php bugl(47739); ?> (Missing cURL option do disable IPv6). (Pierre)</li>
    8185. 

  8185. 	<li>Implemented FR <?php bugl(39637); ?> (Missing cURL option CURLOPT_FTP_FILEMETHOD). (Pierre)</li>
    8186. 

  8186. 

  8187. 	<li>Fixed an issue with ReflectionProperty::setAccessible().
    8188. 

  8188.   (Sebastian, Roman Borschel)</li>
    8189. 

  8189. 	<li>Fixed html_entity_decode() incorrectly converting numeric html entities
    8190. 

  8190.   to different characters with cp1251 and cp866. (Scott)</li>
    8191. 

  8191. 	<li>Fixed an issue in date() where a : was printed for the O modifier after a P
    8192. 

  8192.   modifier was used. (Derick)</li>
    8193. 

  8193. 	<li>Fixed exec() on Windows to not eat the first and last double quotes. (Scott)</li>
    8194. 

  8194. 	<li>Fixed readlink on Windows in thread safe SAPI (apache2.x etc.). (Pierre)</li>
    8195. 

  8195. 	<li>Fixed a bug causing miscalculations with the "last &lt;weekday&gt; of &lt;n&gt; month"
    8196. 

  8196.   relative time string. (Derick)</li>
    8197. 

  8197. 	<li>Fixed bug causing the algorithm parameter of mhash() to be modified. (Scott)</li>
    8198. 

  8198. 	<li>Fixed invalid calls to free when internal fileinfo magic file is used. (Scott)</li>
    8199. 

  8199. 	<li>Fixed memory leak inside wddx_add_vars() function. (Felipe)</li>
    8200. 

  8200. 	<li>Fixed check in recode extension to allow builing of recode and mysql
    8201. 

  8201.   extensions when using a recent libmysql. (Johannes)</li>
    8202. 

  8202. 

  8203. 	<li><?php peclbugfix(12794); ?> (PDOStatement->nextRowset() doesn't work). (Johannes)</li>
    8204. 

  8204. 	<li><?php peclbugfix(12401); ?> (Add support for ATTR_FETCH_TABLE_NAMES). (Johannes)</li>
    8205. 

  8205. 

  8206. 	<li><?php bugfix(48696); ?> (ldap_read() segfaults with invalid parameters). (Felipe)</li>
    8207. 

  8207. 	<li><?php bugfix(48643); ?> (String functions memory issue). (Dmitry)</li>
    8208. 

  8208. 	<li><?php bugfix(48641); ?> (tmpfile() uses old parameter parsing).
    8209. 

  8209.   (crrodriguez at opensuse dot org)</li>
    8210. 

  8210. 	<li><?php bugfix(48624); ?> (.user.ini never gets parsed). (Pierre)</li>
    8211. 

  8211. 	<li><?php bugfix(48620); ?> (X-PHP-Originating-Script assumes no trailing CRLF in
    8212. 

  8212.   existing headers). (Ilia)</li>
    8213. 

  8213. 	<li><?php bugfix(48578); ?> (Can't build 5.3 on FBSD 4.11). (Rasmus)</li>
    8214. 

  8214. 	<li><?php bugfix(48535); ?> (file_exists returns false when impersonate is used).
    8215. 

  8215.   (Kanwaljeet Singla, Venkat Raman Don)</li>
    8216. 

  8216. 	<li><?php bugfix(48493); ?> (spl_autoload_register() doesn't work correctly when
    8217. 

  8217.   prepending functions). (Scott)</li>
    8218. 

  8218. 	<li><?php bugfix(48215); ?> (Calling a method with the same name as the parent class
    8219. 

  8219.   calls the constructor). (Scott)</li>
    8220. 

  8220. 	<li><?php bugfix(48200); ?> (compile failure with mbstring.c when
    8221. 

  8221.   --enable-zend-multibyte is used). (Jani)</li>
    8222. 

  8222. 	<li><?php bugfix(48188); ?> (Cannot execute a scrollable cursors twice with PDO_PGSQL).
    8223. 

  8223.   (Matteo)</li>
    8224. 

  8224. 	<li><?php bugfix(48185); ?> (warning: value computed is not used in
    8225. 

  8225.   pdo_sqlite_stmt_get_col line 271). (Matteo)</li>
    8226. 

  8226. 	<li><?php bugfix(48087); ?> (call_user_method() invalid free of arguments). (Felipe)</li>
    8227. 

  8227. 	<li><?php bugfix(48060); ?> (pdo_pgsql - large objects are returned as empty). (Matteo)</li>
    8228. 

  8228. 	<li><?php bugfix(48034); ?> (PHP crashes when script is 8192 (8KB) bytes long). (Dmitry)</li>
    8229. 

  8229. 	<li><?php bugfix(48004); ?> (Error handler prevents creation of default object). (Dmitry)</li>
    8230. 

  8230. 	<li><?php bugfix(47880); ?> (crashes in call_user_func_array()). (Dmitry)</li>
    8231. 

  8231. 	<li><?php bugfix(47856); ?> (stristr() converts needle to lower-case). (Ilia)</li>
    8232. 

  8232. 	<li><?php bugfix(47851); ?> (is_callable throws fatal error). (Dmitry)</li>
    8233. 

  8233. 	<li><?php bugfix(47816); ?> (pcntl tests failing on NetBSD). (Matteo)</li>
    8234. 

  8234. 	<li><?php bugfix(47779); ?> (Wrong value for SIG_UNBLOCK and SIG_SETMASK constants).
    8235. 

  8235.   (Matteo)</li>
    8236. 

  8236. 	<li><?php bugfix(47771); ?> (Exception during object construction from arg call calls
    8237. 

  8237.   object's destructor). (Dmitry)</li>
    8238. 

  8238. 	<li><?php bugfix(47767); ?> (include_once does not resolve windows symlinks or junctions)
    8239. 

  8239.   (Kanwaljeet Singla, Venkat Raman Don)</li>
    8240. 

  8240. 	<li><?php bugfix(47757); ?> (rename JPG to JPEG in phpinfo). (Pierre)</li>
    8241. 

  8241. 	<li><?php bugfix(47745); ?> (FILTER_VALIDATE_INT doesn't allow minimum integer). (Dmitry)</li>
    8242. 

  8242. 	<li><?php bugfix(47714); ?> (autoloading classes inside exception_handler leads to
    8243. 

  8243.   crashes). (Dmitry)</li>
    8244. 

  8244. 	<li><?php bugfix(47671); ?> (Cloning SplObjectStorage instances). (Etienne)</li>
    8245. 

  8245. 	<li><?php bugfix(47664); ?> (get_class returns NULL instead of FALSE). (Dmitry)</li>
    8246. 

  8246. 	<li><?php bugfix(47662); ?> (Support more than 127 subpatterns in preg_match). (Nuno)</li>
    8247. 

  8247. 	<li><?php bugfix(47596); ?> (Bus error on parsing file). (Dmitry)</li>
    8248. 

  8248. 	<li><?php bugfix(47572); ?> (Undefined constant causes segmentation fault). (Felipe)</li>
    8249. 

  8249. 	<li><?php bugfix(47560); ?> (explode()'s limit parameter odd behaviour). (Matt)</li>
    8250. 

  8250. 	<li><?php bugfix(47549); ?> (get_defined_constants() return array with broken array
    8251. 

  8251.   categories). (Ilia)</li>
    8252. 

  8252. 	<li><?php bugfix(47535); ?> (Compilation failure in ps_fetch_from_1_to_8_bytes()).
    8253. 

  8253.   (Johannes)</li>
    8254. 

  8254. 	<li><?php bugfix(47534); ?> (RecursiveDiteratoryIterator::getChildren ignoring
    8255. 

  8255.   CURRENT_AS_PATHNAME). (Etienne)</li>
    8256. 

  8256. 	<li><?php bugfix(47443); ?> (metaphone('scratch') returns wrong result). (Felipe)</li>
    8257. 

  8257. 	<li><?php bugfix(47438); ?> (mysql_fetch_field ignores zero offset). (Johannes)</li>
    8258. 

  8258. 	<li><?php bugfix(47398); ?> (PDO_Firebird doesn't implements quoter correctly). (Felipe)</li>
    8259. 

  8259. 	<li><?php bugfix(47390); ?> (odbc_fetch_into - BC in php 5.3.0). (Felipe)</li>
    8260. 

  8260. 	<li><?php bugfix(47359); ?> (Use the expected unofficial mimetype for bmp files). (Scott)</li>
    8261. 

  8261. 	<li><?php bugfix(47343); ?> (gc_collect_cycles causes a segfault when called within a
    8262. 

  8262.   destructor in one case). (Dmitry)</li>
    8263. 

  8263. 	<li><?php bugfix(47320); ?> ($php_errormsg out of scope in functions). (Dmitry)</li>
    8264. 

  8264. 	<li><?php bugfix(47318); ?> (UMR when trying to activate user config). (Pierre)</li>
    8265. 

  8265. 	<li><?php bugfix(47243); ?> (OCI8: Crash at shutdown on Windows) (Chris Jones/Oracle
    8266. 

  8266.   Corp.)</li>
    8267. 

  8267. 	<li><?php bugfix(47231); ?> (offsetGet error using incorrect offset). (Etienne)</li>
    8268. 

  8268. 	<li><?php bugfix(47229); ?> (preg_quote() should escape the '-' char). (Nuno)</li>
    8269. 

  8269. 	<li><?php bugfix(47165); ?> (Possible memory corruption when passing return value by
    8270. 

  8270.   reference). (Dmitry)</li>
    8271. 

  8271. 	<li><?php bugfix(47087); ?> (Second parameter of mssql_fetch_array()). (Felipe)</li>
    8272. 

  8272. 	<li><?php bugfix(47085); ?> (rename() returns true even if the file in PHAR does not
    8273. 

  8273.   exist). (Greg)</li>
    8274. 

  8274. 	<li><?php bugfix(47050); ?> (mysqli_poll() modifies improper variables). (Johannes)</li>
    8275. 

  8275. 	<li><?php bugfix(47045); ?> (SplObjectStorage instances compared with ==). (Etienne)</li>
    8276. 

  8276. 	<li><?php bugfix(47038); ?> (Memory leak in include). (Dmitry)</li>
    8277. 

  8277. 	<li><?php bugfix(47031); ?> (Fix constants in DualIterator example). (Etienne)</li>
    8278. 

  8278. 	<li><?php bugfix(47021); ?> (SoapClient stumbles over WSDL delivered with
    8279. 

  8279.   "Transfer-Encoding: chunked"). (Dmitry)</li>
    8280. 

  8280. 	<li><?php bugfix(46994); ?> (OCI8: CLOB size does not update when using CLOB IN OUT param
    8281. 

  8281.   in stored procedure) (Chris Jones/Oracle Corp.)</li>
    8282. 

  8282. 	<li><?php bugfix(46979); ?> (use with non-compound name *has* effect). (Dmitry)</li>
    8283. 

  8283. 	<li><?php bugfix(46957); ?> (The tokenizer returns deprecated values). (Felipe)</li>
    8284. 

  8284. 	<li><?php bugfix(46944); ?> (UTF-8 characters outside the BMP aren't encoded correctly).
    8285. 

  8285.   (Scott)</li>
    8286. 

  8286. 	<li><?php bugfix(46897); ?> (ob_flush() should fail to flush unerasable buffers).
    8287. 

  8287.   (David C.)</li>
    8288. 

  8288. 	<li><?php bugfix(46849); ?> (Cloning DOMDocument doesn't clone the properties). (Rob)</li>
    8289. 

  8289. 	<li><?php bugfix(46847); ?> (phpinfo() is missing some settings). (Hannes)</li>
    8290. 

  8290. 	<li><?php bugfix(46844); ?> (php scripts or included files with first line starting
    8291. 

  8291.   with # have the 1st line missed from the output). (Ilia)</li>
    8292. 

  8292. 	<li><?php bugfix(46817); ?> (tokenizer misses last single-line comment (PHP 5.3+, with
    8293. 

  8293.   re2c lexer)). (Matt, Shire)</li>
    8294. 

  8294. 	<li><?php bugfix(46811); ?> (ini_set() doesn't return false on failure). (Hannes)</li>
    8295. 

  8295. 	<li><?php bugfix(46763); ?> (mb_stristr() wrong output when needle does not exist).
    8296. 

  8296.   (Henrique M. Decaria)</li>
    8297. 

  8297. 	<li><?php bugfix(46755); ?> (warning: use statement with non-compound name). (Dmitry)</li>
    8298. 

  8298. 	<li><?php bugfix(46746); ?> (xmlrpc_decode_request outputs non-suppressable error when
    8299. 

  8299.   given bad data). (Ilia)</li>
    8300. 

  8300. 	<li><?php bugfix(46738); ?> (Segfault when mb_detect_encoding() fails). (Scott)</li>
    8301. 

  8301. 	<li><?php bugfix(46731); ?> (Missing validation for the options parameter of the
    8302. 

  8302.   imap_fetch_overview() function). (Ilia)</li>
    8303. 

  8303. 	<li><?php bugfix(46711); ?> (cURL curl_setopt leaks memory in foreach loops). (magicaltux
    8304. 

  8304.   [at] php [dot] net)</li>
    8305. 

  8305. 	<li><?php bugfix(46701); ?> (Creating associative array with long values in the key fails
    8306. 

  8306.   on 32bit linux). (Shire)</li>
    8307. 

  8307. 	<li><?php bugfix(46681); ?> (mkdir() fails silently on PHP 5.3). (Hannes)</li>
    8308. 

  8308. 	<li><?php bugfix(46653); ?> (can't extend mysqli). (Johannes)</li>
    8309. 

  8309. 	<li><?php bugfix(46646); ?> (Restrict serialization on some internal classes like Closure
    8310. 

  8310.   and SplFileInfo using exceptions). (Etienne)</li>
    8311. 

  8311. 	<li><?php bugfix(46623); ?> (OCI8: phpinfo doesn't show compile time ORACLE_HOME with
    8312. 

  8312.   phpize) (Chris Jones/Oracle Corp.)</li>
    8313. 

  8313. 	<li><?php bugfix(46578); ?> (strip_tags() does not honor end-of-comment when it
    8314. 

  8314.   encounters a single quote). (Felipe)</li>
    8315. 

  8315. 	<li><?php bugfix(46546); ?> (Segmentation fault when using declare statement with
    8316. 

  8316.   non-string value). (Felipe)</li>
    8317. 

  8317. 	<li><?php bugfix(46542); ?> (Extending PDO class with a __call() function doesn't work as
    8318. 

  8318.   expected). (Johannes)</li>
    8319. 

  8319. 	<li><?php bugfix(46421); ?> (SplFileInfo not correctly handling /). (Etienne)</li>
    8320. 

  8320. 	<li><?php bugfix(46347); ?> (parse_ini_file() doesn't support * in keys). (Nuno)</li>
    8321. 

  8321. 	<li><?php bugfix(46268); ?> (DateTime::modify() does not reset relative time values).
    8322. 

  8322.   (Derick)</li>
    8323. 

  8323. 	<li><?php bugfix(46241); ?> (stacked error handlers, internal error handling in general).
    8324. 

  8324.   (Etienne)</li>
    8325. 

  8325. 	<li><?php bugfix(46238); ?> (Segmentation fault on static call with empty string method).
    8326. 

  8326.   (Felipe)</li>
    8327. 

  8327. 	<li><?php bugfix(46192); ?> (ArrayObject with objects as storage serialization).
    8328. 

  8328.   (Etienne)</li>
    8329. 

  8329. 	<li><?php bugfix(46185); ?> (importNode changes the namespace of an XML element). (Rob)</li>
    8330. 

  8330. 	<li><?php bugfix(46178); ?> (memory leak in ext/phar). (Greg)</li>
    8331. 

  8331. 	<li><?php bugfix(46160); ?> (SPL - Memory leak when exception is thrown in offsetSet).
    8332. 

  8332.   (Felipe)</li>
    8333. 

  8333. 	<li><?php bugfix(46147); ?> (after stream seek, appending stream filter reads incorrect
    8334. 

  8334.   data). (Greg)</li>
    8335. 

  8335. 	<li><?php bugfix(46127); ?> (php_openssl_tcp_sockop_accept forgets to set context on
    8336. 

  8336.   accepted stream) (Mark Karpeles, Pierre)</li>
    8337. 

  8337. 	<li><?php bugfix(46115); ?> (Memory leak when calling a method using Reflection).
    8338. 

  8338.   (Dmitry)</li>
    8339. 

  8339. 	<li><?php bugfix(46110); ?> (XMLWriter - openmemory() and openuri() leak memory on
    8340. 

  8340.   multiple calls). (Ilia)</li>
    8341. 

  8341. 	<li><?php bugfix(46108); ?> (DateTime - Memory leak when unserializing). (Felipe)</li>
    8342. 

  8342. 	<li><?php bugfix(46106); ?> (Memory leaks when using global statement). (Dmitry)</li>
    8343. 

  8343. 	<li><?php bugfix(46099); ?> (Xsltprocessor::setProfiling - memory leak). (Felipe, Rob).</li>
    8344. 

  8344. 	<li><?php bugfix(46087); ?> (DOMXPath - segfault on destruction of a cloned object).
    8345. 

  8345.   (Ilia)</li>
    8346. 

  8346. 	<li><?php bugfix(46048); ?> (SimpleXML top-level @attributes not part of iterator).
    8347. 

  8347.   (David C.)</li>
    8348. 

  8348. 	<li><?php bugfix(46044); ?> (Mysqli - wrong error message). (Johannes)</li>
    8349. 

  8349. 	<li><?php bugfix(46042); ?> (memory leaks with reflection of mb_convert_encoding()).
    8350. 

  8350.   (Ilia)</li>
    8351. 

  8351. 	<li><?php bugfix(46039); ?> (ArrayObject iteration is slow). (Arnaud)</li>
    8352. 

  8352. 	<li><?php bugfix(46033); ?> (Direct instantiation of SQLite3stmt and SQLite3result cause
    8353. 

  8353.   a segfault.) (Scott)</li>
    8354. 

  8354. 	<li><?php bugfix(45991); ?> (Ini files with the UTF-8 BOM are treated as invalid).
    8355. 

  8355.   (Scott)</li>
    8356. 

  8356. 	<li><?php bugfix(45989); ?> (json_decode() doesn't return NULL on certain invalid
    8357. 

  8357.   strings). (magicaltux, Scott)</li>
    8358. 

  8358. 	<li><?php bugfix(45976); ?> (Moved SXE from SPL to SimpleXML). (Etienne)</li>
    8359. 

  8359. 	<li><?php bugfix(45928); ?> (large scripts from stdin are stripped at 16K border).
    8360. 

  8360.   (Christian Schneider, Arnaud)</li>
    8361. 

  8361. 	<li><?php bugfix(45911); ?> (Cannot disable ext/hash). (Arnaud)</li>
    8362. 

  8362. 	<li><?php bugfix(45907); ?> (undefined reference to 'PHP_SHA512Init'). (Greg)</li>
    8363. 

  8363. 	<li><?php bugfix(45826); ?> (custom ArrayObject serialization). (Etienne)</li>
    8364. 

  8364. 	<li><?php bugfix(45820); ?> (Allow empty keys in ArrayObject). (Etienne)</li>
    8365. 

  8365. 	<li><?php bugfix(45791); ?> (json_decode() doesn't convert 0e0 to a double). (Scott)</li>
    8366. 

  8366. 	<li><?php bugfix(45786); ?> (FastCGI process exited unexpectedly). (Dmitry)</li>
    8367. 

  8367. 	<li><?php bugfix(45757); ?> (FreeBSD4.11 build failure: failed include; stdint.h).
    8368. 

  8368.   (Hannes)</li>
    8369. 

  8369. 	<li><?php bugfix(45743); ?> (property_exists fails to find static protected member in
    8370. 

  8370.   child class). (Felipe)</li>
    8371. 

  8371. 	<li><?php bugfix(45717); ?> (Fileinfo/libmagic build fails, missing err.h and getopt.h).
    8372. 

  8372.   (Derick)</li>
    8373. 

  8373. 	<li><?php bugfix(45706); ?> (Unserialization of classes derived from ArrayIterator
    8374. 

  8374.   fails). (Etienne, Dmitry)</li>
    8375. 

  8375. 	<li><?php bugfix(45696); ?> (Not all DateTime methods allow method chaining). (Derick)</li>
    8376. 

  8376. 	<li><?php bugfix(45682); ?> (Unable to var_dump(DateInterval)). (Derick)</li>
    8377. 

  8377. 	<li><?php bugfix(45447); ?> (Filesystem time functions on Vista and server 2008).
    8378. 

  8378.   (Pierre)</li>
    8379. 

  8379. 	<li><?php bugfix(45432); ?> (PDO: persistent connection leak). (Felipe)</li>
    8380. 

  8380. 	<li><?php bugfix(45392); ?> (ob_start()/ob_end_clean() and memory_limit). (Ilia)</li>
    8381. 

  8381. 	<li><?php bugfix(45384); ?> (parse_ini_file will result in parse error with no trailing
    8382. 

  8382.   newline). (Arnaud)</li>
    8383. 

  8383. 	<li><?php bugfix(45382); ?> (timeout bug in stream_socket_enable_crypto). (vnegrier at
    8384. 

  8384.   optilian dot com, Ilia)</li>
    8385. 

  8385. 	<li><?php bugfix(45044); ?> (relative paths not resolved correctly). (Dmitry)</li>
    8386. 

  8386. 	<li><?php bugfix(44861); ?> (scrollable cursor don't work with pgsql). (Matteo)</li>
    8387. 

  8387. 	<li><?php bugfix(44842); ?> (parse_ini_file keys that start/end with underscore).
    8388. 

  8388.   (Arnaud)</li>
    8389. 

  8389. 	<li><?php bugfix(44575); ?> (parse_ini_file comment # line problems). (Arnaud)</li>
    8390. 

  8390. 	<li><?php bugfix(44409); ?> (PDO::FETCH_SERIALIZE calls __construct()). (Matteo)</li>
    8391. 

  8391. 	<li><?php bugfix(44173); ?> (PDO->query() parameter parsing/checking needs an update).
    8392. 

  8392.   (Matteo)</li>
    8393. 

  8393. 	<li><?php bugfix(44154); ?> (pdo->errorInfo() always have three elements in the returned
    8394. 

  8394.   array). (David C.)</li>
    8395. 

  8395. 	<li><?php bugfix(44153); ?> (pdo->errorCode() returns NULL when there are no errors).
    8396. 

  8396.   (David C.)</li>
    8397. 

  8397. 	<li><?php bugfix(44135); ?> (PDO MySQL does not support CLIENT_FOUND_ROWS). (Johannes,
    8398. 

  8398.   chx1975 at gmail dot com)</li>
    8399. 

  8399. 	<li><?php bugfix(44100); ?> (Inconsistent handling of static array declarations with
    8400. 

  8400.   duplicate keys). (Dmitry)</li>
    8401. 

  8401. 	<li><?php bugfix(43831); ?> ($this gets mangled when extending PDO with persistent
    8402. 

  8402.   connection). (Felipe)</li>
    8403. 

  8403. 	<li><?php bugfix(43817); ?> (opendir() fails on Windows directories with parent directory
    8404. 

  8404.   unaccessible). (Dmitry)</li>
    8405. 

  8405. 	<li><?php bugfix(43069); ?> (SoapClient causes 505 HTTP Version not supported error
    8406. 

  8406.   message). (Dmitry)</li>
    8407. 

  8407. 	<li><?php bugfix(43008); ?> (php://filter uris ignore url encoded filternames and can't
    8408. 

  8408.   handle slashes). (Arnaud)</li>
    8409. 

  8409. 	<li><?php bugfix(42362); ?> (HTTP status codes 204 and 304 should not be gzipped).
    8410. 

  8410.   (Scott, Edward Z. Yang)</li>
    8411. 

  8411. 	<li><?php bugfix(41874); ?> (separate STDOUT and STDERR in exec functions). (Kanwaljeet
    8412. 

  8412.   Singla, Venkat Raman Don, Pierre)</li>
    8413. 

  8413. 	<li><?php bugfix(41534); ?> (SoapClient over HTTPS fails to reestablish connection).
    8414. 

  8414.   (Dmitry)</li>
    8415. 

  8415. 	<li><?php bugfix(38802); ?> (max_redirects and ignore_errors). (patch by
    8416. 

  8416.   datibbaw@php.net)</li>
    8417. 

  8417. 	<li><?php bugfix(35980); ?> (touch() works on files but not on directories). (Pierre)</li>
    8418. 

  8418. 

  8419. </ul>
    8420. 

  8420. 

  8421. <!-- }}} --></section>
    8422. 

  8422. 

  8423. <section class="version" id="5.2.12"><!-- {{{ 5.2.12 -->
    8424. 

  8424. <h3>Version 5.2.12</h3>
    8425. 

  8425. <?php release_date('17-Dec-2009'); ?>
    8426. 

  8426. <ul>
    8427. 

  8427. <li>Security Fixes
    8428. 

  8428. 	<ul>
    8429. 

  8429. 		<li>Fixed a safe_mode bypass in tempnam() identified by Grzegorz Stachowiak. (Rasmus)</li>
    8430. 

  8430. 		<li>Fixed a open_basedir bypass in posix_mkfifo() identified by Grzegorz Stachowiak. (Rasmus)</li>
    8431. 

  8431. 		<li>Added "max_file_uploads" INI directive, which can be set to limit the number of file uploads per-request to 20 by default, to prevent possible DOS via temporary file exhaustion. (Ilia)</li>
    8432. 

  8432. 		<li>Added protection for $_SESSION from interrupt corruption and improved "session.save_path" check, identified by Stefan Esser. (Stas)</li>
    8433. 

  8433. 		<li><?php bugfix(49785); ?> (insufficient input string validation of htmlspecialchars()). (Moriyoshi, hello at iwamot dot com)</li>
    8434. 

  8434. 	</ul>
    8435. 

  8435. </li>
    8436. 

  8436. 

  8437. <li>Updated timezone database to version 2009.19 (2009s). (Derick)</li>
    8438. 

  8438. 

  8439. <li>Added LIBXML_PARSEHUGE constant to overrides the maximum text size of a single text node when using libxml2.7.3+. (Kalle)</li>
    8440. 

  8440. 

  8441. <li>Changed "post_max_size" php.ini directive to allow unlimited post size by setting it to 0. (Rasmus)</li>
    8442. 

  8442. 

  8443. <li>Fixed error_log() to be binary safe when using message_type 3. (Jani)</li>
    8444. 

  8444. <li>Fixed unnecessary invocation of setitimer when timeouts have been disabled. (Arvind Srinivasan)</li>
    8445. 

  8445. <li>Fixed crash in com_print_typeinfo when an invalid typelib is given. (Pierre)</li>
    8446. 

  8446. <li>Fixed crash in SQLiteDatabase::ArrayQuery() and SQLiteDatabase::SingleQuery() when calling using Reflection. (Felipe)</li>
    8447. 

  8447. <li>Fixed crash when instantiating PDORow and PDOStatement through Reflection. (Felipe)</li>
    8448. 

  8448. <li>Fixed memory leak in openssl_pkcs12_export_to_file(). (Felipe)</li>
    8449. 

  8449. 

  8450. <li><?php bugfix(50445); ?> (PDO-ODBC stored procedure call from Solaris 64-bit causes seg fault). (davbrown4 at yahoo dot com, Felipe)</li>
    8451. 

  8451. <li><?php bugfix(50345); ?> (nanosleep not detected properly on some solaris versions). (Jani)</li>
    8452. 

  8452. <li><?php bugfix(50323); ?> (Allow use of ; in values via ;; in PDO DSN). (Ilia, Pierrick)</li>
    8453. 

  8453. <li><?php bugfix(50285); ?> (xmlrpc does not preserve keys in encoded indexed arrays). (Felipe)</li>
    8454. 

  8454. <li><?php bugfix(50282); ?> (xmlrpc_encode_request() changes object into array in calling function). (Felipe)</li>
    8455. 

  8455. <li><?php bugfix(50266); ?> (conflicting types for llabs). (Jani)</li>
    8456. 

  8456. <li><?php bugfix(50255); ?> (isset() and empty() silently casts array to object). (Felipe)</li>
    8457. 

  8457. <li><?php bugfix(50219); ?> (soap call Segmentation fault on a redirected url). (Pierrick)</li>
    8458. 

  8458. <li><?php bugfix(50209); ?> (Compiling with libedit cannot find readline.h). (tcallawa at redhat dot com)</li>
    8459. 

  8459. <li><?php bugfix(50207); ?> (segmentation fault when concatenating very large strings on 64bit linux). (Ilia)</li>
    8460. 

  8460. <li><?php bugfix(50195); ?> (pg_copy_to() fails when table name contains schema. (Ilia)</li>
    8461. 

  8461. <li><?php bugfix(50185); ?> (ldap_get_entries() return false instead of an empty array when there is no error). (Jani)</li>
    8462. 

  8462. <li><?php bugfix(50174); ?> (Incorrectly matched docComment). (Felipe)</li>
    8463. 

  8463. <li><?php bugfix(50168); ?> (FastCGI fails with wrong error on HEAD request to non-existent file). (Dmitry)</li>
    8464. 

  8464. <li><?php bugfix(50162); ?> (Memory leak when fetching timestamp column from Oracle database). (Felipe)</li>
    8465. 

  8465. <li><?php bugfix(50158); ?> (FILTER_VALIDATE_EMAIL fails with valid addresses containing = or ?). (Pierrick)</li>
    8466. 

  8466. <li><?php bugfix(50073); ?> (parse_url() incorrect when ? in fragment). (Ilia)</li>
    8467. 

  8467. <li><?php bugfix(50006); ?> (Segfault caused by uksort()). (Felipe)</li>
    8468. 

  8468. <li><?php bugfix(50005); ?> (Throwing through Reflection modified Exception object makes segmentation fault). (Felipe)</li>
    8469. 

  8469. <li><?php bugfix(49990); ?> (SNMP3 warning message about security level printed twice). (Jani)</li>
    8470. 

  8470. <li><?php bugfix(49985); ?> (pdo_pgsql prepare() re-use previous aborted transaction). (ben dot pineau at gmail dot com, Ilia, Matteo)</li>
    8471. 

  8471. <li><?php bugfix(49972); ?> (AppendIterator undefined function crash). (Johannes)</li>
    8472. 

  8472. <li><?php bugfix(49921); ?> (Curl post upload functions changed). (Ilia)</li>
    8473. 

  8473. <li><?php bugfix(49855); ?> (import_request_variables() always returns NULL). (Ilia, sjoerd at php dot net)</li>
    8474. 

  8474. <li><?php bugfix(49847); ?> (exec() fails to return data inside 2nd parameter, given output lines &gt;4095 bytes). (Ilia)</li>
    8475. 

  8475. <li><?php bugfix(49809); ?> (time_sleep_until() is not available on OpenSolaris). (Jani)</li>
    8476. 

  8476. <li><?php bugfix(49757); ?> (long2ip() can return wrong value in a multi-threaded applications). (Ilia, Florian Anderiasch)</li>
    8477. 

  8477. <li><?php bugfix(49738); ?> (calling mcrypt() after mcrypt_generic_deinit() crashes). (Sriram Natarajan)</li>
    8478. 

  8478. <li><?php bugfix(49719); ?> (ReflectionClass::hasProperty returns true for a private property in base class). (Felipe)</li>
    8479. 

  8479. <li><?php bugfix(49698); ?> (Unexpected change in strnatcasecmp()). (Rasmus)</li>
    8480. 

  8480. <li><?php bugfix(49677); ?> (ini parser crashes with apache2 and using ${something} ini variables). (Jani)</li>
    8481. 

  8481. <li><?php bugfix(49660); ?> (libxml 2.7.3+ limits text nodes to 10MB). (Felipe)</li>
    8482. 

  8482. <li><?php bugfix(49647); ?> (DOMUserData does not exist). (Rob)</li>
    8483. 

  8483. <li><?php bugfix(49630); ?> (imap_listscan() function missing). (Felipe)</li>
    8484. 

  8484. <li><?php bugfix(49627); ?> (error_log to specified file does not log time according to date.timezone). (Dmitry)</li>
    8485. 

  8485. <li><?php bugfix(49578); ?> (make install-pear fails). (Hannes)</li>
    8486. 

  8486. <li><?php bugfix(49536); ?> (mb_detect_encoding() returns incorrect results when mbstring.strict_mode is turned on). (Moriyoshi)</li>
    8487. 

  8487. <li><?php bugfix(49531); ?> (CURLOPT_INFILESIZE sometimes causes warning "CURLPROTO_FILE cannot be set"). (Felipe)</li>
    8488. 

  8488. <li><?php bugfix(49528); ?> (UTF-16 strings prefixed by BOMs wrongly converted). (Moriyoshi)</li>
    8489. 

  8489. <li><?php bugfix(49521); ?> (PDO fetchObject sets values before calling constructor). (Pierrick)</li>
    8490. 

  8490. <li><?php bugfix(49517); ?> (cURL's CURLOPT_FILE prevents file from being deleted after fclose()). (Ilia)</li>
    8491. 

  8491. <li><?php bugfix(49472); ?> (Constants defined in Interfaces can be overridden). (Felipe)</li>
    8492. 

  8492. <li><?php bugfix(49354); ?> (mb_strcut() cuts wrong length when offset is in the middle of a multibyte character). (Moriyoshi)</li>
    8493. 

  8493. <li><?php bugfix(49332); ?> (Build error with Snow Leopard). (Scott)</li>
    8494. 

  8494. <li><?php bugfix(49244); ?> (Floating point NaN cause garbage characters). (Sjoerd)</li>
    8495. 

  8495. <li><?php bugfix(49174); ?> (crash when extending PDOStatement and trying to set queryString property). (Felipe)</li>
    8496. 

  8496. <li><?php bugfix(49098); ?> (mysqli segfault on error). (Rasmus)</li>
    8497. 

  8497. <li><?php bugfix(48805); ?> (IPv6 socket transport is not working). (Ilia)</li>
    8498. 

  8498. <li><?php bugfix(48764); ?> (PDO_pgsql::query() always uses implicit prepared statements if v3 proto available). (Matteo, Mark Kirkwood)</li>
    8499. 

  8499. <li><?php bugfix(47848); ?> (importNode doesn't preserve attribute namespaces). (Rob)</li>
    8500. 

  8500. <li><?php bugfix(45120); ?> (PDOStatement-&gt;execute() returns true then false for same statement). (Pierrick)</li>
    8501. 

  8501. <li><?php bugfix(34852); ?> (Failure in odbc_exec() using oracle-supplied odbc driver). (tim dot tassonis at trivadis dot com)</li>
    8502. 

  8502. 

  8503. </ul>
    8504. 

  8504. <!-- }}} --></section>
    8505. 

  8505. 

  8506. <section class="version" id="5.2.11"><!-- {{{ 5.2.11 -->
    8507. 

  8507. <h3>Version 5.2.11</h3>
    8508. 

  8508. <?php release_date('16-Sep-2009'); ?>
    8509. 

  8509. <ul>
    8510. 

  8510. <li>Security Fixes
    8511. 

  8511. 	<ul>
    8512. 

  8512. 		<li>Fixed certificate validation inside php_openssl_apply_verification_policy. (Ryan Sleevi, Ilia)</li>
    8513. 

  8513. 		<li>Added missing sanity checks around exif processing. (Ilia)</li>
    8514. 

  8514. 		<li>Fixed sanity check for the color index in imagecolortransparent. (Pierre)</li>
    8515. 

  8515. 		<li><?php bugfix(44683); ?> (popen crashes when an invalid mode is passed). (Pierre)</li>
    8516. 

  8516. 	</ul>
    8517. 

  8517. </li>
    8518. 

  8518. 

  8519. <li>Updated timezone database to version 2009.13 (2009m) (Derick)</li>
    8520. 

  8520. <li>Fixed zlib.deflate compress filter to actually accept level parameter. (Jani)</li>
    8521. 

  8521. <li>Fixed leak on error in popen/exec (and related functions) on Windows. (Pierre)</li>
    8522. 

  8522. <li>Fixed regression in cURL extension that prevented flush of data to output defined as a file handle. (Ilia)</li>
    8523. 

  8523. <li>Fixed memory leak in stream_is_local(). (Felipe, Tony)</li>
    8524. 

  8524. 

  8525. <li><?php bugfix(49470); ?> (FILTER_SANITIZE_EMAIL allows disallowed characters). (Ilia)</li>
    8526. 

  8526. <li><?php bugfix(49447); ?> (php engine needs to correctly check for socket API return status on windows). (Sriram Natarajan)</li>
    8527. 

  8527. <li><?php bugfix(49372); ?> (segfault in php_curl_option_curl). (Pierre)</li>
    8528. 

  8528. <li><?php bugfix(49361); ?> (wordwrap() wraps incorrectly on end of line boundaries). (Ilia, code-it at mail dot ru)</li>
    8529. 

  8529. <li><?php bugfix(49289); ?> (bcmath module doesn't compile with phpize configure). (Jani)</li>
    8530. 

  8530. <li><?php bugfix(49286); ?> (php://input (php_stream_input_read) is broken). (Jani)</li>
    8531. 

  8531. <li><?php bugfix(49269); ?> (Ternary operator fails on Iterator object when used inside foreach declaration). (Etienne, Dmitry)</li>
    8532. 

  8532. <li><?php bugfix(49236); ?> (Missing PHP_SUBST(PDO_MYSQL_SHARED_LIBADD)). (Jani)</li>
    8533. 

  8533. <li><?php bugfix(49144); ?> (Import of schema from different host transmits original authentication details). (Dmitry)</li>
    8534. 

  8534. <li><?php bugfix(49132); ?> (posix_times returns false without error). (phpbugs at gunnu dot us)</li>
    8535. 

  8535. <li><?php bugfix(49125); ?> (Error in dba_exists C code). (jdornan at stanford dot edu)</li>
    8536. 

  8536. <li><?php bugfix(49095); ?> (proc_get_status['exitcode'] fails on win32). (Felipe)</li>
    8537. 

  8537. <li><?php bugfix(49074); ?> (private class static fields can be modified by using reflection). (Jani)</li>
    8538. 

  8538. <li><?php bugfix(49072); ?> (feof never returns true for damaged file in zip). (Pierre)</li>
    8539. 

  8539. <li><?php bugfix(49052); ?> (context option headers freed too early when using --with-curlwrappers). (Jani)</li>
    8540. 

  8540. <li><?php bugfix(49032); ?> (SplFileObject::fscanf() variables passed by reference). (Jani)</li>
    8541. 

  8541. <li><?php bugfix(49026); ?> (proc_open() can bypass safe_mode_protected_env_vars restrictions). (Ilia)</li>
    8542. 

  8542. <li><?php bugfix(49000); ?> (PHP CLI in Interactive mode (php -a) crashes when including files from function). (Stas)</li>
    8543. 

  8543. <li><?php bugfix(48994); ?> (zlib.output_compression does not output HTTP headers when set to a string value). (Jani)</li>
    8544. 

  8544. <li><?php bugfix(48980); ?> (Crash when compiling with pdo_firebird). (Felipe)</li>
    8545. 

  8545. <li><?php bugfix(48962); ?> (cURL does not upload files with specified filename). (Ilia)</li>
    8546. 

  8546. <li><?php bugfix(48929); ?> (Double \r\n after HTTP headers when &quot;header&quot; context option is an array). (David Zülke)</li>
    8547. 

  8547. <li><?php bugfix(48913); ?> (Too long error code strings in pdo_odbc driver). (naf at altlinux dot ru, Felipe)</li>
    8548. 

  8548. <li><?php bugfix(48802); ?> (printf() returns incorrect outputted length). (Jani)</li>
    8549. 

  8549. <li><?php bugfix(48801); ?> (Problem with imagettfbbox). (Takeshi Abe)</li>
    8550. 

  8550. <li><?php bugfix(48788); ?> (RecursiveDirectoryIterator doesn't descend into symlinked directories). (Ilia)</li>
    8551. 

  8551. <li><?php bugfix(48774); ?> (SIGSEGVs when using curl_copy_handle()). (Sriram Natarajan)</li>
    8552. 

  8552. <li><?php bugfix(48763); ?> (ZipArchive produces corrupt archive). (dani dot church at gmail dot com, Pierre)</li>
    8553. 

  8553. <li><?php bugfix(48762); ?> (IPv6 address filter still rejects valid address). (Felipe)</li>
    8554. 

  8554. <li><?php bugfix(48733); ?> (CURLOPT_WRITEHEADER|CURLOPT_FILE|CURLOPT_STDERR warns on files that have been opened with r+). (Ilia)</li>
    8555. 

  8555. <li><?php bugfix(48732); ?> (TTF Bounding box wrong for letters below baseline). (Takeshi Abe)</li>
    8556. 

  8556. <li><?php bugfix(48718); ?> (FILTER_VALIDATE_EMAIL does not allow numbers in domain components). (Ilia)</li>
    8557. 

  8557. <li><?php bugfix(48709); ?> (metaphone and 'wh'). (brettz9 at yahoo dot com, Felipe)</li>
    8558. 

  8558. <li><?php bugfix(48697); ?> (mb_internal_encoding() value gets reset by parse_str()). (Moriyoshi)</li>
    8559. 

  8559. <li><?php bugfix(48696); ?> (ldap_read() segfaults with invalid parameters). (Felipe)</li>
    8560. 

  8560. <li><?php bugfix(48693); ?> (Double declaration of __lambda_func when lambda wrongly formatted). (peter at lvp-media dot com, Felipe)</li>
    8561. 

  8561. <li><?php bugfix(48661); ?> (phpize is broken with non-bash shells). (Jani)</li>
    8562. 

  8562. <li><?php bugfix(48645); ?> (mb_convert_encoding() doesn't understand hexadecimal html-entities). (Moriyoshi)</li>
    8563. 

  8563. <li><?php bugfix(48637); ?> (&quot;file&quot; fopen wrapper is overwritten when using --with-curlwrappers). (Jani)</li>
    8564. 

  8564. <li><?php bugfix(48636); ?> (Error compiling of ext/date on netware). (guenter at php.net, Ilia)</li>
    8565. 

  8565. <li><?php bugfix(48629); ?> (get_defined_constants() ignores categorize parameter). (Felipe)</li>
    8566. 

  8566. <li><?php bugfix(48619); ?> (imap_search ALL segfaults). (Pierre)</li>
    8567. 

  8567. <li><?php bugfix(48608); ?> (Invalid libreadline version not detected during configure). (Jani)</li>
    8568. 

  8568. <li><?php bugfix(48555); ?> (ImageFTBBox() differs from previous versions for texts with new lines) (Takeshi Abe)</li>
    8569. 

  8569. <li><?php bugfix(48539); ?> (pdo_dblib fails to connect, throws empty PDOException &quot;SQLSTATE[] (null)&quot;). (Felipe)</li>
    8570. 

  8570. <li><?php bugfix(48465); ?> (sys_get_temp_dir() possibly inconsistent when using TMPDIR). (Ilia)</li>
    8571. 

  8571. <li><?php bugfix(48450); ?> (Compile failure under IRIX 6.5.30 building gd.c). (Kalle)</li>
    8572. 

  8572. <li><?php bugfix(48400); ?> (imap crashes when closing stream opened with OP_PROTOTYPE flag). (Jani)</li>
    8573. 

  8573. <li><?php bugfix(48284); ?> (hash &quot;adler32&quot; byte order is reversed). (Scott)</li>
    8574. 

  8574. <li><?php bugfix(48276); ?> (date(&quot;Y&quot;) on big endian machines produces the wrong result). (Scott)</li>
    8575. 

  8575. <li><?php bugfix(48247); ?> (Infinite loop and possible crash during startup with errors when errors are logged). (Jani)</li>
    8576. 

  8576. <li><?php bugfix(48182); ?> (ssl handshake fails during asynchronous socket connection). (Sriram Natarajan)</li>
    8577. 

  8577. <li><?php bugfix(48116); ?> (Fixed build with Openssl 1.0). (Pierre, Al dot Smith at aeschi dot ch dot eu dot org)</li>
    8578. 

  8578. <li><?php bugfix(48060); ?> (pdo_pgsql - large objects are returned as empty). (Matteo)</li>
    8579. 

  8579. <li><?php bugfix(48057); ?> (Only the date fields of the first row are fetched, others are empty). (info at programmiernutte dot net)</li>
    8580. 

  8580. <li><?php bugfix(47481); ?> (natcasesort() does not sort extended ASCII characters correctly). (Herman Radtke)</li>
    8581. 

  8581. <li><?php bugfix(47351); ?> (Memory leak in DateTime). (Derick, Tobias John)</li>
    8582. 

  8582. <li><?php bugfix(47273); ?> (Encoding bug in SoapServer->fault). (Dmitry)</li>
    8583. 

  8583. <li><?php bugfix(46020); ?> (with Sun Java System Web Server 7.0 on HPUX, #define HPUX). (Uwe Schindler)</li>
    8584. 

  8584. <li><?php bugfix(45905); ?> (imagefilledrectangle() clipping error). (markril at hotmail dot com, Pierre)</li>
    8585. 

  8585. <li><?php bugfix(45280); ?> (Reflection of instantiated COM classes causes PHP to crash) (Paul Richards, Kalle)</li>
    8586. 

  8586. <li><?php bugfix(45141); ?> (setcookie will output expires years of &gt;4 digits). (Ilia)</li>
    8587. 

  8587. <li><?php bugfix(44144); ?> (spl_autoload_functions() should return object instance when appropriate). (Hannes, Etienne)</li>
    8588. 

  8588. <li><?php bugfix(43510); ?> (stream_get_meta_data() does not return same mode as used in fopen). (Jani)</li>
    8589. 

  8589. <li><?php bugfix(42434); ?> (ImageLine w/ antialias = 1px shorter). (wojjie at gmail dot com, Kalle)</li>
    8590. 

  8590. <li><?php bugfix(28038); ?> (Sent incorrect RCPT TO commands to SMTP server) (Garrett)</li>
    8591. 

  8591. 	
    8592. 

  8592. </ul>
    8593. 

  8593. 

  8594. <!-- }}} --></section>
    8595. 

  8595. 

  8596. <section class="version" id="5.2.10"><!-- {{{ 5.2.10 -->
    8597. 

  8597. <h3>Version 5.2.10</h3>
    8598. 

  8598. <?php release_date('18-Jun-2009'); ?>
    8599. 

  8599. <ul>
    8600. 

  8600. 	<li>Security Fixes
    8601. 

  8601. 		<ul>
    8602. 

  8602. 			<li><?php bugfix(48378); ?> (exif_read_data() segfaults on certain corrupted .jpeg files). (Pierre)</li>
    8603. 

  8603. 		</ul>
    8604. 

  8604. 	</li>
    8605. 

  8605. 

  8606. 	<li>Updated timezone database to version 2009.9 (2009i) (Derick)</li>
    8607. 

  8607. 

  8608. 	<li>Added "ignore_errors" option to http fopen wrapper. (David Zulke, Sara)</li>
    8609. 

  8609. 	<li>Added new CURL options CURLOPT_REDIR_PROTOCOLS, CURLOPT_PROTOCOLS, and CURLPROTO_* for redirect fixes in CURL 7.19.4. (Yoram Bar Haim, Stas)</li>
    8610. 

  8610. 	<li>Added support for Sun CC (FR <?php bugl(46595); ?> and FR <?php bugl(46513); ?>). (David Soria Parra)</li>
    8611. 

  8611. 

  8612. 	<li>Changed default value of array_unique()'s optional sorting type parameter back to SORT_STRING to fix backwards compatibility breakage introduced in PHP 5.2.9. (Moriyoshi)</li>
    8613. 

    8614. 

  8614. 	<li>Fixed memory corruptions while reading properties of zip files. (Ilia)</li>
    8615. 

  8615. 	<li>Fixed memory leak in ob_get_clean/ob_get_flush. (Christian)</li>
    8616. 

  8616. 	<li>Fixed segfault on invalid session.save_path. (Hannes)</li>
    8617. 

  8617. 	<li>Fixed leaks in imap when a mail_criteria is used. (Pierre)</li>
    8618. 

  8618. 	<li>Fixed missing erealloc() in fix for bug <?php bugl(40091); ?> in spl_autoload_register. (Greg)</li>
    8619. 

  8619. 

  8620.     <li><?php bugfix(48562); ?> (Reference recursion causes segfault when used in  wddx_serialize_vars()). (Felipe)</li>
    8621. 

  8621.     <li><?php bugfix(48557); ?> (Numeric string keys in Apache Hashmaps are not cast to integers). (David Zuelke)</li>
    8622. 

  8622.     <li><?php bugfix(48518); ?> (curl crashes when writing into invalid file handle). (Tony)</li>
    8623. 

  8623.     <li><?php bugfix(48514); ?> (cURL extension uses same resource name for simple and multi APIs). (Felipe)</li>
    8624. 

  8624.     <li><?php bugfix(48469); ?> (ldap_get_entries() leaks memory on empty search results). (Patrick)</li>
    8625. 

  8625.     <li><?php bugfix(48456); ?> (CPPFLAGS not restored properly in phpize.m4). (Jani, spisek at kerio dot com)</li>
    8626. 

  8626.     <li><?php bugfix(48448); ?> (Compile failure under IRIX 6.5.30 building cast.c).  (Kalle)</li>
    8627. 

  8627.     <li><?php bugfix(48441); ?> (ldap_search() sizelimit, timelimit and deref options  persist). (Patrick)</li>
    8628. 

  8628.     <li><?php bugfix(48434); ?> (Improve memory_get_usage() accuracy). (Arnaud)</li>
    8629. 

  8629.     <li><?php bugfix(48416); ?> (Force a cache limit in ereg() to stop excessive memory usage). (Scott)</li>
    8630. 

  8630.     <li><?php bugfix(48409); ?> (Crash when exception is thrown while passing function  arguments). (Arnaud)</li>
    8631. 

  8631.     <li><?php bugfix(48378); ?> (exif_read_data() segfaults on certain corrupted .jpeg  files). (Pierre)</li>
    8632. 

  8632.     <li><?php bugfix(48359); ?> (Script hangs on snmprealwalk if OID is not increasing). (Ilia, simonov at gmail dot com)</li>
    8633. 

  8633.     <li><?php bugfix(48336); ?> (ReflectionProperty::getDeclaringClass() does not work with redeclared property). (patch by Markus dot Lidel at shadowconnect dot com)</li>
    8634. 

  8634.     <li><?php bugfix(48326); ?> (constant MSG_DONTWAIT not defined). (Arnaud)</li>
    8635. 

  8635.     <li><?php bugfix(48313); ?> (fgetcsv() does not return null for empty rows). (Ilia)</li>
    8636. 

  8636.     <li><?php bugfix(48309); ?> (stream_copy_to_stream() and fpasstru() do not update stream position of plain files). (Arnaud)</li>
    8637. 

  8637.     <li><?php bugfix(48307); ?> (stream_copy_to_stream() copies 0 bytes when $source is a  socket). (Arnaud)</li>
    8638. 

  8638.     <li><?php bugfix(48273); ?> (snmp*_real_walk() returns SNMP errors as values). (Ilia, lytboris at gmail dot com)</li>
    8639. 

  8639.     <li><?php bugfix(48256); ?> (Crash due to double-linking of history.o). (tstarling at wikimedia dot org)</li>
    8640. 

  8640.     <li><?php bugfix(48248); ?> (SIGSEGV when access to private property via &amp;__get).  (Felipe)</li>
    8641. 

  8641.     <li><?php bugfix(48247); ?> (Crash on errors during startup). (Stas)</li>
    8642. 

  8642.     <li><?php bugfix(48240); ?> (DBA Segmentation fault dba_nextkey). (Felipe)</li>
    8643. 

  8643.     <li><?php bugfix(48224); ?> (Incorrect shuffle in array_rand). (Etienne)</li>
    8644. 

  8644.     <li><?php bugfix(48221); ?> (memory leak when passing invalid xslt parameter). (Felipe)</li>
    8645. 

  8645.     <li><?php bugfix(48207); ?> (CURLOPT_(FILE|WRITEHEADER options do not error out when    working with a non-writable stream). (Ilia)</li>
    8646. 

  8646.     <li><?php bugfix(48206); ?> (Iterating over an invalid data structure with RecursiveIteratorIterator leads to a segfault). (Scott)</li>
    8647. 

  8647.     <li><?php bugfix(48204); ?> (xmlwriter_open_uri() does not emit warnings on invalid paths). (Ilia)</li>
    8648. 

  8648.     <li><?php bugfix(48203); ?> (Crash when CURLOPT_STDERR is set to regular file). (Jani)</li>
    8649. 

  8649.     <li><?php bugfix(48202); ?> (Out of Memory error message when passing invalid file path) (Pierre)</li>
    8650. 

  8650.     <li><?php bugfix(48156); ?> (Added support for lcov v1.7). (Ilia)</li>
    8651. 

  8651.     <li><?php bugfix(48132); ?> (configure check for curl ssl support fails with --disable-rpath). (Jani)</li>
    8652. 

  8652.     <li><?php bugfix(48131); ?> (Don't try to bind ipv4 addresses to ipv6 ips via bindto). (Ilia)</li>
    8653. 

  8653.     <li><?php bugfix(48070); ?> (PDO_OCI: Segfault when using persistent connection). (Pierre, Matteo, jarismar dot php at gmail dot com)</li>
    8654. 

  8654.     <li><?php bugfix(48058); ?> (Year formatter goes wrong with out-of-int range). (Derick)</li>
    8655. 

  8655.     <li><?php bugfix(48038); ?> (odbc_execute changes variables used to form params array). (Felipe)</li>
    8656. 

  8656.     <li><?php bugfix(47997); ?> (stream_copy_to_stream returns 1 on empty streams). (Arnaud)</li>
    8657. 

  8657.     <li><?php bugfix(47991); ?> (SSL streams fail if error stack contains items). (Mikko)</li>
    8658. 

  8658.     <li><?php bugfix(47981); ?> (error handler not called regardless). (Hannes)</li>
    8659. 

  8659.     <li><?php bugfix(47969); ?> (ezmlm_hash() returns different values depend on OS). (Ilia)</li>
    8660. 

  8660.     <li><?php bugfix(47946); ?> (ImageConvolution overwrites background). (Ilia)</li>
    8661. 

  8661.     <li><?php bugfix(47940); ?> (memory leaks in imap_body). (Pierre, Jake Levitt)</li>
    8662. 

  8662.     <li><?php bugfix(47937); ?> (system() calls sapi_flush() regardless of output buffering). (Ilia)</li>
    8663. 

  8663.     <li><?php bugfix(47903); ?> (&quot;@&quot; operator does not work with string offsets). (Felipe)</li>
    8664. 

  8664.     <li><?php bugfix(47893); ?> (CLI aborts on non blocking stdout). (Arnaud)</li>
    8665. 

  8665.     <li><?php bugfix(47849); ?> (Non-deep import loses the namespace). (Rob)</li>
    8666. 

  8666.     <li><?php bugfix(47845); ?> (PDO_Firebird omits first row from query). (Lars W)</li>
    8667. 

  8667.     <li><?php bugfix(47836); ?> (array operator [] inconsistency when the array has PHP_INT_MAX index value). (Matt)</li>
    8668. 

  8668.     <li><?php bugfix(47831); ?> (Compile warning for strnlen() in main/spprintf.c). (Ilia, rainer dot jung at kippdata dot de)</li>
    8669. 

  8669.     <li><?php bugfix(47828); ?> (openssl_x509_parse() segfaults when a UTF-8 conversion fails). (Scott, Kees Cook, Pierre)</li>
    8670. 

  8670.     <li><?php bugfix(47818); ?> (Segfault due to bound callback param). (Felipe)</li>
    8671. 

  8671.     <li><?php bugfix(47801); ?> (__call() accessed via parent:: operator is provided incorrect method name). (Felipe)</li>
    8672. 

  8672.     <li><?php bugfix(47769); ?> (Strange extends PDO). (Felipe)</li>
    8673. 

  8673.     <li><?php bugfix(47745); ?> (FILTER_VALIDATE_INT doesn't allow minimum integer). (Dmitry)</li>
    8674. 

  8674.     <li><?php bugfix(47721); ?> (Alignment issues in mbstring and sysvshm extension) (crrodriguez at opensuse dot org, Ilia)</li>
    8675. 

  8675.     <li><?php bugfix(47704); ?> (PHP crashes on some &quot;bad&quot; operations with string offsets). (Dmitry)</li>
    8676. 

  8676.     <li><?php bugfix(47695); ?> (build error when xmlrpc and iconv are compiled against different iconv versions). (Scott)</li>
    8677. 

  8677.     <li><?php bugfix(47667); ?> (ZipArchive::OVERWRITE seems to have no effect). (Mikko, Pierre)</li>
    8678. 

  8678.     <li><?php bugfix(47644); ?> (Valid integers are truncated with json_decode()). (Scott)</li>
    8679. 

  8679.     <li><?php bugfix(47639); ?> (pg_copy_from() WARNING: nonstandard use of \\ in a string literal). (Ilia)</li>
    8680. 

  8680.     <li><?php bugfix(47616); ?> (curl keeps crashing). (Felipe)</li>
    8681. 

  8681.     <li><?php bugfix(47598); ?> (FILTER_VALIDATE_EMAIL is locale aware). (Ilia)</li>
    8682. 

  8682.     <li><?php bugfix(47566); ?> (pcntl_wexitstatus() returns signed status). (patch by james at jamesreno dot com)</li>
    8683. 

  8683.     <li><?php bugfix(47564); ?> (unpacking unsigned long 32bit bit endian returns wrong result). (Ilia)</li>
    8684. 

  8684.     <li><?php bugfix(47487); ?> (performance degraded when reading large chunks after fix of bug <?php bugl(44607); ?>). (Arnaud)</li>
    8685. 

  8685.     <li><?php bugfix(47468); ?> (enable cli|cgi-only extensions for embed sapi). (Jani)</li>
    8686. 

  8686.     <li><?php bugfix(47435); ?> (FILTER_FLAG_NO_PRIV_RANGE does not work with ipv6 addresses in the filter extension). (Ilia)</li>
    8687. 

  8687.     <li><?php bugfix(47430); ?> (Errors after writing to nodeValue parameter of an absent  previousSibling). (Rob)</li>
    8688. 

  8688.     <li><?php bugfix(47365); ?> (ip2long() may allow some invalid values on certain 64bit   systems). (Ilia)</li>
    8689. 

  8689.     <li><?php bugfix(47254); ?> (Wrong Reflection for extends class). (Felipe)</li>
    8690. 

  8690.     <li><?php bugfix(47042); ?> (cgi sapi is incorrectly removing SCRIPT_FILENAME). (Sriram Natarajan, David Soria Parra)</li>
    8691. 

  8691.     <li><?php bugfix(46882); ?> (Serialize / Unserialize misbehaviour under OS with different bit numbers). (Matt)</li>
    8692. 

  8692.     <li><?php bugfix(46812); ?> (get_class_vars() does not include visible private variable looking at subclass). (Arnaud)</li>
    8693. 

  8693.     <li><?php bugfix(46386); ?> (Digest authentication with SOAP module fails against MSSQL  SOAP services). (Ilia, lordelph at gmail dot com)</li>
    8694. 

  8694.     <li><?php bugfix(46109); ?> (Memory leak when mysqli::init() is called multiple times). (Andrey)</li>
    8695. 

  8695.     <li><?php bugfix(45997); ?> (safe_mode bypass with exec/system/passthru (windows only)). (Pierre)</li>
    8696. 

  8696.     <li><?php bugfix(45877); ?> (Array key '2147483647' left as string). (Matt)</li>
    8697. 

  8697.     <li><?php bugfix(45822); ?> (Near infinite-loops while parsing huge relative offsets). (Derick, Mike Sullivan)</li>
    8698. 

  8698.     <li><?php bugfix(45799); ?> (imagepng() crashes on empty image). (Martin McNickle, Takeshi Abe)</li>
    8699. 

  8699.     <li><?php bugfix(45622); ?> (isset($arrayObject-&gt;p) misbehaves with ArrayObject:: ARRAY_AS_PROPS set). (robin_fernandes at uk dot ibm dot com, Arnaud)</li>
    8700. 

  8700.     <li><?php bugfix(45614); ?> (ArrayIterator::current(), ::key() can show 1st private prop of wrapped object). (robin_fernandes at uk dot ibm dot com, Arnaud)</li>
    8701. 

  8701.     <li><?php bugfix(45540); ?> (stream_context_create creates bad http request). (Arnaud)</li>
    8702. 

  8702.     <li><?php bugfix(45202); ?> (zlib.output_compression can not be set with ini_set()). (Jani)</li>
    8703. 

  8703.     <li><?php bugfix(45191); ?> (error_log ignores date.timezone php.ini val when setting logging timestamps). (Derick)</li>
    8704. 

  8704.     <li><?php bugfix(45092); ?> (header HTTP context option not being used when compiled using --with-curlwrappers). (Jani)</li>
    8705. 

  8705.     <li><?php bugfix(44996); ?> (xmlrpc_decode() ignores time zone on iso8601.datetime). (Ilia, kawai at apache dot org) </li>
    8706. 

  8706.     <li><?php bugfix(44827); ?> (define() is missing error checks for class constants). (Ilia)</li>
    8707. 

  8707.     <li><?php bugfix(44214); ?> (Crash using preg_replace_callback() and global variables). (Nuno, Scott)</li>
    8708. 

  8708.     <li><?php bugfix(43073); ?> (TrueType bounding box is wrong for angle&lt;&gt;0). (Martin McNickle)</li>
    8709. 

  8709.     <li><?php bugfix(42663); ?> (gzinflate() try to allocate all memory with truncated data). (Arnaud)</li>
    8710. 

  8710.     <li><?php bugfix(42414); ?> (some odbc_*() functions incompatible with Oracle ODBC  driver). (jhml at gmx dot net)</li>
    8711. 

  8711.     <li><?php bugfix(42362); ?> (HTTP status codes 204 and 304 should not be gzipped). (Scott, Edward Z. Yang)</li>
    8712. 

  8712.     <li><?php bugfix(42143); ?> (The constant NAN is reported as 0 on Windows) (Kanwaljeet Singla, Venkat Raman Don)</li>
    8713. 

  8713.     <li><?php bugfix(38805); ?> (PDO truncates text from SQL Server text data type field). (Steph)</li>
    8714. 

  8714. </ul>
    8715. 

  8715. <!-- }}} --></section>
    8716. 

  8716. 

  8717. <section class="version" id="5.2.9"><!-- {{{ 5.2.9 -->
    8718. 

  8718. <h3>Version 5.2.9</h3>
    8719. 

  8719. <?php release_date('26-Feb-2009'); ?>
    8720. 

  8720. <ul>
    8721. 

  8721. 	<li>Security Fixes
    8722. 

  8722. 		<ul>
    8723. 

  8723. 			<li>Fixed security issue in imagerotate(), background colour isn't validated correctly with a non truecolour image. Reported by Hamid Ebadi, APA Laboratory (Fixes CVE-2008-5498). (Scott)</li>
    8724. 

  8724. 			<li>Fixed a crash on extract in zip when files or directories entry names contain  a relative path. (Pierre)</li>
    8725. 

  8725. 			<li>Fixed explode() behavior with empty string to respect negative limit. (Shire)</li>
    8726. 

  8726. 			<li>Fixed a segfault when malformed string is passed to json_decode(). (Scott)</li>
    8727. 

  8727. 			<li>Fixed bug in xml_error_string() which resulted in messages being off by one. (Scott)</li>
    8728. 

  8728. 		</ul>
    8729. 

  8729. 	</li>
    8730. 

  8730. 

  8731. 	<li>Changed __call() to be invoked on private/protected method access, similar to properties and __get(). (Andrei)</li>
    8732. 

  8732. 	<li>Added optional sorting type flag parameter to array_unique(). Default is SORT_REGULAR. (Andrei)</li>
    8733. 

  8733. 	<li>Fixed zip filename property read. (Pierre)</li>
    8734. 

  8734. 	<li>Fixed error conditions handling in stream_filter_append(). (Arnaud)</li>
    8735. 

  8735. 

  8736.         <li><?php bugfix(47422); ?> (modulus operator returns incorrect results on 64 bit linux). (Matt)</li>
    8737. 

  8737.         <li><?php bugfix(47399); ?> (mb_check_encoding() returns true for some illegal SJIS characters). (for-bugs at hnw dot jp, Moriyoshi)</li>
    8738. 

  8738.         <li><?php bugfix(47353); ?> (crash when creating a lot of objects in object destructor). (Tony)</li>
    8739. 

  8739.         <li><?php bugfix(47322); ?> (sscanf %d doesn't work). (Felipe)</li>
    8740. 

  8740.         <li><?php bugfix(47282); ?> (FILTER_VALIDATE_EMAIL is marking valid email addresses as invalid). (Ilia)</li>
    8741. 

  8741.         <li><?php bugfix(47220); ?> (segfault in dom_document_parser in recovery mode). (Rob)</li>
    8742. 

  8742.         <li><?php bugfix(47217); ?> (content-type is not set properly for file uploads). (Ilia)</li>
    8743. 

  8743.         <li><?php bugfix(47174); ?> (base64_decode() interprets pad char in mid string as terminator). (Ilia)</li>
    8744. 

  8744.         <li><?php bugfix(47165); ?> (Possible memory corruption when passing return value by reference). (Dmitry)</li>
    8745. 

  8745.         <li><?php bugfix(47152); ?> (gzseek/fseek using SEEK_END produces strange results). (Felipe)</li>
    8746. 

  8746.         <li><?php bugfix(47131); ?> (SOAP Extension ignores &quot;user_agent&quot; ini setting). (Ilia)</li>
    8747. 

  8747.         <li><?php bugfix(47109); ?> (Memory leak on $a-&gt;{&quot;a&quot;.&quot;b&quot;} when $a is not an object). (Etienne, Dmitry)</li>
    8748. 

  8748.         <li><?php bugfix(47104); ?> (Linking shared extensions fails with icc). (Jani)</li>
    8749. 

  8749.         <li><?php bugfix(47049); ?> (SoapClient::__soapCall causes a segmentation fault). (Dmitry)</li>
    8750. 

  8750.         <li><?php bugfix(47048); ?> (Segfault with new pg_meta_data). (Felipe)</li>
    8751. 

  8751.         <li><?php bugfix(47042); ?> (PHP cgi sapi is removing SCRIPT_FILENAME for non apache). (Sriram Natarajan)</li>
    8752. 

  8752.         <li><?php bugfix(47037); ?> (No error when using fopen with empty string). (Cristian Rodriguez R., Felipe)</li>
    8753. 

  8753.         <li><?php bugfix(47035); ?> (dns_get_record returns a garbage byte at the end of a TXT record). (Felipe)</li>
    8754. 

  8754.         <li><?php bugfix(47027); ?> (var_export doesn't show numeric indices on ArrayObject). (Derick)</li>
    8755. 

  8755.         <li><?php bugfix(46985); ?> (OVERWRITE and binary mode does not work, regression introduced in 5.2.8). (Pierre)</li>
    8756. 

  8756.         <li><?php bugfix(46973); ?> (IPv6 address filter rejects valid address). (Felipe)</li>
    8757. 

  8757.         <li><?php bugfix(46964); ?> (Fixed pdo_mysql build with older version of MySQL). (Ilia)</li>
    8758. 

  8758.         <li><?php bugfix(46959); ?> (Unable to disable PCRE). (Scott)</li>
    8759. 

  8759.         <li><?php bugfix(46918); ?> (imap_rfc822_parse_adrlist host part not filled in correctly). (Felipe)</li>
    8760. 

  8760.         <li><?php bugfix(46889); ?> (Memory leak in strtotime()). (Derick)</li>
    8761. 

  8761.         <li><?php bugfix(46887); ?> (Invalid calls to php_error_docref()). (oeriksson at mandriva dot com, Ilia)</li>
    8762. 

  8762.         <li><?php bugfix(46873); ?> (extract($foo) crashes if $foo['foo'] exists). (Arnaud)</li>
    8763. 

  8763.         <li><?php bugfix(46843); ?> (CP936 euro symbol is not converted properly). (ty_c at cybozuy dot co dot jp, Moriyoshi)</li>
    8764. 

  8764.         <li><?php bugfix(46798); ?> (Crash in mssql extension when retrieving a NULL value inside a binary or image column type). (Ilia)</li>
    8765. 

  8765.         <li><?php bugfix(46782); ?> (fastcgi.c parse error). (Matt)</li>
    8766. 

  8766.         <li><?php bugfix(46760); ?> (SoapClient doRequest fails when proxy is used). (Felipe)</li>
    8767. 

  8767.         <li><?php bugfix(46748); ?> (Segfault when an SSL error has more than one error). (Scott)</li>
    8768. 

  8768.         <li><?php bugfix(46739); ?> (array returned by curl_getinfo should contain content_type key). (Mikko)</li>
    8769. 

  8769.         <li><?php bugfix(46699); ?> (xml_parse crash when parser is namespace aware). (Rob)</li>
    8770. 

  8770.         <li><?php bugfix(46419); ?> (Elements of associative arrays with NULL value are lost). (Dmitry)</li>
    8771. 

  8771.         <li><?php bugfix(46282); ?> (Corrupt DBF When Using DATE). (arne at bukkie dot nl)</li>
    8772. 

  8772.         <li><?php bugfix(46026); ?> (bz2.decompress/zlib.inflate filter tries to decompress after end of stream). (Greg)</li>
    8773. 

  8773.         <li><?php bugfix(46005); ?> (User not consistently logged under Apache2). (admorten at umich dot edu, Stas)</li>
    8774. 

  8774.         <li><?php bugfix(45996); ?> (libxml2 2.7 causes breakage with character data in xml_parse()). (Rob)</li>
    8775. 

  8775.         <li><?php bugfix(45940); ?> (MySQLI OO does not populate connect_error property on failed connect). (Johannes)</li>
    8776. 

  8776.         <li><?php bugfix(45923); ?> (mb_st[r]ripos() offset not handled correctly). (Moriyoshi)</li>
    8777. 

  8777.         <li><?php bugfix(45327); ?> (memory leak if offsetGet throws exception). (Greg)</li>
    8778. 

  8778.         <li><?php bugfix(45239); ?> (Encoding detector hangs with mbstring.strict_detection enabled). (Moriyoshi)</li>
    8779. 

  8779.         <li><?php bugfix(45161); ?> (Reusing a curl handle leaks memory). (Mark Karpeles, Jani)</li>
    8780. 

  8780.         <li><?php bugfix(44336); ?> (Improve pcre UTF-8 string matching performance). (frode at coretrek dot com, Nuno)</li>
    8781. 

  8781.         <li><?php bugfix(43841); ?> (mb_strrpos() offset is byte count for negative values). (Moriyoshi)</li>
    8782. 

  8782.         <li><?php bugfix(37209); ?> (mssql_execute with non fatal errors). (Kalle)</li>
    8783. 

  8783.         <li><?php bugfix(35975); ?> (Session cookie expires date format isn't the most compatible. Now matches that of setcookie()). (Scott)</li>
    8784. 

    8785. 

  8785. </ul>
    8786. 

  8786. 

  8787. <!-- }}} --></section>
    8788. 

  8788. 

  8789. <section class="version" id="5.2.8"><!-- {{{ 5.2.8 -->
    8790. 

  8790. <h3>Version 5.2.8</h3>
    8791. 

  8791. <?php release_date('08-Dec-2008'); ?>
    8792. 

  8792. <ul>
    8793. 

  8793. 	<li>Reverted bug fix <?php bugfix(42718); ?> that broke magic_quotes_gpc (Scott)</li>
    8794. 

  8794. </ul>
    8795. 

  8795. 

  8796. <!-- }}} --></section>
    8797. 

  8797. 

  8798. <section class="version" id="5.2.7"><!-- {{{ 5.2.7 -->
    8799. 

  8799. <h3>Version 5.2.7</h3>
    8800. 

  8800. <?php release_date('04-Dec-2008'); ?>
    8801. 

  8801. <ul>
    8802. 

  8802. 	<li>Security Fixes
    8803. 

  8803. 		<ul>
    8804. 

  8804. 			<li>Upgraded PCRE to version 7.8 (Fixes CVE-2008-2371) (Ilia)</li>
    8805. 

  8805. 			<li>Fixed missing initialization of BG(page_uid) and BG(page_gid), reported by Maksymilian Arciemowicz. (Stas)</li>
    8806. 

  8806. 			<li>Fixed incorrect php_value order for Apache configuration, reported by Maksymilian Arciemowicz. (Stas)</li>
    8807. 

  8807. 			<li>Fixed a crash inside gd with invalid fonts (Fixes CVE-2008-3658). (Pierre)</li>
    8808. 

  8808. 			<li>Fixed a possible overflow inside memnstr (Fixes CVE-2008-3659). (Laurent Gaffie)</li>
    8809. 

  8809. 			<li>Fixed security issues detailed in CVE-2008-2665 and CVE-2008-2666. (Christian Hoffmann)</li>
    8810. 

  8810. 			<li><?php bugfix(45151); ?> (Crash with URI/file..php (filename contains 2 dots)).(Fixes CVE-2008-3660) (Dmitry)</li>
    8811. 

  8811. 			<li><?php bugfix(42862); ?> (IMAP toolkit crash: rfc822.c legacy routine buffer overflow). (Fixes CVE-2008-2829) (Dmitry)</li>
    8812. 

  8812. 		</ul>
    8813. 

  8813. 	</li>
    8814. 

  8814. 

  8815. <li>Updated timezone database to version 2008.9. (Derick)</li>
    8816. 

  8816. <li>Upgraded bundled libzip to 0.9.0. (Pierre)</li>
    8817. 

  8817. 

  8818. <li>Added logging option for error_log to send directly to SAPI. (Stas)</li>
    8819. 

  8819. <li>Added PHP_MAJOR_VERSION, PHP_MINOR_VERSION, PHP_RELEASE_VERSION,PHP_EXTRA_VERSION, PHP_VERSION_ID, PHP_ZTS and PHP_DEBUG constants. (Pierre)</li>
    8820. 

  8820. <li>Added &quot;PHP_INI_SCAN_DIR&quot; environment variable which can be used to either disable or change the compile time ini scan directory (FR <?php bugfix(45114); ?>). (Jani)</li>
    8821. 

  8821. 

  8822. <li>Fixed memory leak inside sqlite_create_aggregate(). (Felipe)</li>
    8823. 

  8823. <li>Fixed memory leak inside PDO sqlite's sqliteCreateAggregate() method. (Felipe)</li>
    8824. 

  8824. <li>Fixed memory leak inside readline_callback_handler_remove() function. (Felipe)</li>
    8825. 

  8825. <li>Fixed sybase_fetch_*() to continue reading after CS_ROW_FAIL status (Timm)</li>
    8826. 

  8826. <li>Fixed a bug inside dba_replace() that could cause file truncation with invalid keys. (Ilia)</li>
    8827. 

  8827. <li>Fixed memory leak inside readline_callback_handler_install() function. (Ilia)</li>
    8828. 

  8828. <li>Fixed memory leak inside readline_completion_function() function. (Felipe) </li>
    8829. 

  8829. <li>Fixed stream_get_contents() when using $maxlength and socket is not closed. indeyets [at] php [dot] net on <?php bugfix(46049); ?>. (Arnaud)</li>
    8830. 

  8830. <li>Fixed stream_get_line() to behave as documented on non-blocking streams. (Arnaud)</li>
    8831. 

  8831. <li>Fixed endless loop in PDOStatement::debugDumpParams().(jonah.harris at gmail dot com)</li>
    8832. 

  8832. <li>Fixed ability to use &quot;internal&quot; heaps in extensions. (Arnaud, Dmitry)</li>
    8833. 

  8833. <li>Fixed weekdays adding/subtracting algorithm. (Derick)</li>
    8834. 

  8834. <li>Fixed some ambiguities in the date parser. (Derick)</li>
    8835. 

  8835. <li>Fixed a bug with the YYYY-MM format not resetting the day correctly. (Derick)</li>
    8836. 

  8836. <li>Fixed a bug in the DateTime->modify() methods, it would not use the advanced relative time strings. (Derick)</li>
    8837. 

  8837. <li>Fixed extraction of zip files or directories when the entry name is a relative path. (Pierre)</li>
    8838. 

  8838. <li>Fixed read or write errors for large zip archives. (Pierre)</li>
    8839. 

  8839. <li>Fixed simplexml asXML() not to lose encoding when dumping entire document to file. (Ilia)</li>
    8840. 

  8840. <li>Fixed a crash inside PDO when trying instantiate PDORow manually. (Felipe)</li>
    8841. 

  8841. <li>Fixed build failure of ext/mysqli with libmysql 6.0 - missing rpl functions. (Andrey)</li>
    8842. 

  8842. <li>Fixed a regression when using strip_tags() and &lt; is within an attribute. (Scott)</li>
    8843. 

  8843. <li>Fixed a crash on invalid method in ReflectionParameter constructor. (Christian Seiler)</li>
    8844. 

  8844. <li>Reverted fix for bug <?php bugfix(44197); ?> due to behaviour change in minor version. (Felipe)</li>
    8845. 

  8845. 

  8846. <li><?php bugfix(46732); ?> (mktime.year description is wrong). (Derick)</li>
    8847. 

  8847. <li><?php bugfix(46696); ?> (cURL fails in upload files with specified content-type). (Ilia)</li>
    8848. 

  8848. <li><?php bugfix(46673); ?> (stream_lock call with wrong parameter). (Arnaud)</li>
    8849. 

  8849. <li><?php bugfix(46649); ?> (Setting array element with that same array produces inconsistent results). (Arnaud)</li>
    8850. 

  8850. <li><?php bugfix(46626); ?> (mb_convert_case does not handle apostrophe correctly). (Ilia)</li>
    8851. 

  8851. <li><?php bugfix(46543); ?> (ibase_trans() memory leaks when using wrong parameters). (Felipe)</li>
    8852. 

  8852. <li><?php bugfix(46521); ?> (Curl ZTS OpenSSL, error in config.m4 fragment). (jd at cpanel dot net)</li>
    8853. 

  8853. <li><?php bugfix(46496); ?> (wddx_serialize treats input as ISO-8859-1). (Mark Karpeles)</li>
    8854. 

  8854. <li><?php bugfix(46427); ?> (SoapClient() stumbles over its &quot;stream_context&quot; parameter). (Dmitry, Herman Radtke)</li>
    8855. 

  8855. <li><?php bugfix(46426); ?> (offset parameter of stream_get_contents() does not workfor &quot;0&quot;). (Felipe)</li>
    8856. 

  8856. <li><?php bugfix(46406); ?> (Unregistering nodeclass throws E_FATAL). (Rob)</li>
    8857. 

  8857. <li><?php bugfix(46389); ?> (NetWare needs small patch for _timezone). (patch by guenter@php.net)</li>
    8858. 

  8858. <li><?php bugfix(46388); ?> (stream_notification_callback inside of object destroys object variables). (Felipe)</li>
    8859. 

  8859. <li><?php bugfix(46381); ?> (wrong $this passed to internal methods causes segfault). (Tony)</li>
    8860. 

  8860. <li><?php bugfix(46379); ?> (Infinite loop when parsing '#' in one line file). (Arnaud)</li>
    8861. 

  8861. <li><?php bugfix(46366); ?> (bad cwd with / as pathinfo). (Dmitry)</li>
    8862. 

  8862. <li><?php bugfix(46360); ?> (TCP_NODELAY constant for socket_{get,set}_option). (bugs at trick dot vanstaveren dot us)</li>
    8863. 

  8863. <li><?php bugfix(46343); ?> (IPv6 address filter accepts invalid address). (Ilia)</li>
    8864. 

  8864. <li><?php bugfix(46335); ?> (DOMText::splitText doesn't handle multibyte characters). (Rob)</li>
    8865. 

  8865. <li><?php bugfix(46323); ?> (compilation of simplexml for NetWare breaks). (Patch by guenter@php.net)</li>
    8866. 

  8866. <li><?php bugfix(46319); ?> (PHP sets default Content-Type header for HTTP 304 response code, in cgi sapi). (Ilia)</li>
    8867. 

  8867. <li><?php bugfix(46313); ?> (Magic quotes broke $_FILES). (Arnaud)</li>
    8868. 

  8868. <li><?php bugfix(46308); ?> (Invalid write when changing property from inside getter). (Dmitry)</li>
    8869. 

  8869. <li><?php bugfix(46292); ?> (PDO::setFetchMode() shouldn't requires the 2nd arg when using FETCH_CLASSTYPE). (Felipe)</li>
    8870. 

  8870. <li>Fixed bugs <?php bugl(46274); ?>, <?php bugl(46249); ?> (pdo_pgsql always fill in NULL for empty BLOB and segfaults when returned by SELECT). (Felipe)</li>
    8871. 

  8871. <li><?php bugfix(46271); ?> (local_cert option is not resolved to full path). (Ilia)</li>
    8872. 

  8872. <li><?php bugfix(46247); ?> (ibase_set_event_handler() is allowing to pass callback without event). (Felipe)</li>
    8873. 

  8873. <li><?php bugfix(46246); ?> (difference between call_user_func(array($this, $method))and $this->$method()). (Dmitry)</li>
    8874. 

  8874. <li><?php bugfix(46222); ?> (ArrayObject EG(uninitialized_var_ptr) overwrite). (Etienne)</li>
    8875. 

  8875. <li><?php bugfix(46215); ?> (json_encode mutates its parameter and has some class-specific state). (Felipe)</li>
    8876. 

  8876. <li><?php bugfix(46206); ?> (pg_query_params/pg_execute convert passed values to strings). (Ilia)</li>
    8877. 

  8877. <li><?php bugfix(46191); ?> (BC break: DOMDocument saveXML() doesn't accept null). (Rob)</li>
    8878. 

  8878. <li><?php bugfix(46164); ?> (stream_filter_remove() closes the stream). (Arnaud)</li>
    8879. 

  8879. <li><?php bugfix(46157); ?> (PDOStatement::fetchObject prototype error). (Felipe)</li>
    8880. 

  8880. <li><?php bugfix(46147); ?> (after stream seek, appending stream filter reads incorrect data). (Greg)</li>
    8881. 

  8881. <li><?php bugfix(46139); ?> (PDOStatement->setFetchMode() forgets FETCH_PROPS_LATE). (chsc at peytz dot dk, Felipe)</li>
    8882. 

  8882. <li><?php bugfix(46127); ?> (php_openssl_tcp_sockop_accept forgets to set context on accepted stream). (Mark Karpeles, Pierre)</li>
    8883. 

  8883. <li><?php bugfix(46110); ?> (XMLWriter - openmemory() and openuri() leak memory on multiple calls). (Ilia)</li>
    8884. 

  8884. <li><?php bugfix(46088); ?> (RegexIterator::accept - segfault). (Felipe)</li>
    8885. 

  8885. <li><?php bugfix(46082); ?> (stream_set_blocking() can cause a crash in some circumstances). (Felipe)</li>
    8886. 

  8886. <li><?php bugfix(46064); ?> (Exception when creating ReflectionProperty object on dynamicly created property). (Felipe)</li>
    8887. 

  8887. <li><?php bugfix(46059); ?> (Compile failure under IRIX 6.5.30 building posix.c). (Arnaud)</li>
    8888. 

  8888. <li><?php bugfix(46053); ?> (SplFileObject::seek - Endless loop). (Arnaud)</li>
    8889. 

  8889. <li><?php bugfix(46051); ?> (SplFileInfo::openFile - memory overlap). (Arnaud)</li>
    8890. 

  8890. <li><?php bugfix(46047); ?> (SimpleXML converts empty nodes into object with nested array). (Rob)</li>
    8891. 

  8891. <li><?php bugfix(46031); ?> (Segfault in AppendIterator::next). (Arnaud)</li>
    8892. 

  8892. <li><?php bugfix(46029); ?> (Segfault in DOMText when using with Reflection). (Rob)</li>
    8893. 

  8893. <li><?php bugfix(46026); ?> (bzip2.decompress/zlib.inflate filter tries to decompress after end of stream). (Keisial at gmail dot com, Greg)</li>
    8894. 

  8894. <li><?php bugfix(46024); ?> (stream_select() doesn't return the correct number).(Arnaud)</li>
    8895. 

  8895. <li><?php bugfix(46010); ?> (warnings incorrectly generated for iv in ecb mode). (Felipe)</li>
    8896. 

  8896. <li><?php bugfix(46003); ?> (isset on nonexisting node return unexpected results). (Rob)</li>
    8897. 

  8897. <li><?php bugfix(45956); ?> (parse_ini_file() does not return false with syntax errors in parsed file). (Jani)</li>
    8898. 

  8898. <li><?php bugfix(45901); ?> (wddx_serialize_value crash with SimpleXMLElement object).(Rob)</li>
    8899. 

  8899. <li><?php bugfix(45862); ?> (get_class_vars is inconsistent with 'protected' and 'private' variables). (ilewis at uk dot ibm dot com, Felipe)</li>
    8900. 

  8900. <li><?php bugfix(45860); ?> (header() function fails to correctly replace all Status lines). (Dmitry)</li>
    8901. 

  8901. <li><?php bugfix(45805); ?> (Crash on throwing exception from error handler). (Dmitry)</li>
    8902. 

  8902. <li><?php bugfix(45765); ?> (ReflectionObject with default parameters of self::xxx cause an error). (Felipe)</li>
    8903. 

  8903. <li><?php bugfix(45751); ?> (Using auto_prepend_file crashes (out of scope stack address use)). (basant dot kukreja at sun dot com) </li>
    8904. 

  8904. <li><?php bugfix(45722); ?> (mb_check_encoding() crashes). (Moriyoshi)</li>
    8905. 

  8905. <li><?php bugfix(45705); ?> (rfc822_parse_adrlist() modifies passed address parameter). (Jani)</li>
    8906. 

  8906. <li><?php bugfix(45691); ?> (Some per-dir or runtime settings may leak into other requests). (Moriyoshi)</li>
    8907. 

  8907. <li><?php bugfix(45581); ?> (htmlspecialchars() double encoding &amp;#x hex items). (Arnaud)</li>
    8908. 

  8908. <li><?php bugfix(45580); ?> (levenshtein() crashes with invalid argument). (Ilia)</li>
    8909. 

  8909. <li><?php bugfix(45575); ?> (Segfault with invalid non-string as event handler callback). (Christian Seiler)</li>
    8910. 

  8910. <li><?php bugfix(45568); ?> (ISAPI doesn't properly clear auth_digest in header). (Patch by: navara at emclient dot com)</li>
    8911. 

  8911. <li><?php bugfix(45556); ?> (Return value from callback isn't freed). (Felipe)</li>
    8912. 

  8912. <li><?php bugfix(45555); ?> (Segfault with invalid non-string as register_introspection_callback). (Christian Seiler)</li>
    8913. 

  8913. <li><?php bugfix(45553); ?> (Using XPath to return values for attributes with a namespace does not work). (Rob)</li>
    8914. 

  8914. <li><?php bugfix(45529); ?> (new DateTimeZone() and date_create()-&gt;getTimezone() behave different). (Derick)</li>
    8915. 

  8915. <li><?php bugfix(45522); ?> (FCGI_GET_VALUES request does not return supplied values). (Arnaud)</li>
    8916. 

  8916. <li><?php bugfix(45486); ?> (mb_send_mail(); header 'Content-Type: text/plain; charset=' parsing incorrect). (Felipe)</li>
    8917. 

  8917. <li><?php bugfix(45485); ?> (strip_tags and &lt;?XML tag). (Felipe)</li>
    8918. 

  8918. <li><?php bugfix(45460); ?> (imap patch for fromlength fix in imap_headerinfo doesn't accept lengths of 1024). (Felipe, andrew at lifescale dot com)</li>
    8919. 

  8919. <li><?php bugfix(45449); ?> (filesize() regression using ftp wrapper). (crrodriguez at suse dot de)</li>
    8920. 

  8920. <li><?php bugfix(45423); ?> (fastcgi parent process doesn't invoke php_module_shutdown before shutdown). (basant dot kukreja at sun dot com)</li>
    8921. 

  8921. <li><?php bugfix(45406); ?> (session.serialize_handler declared by shared extension fails). (Kalle, oleg dot grenrus at dynamoid dot com)</li>
    8922. 

  8922. <li><?php bugfix(45405); ?> (snmp extension memory leak). (Federico Cuello, Rodrigo Campos)</li>
    8923. 

  8923. <li><?php bugfix(45392); ?> (ob_start()/ob_end_clean() and memory_limit). (Arnaud)</li>
    8924. 

  8924. <li><?php bugfix(45382); ?> (timeout bug in stream_socket_enable_crypto). (Ilia)</li>
    8925. 

  8925. <li><?php bugfix(45373); ?> (php crash on query with errors in params). (Felipe)</li>
    8926. 

  8926. <li><?php bugfix(45352); ?> (Segmentation fault because of tick function on second request). (Dmitry)</li>
    8927. 

  8927. <li><?php bugfix(45312); ?> (Segmentation fault on second request for array functions). (Dmitry)</li>
    8928. 

  8928. <li><?php bugfix(45303); ?> (Opening php:// wrapper in append mode results in a warning). (Arnaud)</li>
    8929. 

  8929. <li><?php bugfix(45251); ?> (double free or corruption with setAttributeNode()). (Rob)</li>
    8930. 

  8930. <li>Fixed bugs <?php bugl(45226); ?>, <?php bugl(18916); ?> (xmlrpc_set_type() segfaults and wrong behavior with valid ISO8601 date string). (Jeff Lawsons)</li>
    8931. 

  8931. <li><?php bugfix(45220); ?> (curl_read callback returns -1 when needs to return size_t (unsigned)). (Felipe)</li>
    8932. 

  8932. <li><?php bugfix(45181); ?> (chdir() should clear relative entries in stat cache). (Arnaud)</li>
    8933. 

  8933. <li><?php bugfix(45178); ?> (memory corruption on assignment result of &quot;new&quot; by reference). (Dmitry)</li>
    8934. 

  8934. <li><?php bugfix(45166); ?> (substr() overflow changes). (Felipe)</li>
    8935. 

  8935. <li><?php bugfix(45139); ?> (ReflectionProperty returns incorrect declaring class).(Felipe)</li>
    8936. 

  8936. <li><?php bugfix(45124); ?> ($_FILES['upload']['size'] sometimes return zero and sometimes the filesize). (Arnaud)</li>
    8937. 

  8937. <li><?php bugfix(45028); ?> (CRC32 output endianness is different between crc32() and hash()). (Tony)</li>
    8938. 

  8938. <li><?php bugfix(45004); ?> (pg_insert() does not accept 4 digit timezone format). (Ilia)</li>
    8939. 

  8939. <li><?php bugfix(44991); ?> (Compile Failure With freetds0.82). (jklowden at freetds dot org, matthias at dsx dot at)</li>
    8940. 

  8940. <li><?php bugfix(44938); ?> (gettext functions crash with overly long domain). (Christian Schneider, Ilia)</li>
    8941. 

  8941. <li><?php bugfix(44925); ?> (preg_grep() modifies input array). (Nuno)</li>
    8942. 

  8942. <li><?php bugfix(44900); ?> (OpenSSL extension fails to link with OpenSSL 0.9.6). (jd at cpanel dot net, Pierre)</li>
    8943. 

  8943. <li><?php bugfix(44891); ?> Memory leak using registerPHPFunctions and XSLT Variable as function parameter. (Rob)</li>
    8944. 

  8944. <li><?php bugfix(44882); ?> (SOAP extension object decoding bug). (Dmitry)</li>
    8945. 

  8945. <li><?php bugfix(44830); ?> (Very minor issue with backslash in heredoc). (Matt)</li>
    8946. 

  8946. <li><?php bugfix(44818); ?> (php://memory writeable when opened read only). (Arnaud)</li>
    8947. 

  8947. <li><?php bugfix(44811); ?> (Improve error message when creating a new SoapClient that contains invalid data). (Markus Fischer, David C)</li>
    8948. 

  8948. <li><?php bugfix(44798); ?> (Memory leak assigning value to attribute). (Ilia)</li>
    8949. 

  8949. <li><?php bugfix(44716); ?> (Progress notifications incorrect). (Hannes)</li>
    8950. 

  8950. <li><?php bugfix(44712); ?> (stream_context_set_params segfaults on invalid arguments). (Hannes)</li>
    8951. 

  8951. <li><?php bugfix(44617); ?> (wrong HTML entity output when substitute_character=entity). (Moriyoshi)</li>
    8952. 

  8952. <li><?php bugfix(44607); ?> (stream_get_line unable to correctly identify the &quot;ending&quot; in the stream content). (Arnaud)</li>
    8953. 

  8953. <li><?php bugfix(44425); ?> (Extending PDO/MySQL class with a __call() function doesn'twork). (Johannes)</li>
    8954. 

  8954. <li><?php bugfix(44327); ?> (PDORow::queryString property &amp; numeric offsets / Crash). (Felipe)</li>
    8955. 

  8955. <li>Fixed bugs <?php bugl(44251); ?>, <?php bugl(41125); ?> (PDO + quote() + prepare() can result in segfault). (tsteiner at nerdclub dot net)</li>
    8956. 

  8956. <li><?php bugfix(44246); ?> (closedir() accepts a file resource opened by fopen()). (Dmitry, Tony)</li>
    8957. 

  8957. <li><?php bugfix(44182); ?> (extract($a, EXTR_REFS) can fail to split copy-on-write references). (robin_fernandes at uk dot ibm dot com)</li>
    8958. 

  8958. <li><?php bugfix(44181); ?> (extract($a, EXTR_OVERWRITE|EXTR_REFS) can fail to create references to $a). (robin_fernandes at uk dot ibm dot com)</li>
    8959. 

  8959. <li><?php bugfix(44127); ?> (UNIX abstract namespace socket connect does not work). (Jani)</li>
    8960. 

  8960. <li><?php bugfix(43993); ?> (mb_substr_count() behaves differently to substr_count() with overlapping needles). (Moriyoshi)</li>
    8961. 

  8961. <li><?php bugfix(43958); ?> (class name added into the error message). (Dmitry)</li>
    8962. 

  8962. <li><?php bugfix(43941); ?> (json_encode silently cuts non-UTF8 strings). (Stas)</li>
    8963. 

  8963. <li><?php bugfix(43925); ?> (Incorrect argument counter in prepared statements with pgsql). (Felipe)</li>
    8964. 

  8964. <li><?php bugfix(43731); ?> (socket_getpeername: cannot use on stdin with inetd). (Arnaud)</li>
    8965. 

  8965. <li><?php bugfix(43723); ?> (SOAP not sent properly from client for &lt;choice&gt;). (Dmitry)</li>
    8966. 

  8966. <li><?php bugfix(43668); ?> (Added odbc.default_cursortype to control the ODBCcursor model). (Patrick)</li>
    8967. 

  8967. <li><?php bugfix(43666); ?> (Fixed code to use ODBC 3.52 datatypes for 64bit systems). (Patrick)</li>
    8968. 

  8968. <li><?php bugfix(43540); ?> (rfc1867 handler newlength problem). (Arnaud)</li>
    8969. 

  8969. <li><?php bugfix(43452); ?> (strings containing a weekday, or a number plus weekday behaved incorrect of the current day-of-week was the same as the one in the phrase).(Derick)</li>
    8970. 

  8970. <li><?php bugfix(43353); ?> (wrong detection of 'data' wrapper causes notice). (gk at gknw dot de, Arnaud)</li>
    8971. 

  8971. <li><?php bugfix(43053); ?> (Regression: some numbers shown in scientific notation). (int-e at gmx dot de)</li>
    8972. 

  8972. <li><?php bugfix(43045); ?> (SOAP encoding violation on &quot;INF&quot; for type double/float). (Dmitry)</li>
    8973. 

  8973. <li><?php bugfix(42855); ?> (dns_get_record() doesn't return all text from TXT record). (a dot u dot savchuk at gmail dot com)</li>
    8974. 

  8974. <li><?php bugfix(42737); ?> (preg_split('//u') triggers a E_NOTICE with newlines). (Nuno)</li>
    8975. 

  8975. <li><?php bugfix(42718); ?> (FILTER_UNSAFE_RAW not applied when configured as default filter). (Arnaud)</li>
    8976. 

  8976. <li><?php bugfix(42604); ?> (&quot;make test&quot; fails with --with-config-file-scan-dir=path). (Jani)</li>
    8977. 

  8977. <li><?php bugfix(42473); ?> (ob_start php://output and headers). (Arnaud)</li>
    8978. 

  8978. <li><?php bugfix(42318); ?> (problem with nm on AIX, not finding object files). (Dmitry)</li>
    8979. 

  8979. <li><?php bugfix(42294); ?> (Unified solution for round() based on C99 round). (Ilia)</li>
    8980. 

  8980. <li><?php bugfix(42078); ?> (pg_meta_data mix tables metadata from different schemas). (Felipe)</li>
    8981. 

  8981. <li><?php bugfix(41348); ?> (OCI8: allow compilation with Oracle 8.1). (Chris Jones)</li>
    8982. 

  8982. <li><?php bugfix(41033); ?> (enable signing with DSA keys. (gordyf at google dot com, Pierre)</li>
    8983. 

  8983. <li><?php bugfix(37100); ?> (data is returned truncated with BINARY CURSOR). (Tony)</li>
    8984. 

  8984. <li><?php bugfix(30312); ?> (crash in sybase_unbuffered_query() function). (Timm)</li>
    8985. 

  8985. <li><?php bugfix(24679); ?> (pg_* functions doesn't work using schema). (Felipe)</li>
    8986. 

  8986. <li><?php peclbugfix(14962); ?> (::extractTo 2nd argument is not really optional). (Mark van Der Velden)</li>
    8987. 

  8987. <li><?php bugfix(14032); ?> (Mail() always returns false but mail is sent). (Mikko)</li>
    8988. 

  8988. 

  8989. </ul>
    8990. 

  8990. 

  8991. <!-- }}} --></section>
    8992. 

  8992. 

  8993. <section class="version" id="5.2.6"><!-- {{{ 5.2.6 -->
    8994. 

  8994. <h3>Version 5.2.6</h3>
    8995. 

  8995. <?php release_date('01-May-2008'); ?>
    8996. 

  8996. <ul>
    8997. 

  8997. 	<li>Security Fixes
    8998. 

  8998. 		<ul>
    8999. 

  8999. 			<li>Fixed possible stack buffer overflow in FastCGI SAPI. (Andrei Nigmatulin)</li>
    9000. 

  9000. 			<li>Properly address incomplete multibyte chars inside escapeshellcmd() (Ilia, Stefan Esser)</li>
    9001. 

  9001. 			<li>Fixed security issue detailed in CVE-2008-0599. (Rasmus)</li>
    9002. 

  9002. 			<li>Fixed a safe_mode bypass in cURL identified by Maksymilian Arciemowicz. (Ilia)</li>
    9003. 

  9003. 			<li>Upgraded PCRE to version 7.6 (Nuno)</li>
    9004. 

  9004. 		</ul>
    9005. 

  9005. 	</li>
    9006. 

  9006. <li>Fixed two possible crashes inside posix extension (Tony)</li>
    9007. 

  9007. <li>Fixed incorrect heredoc handling when label is used within the block.  (Matt)</li>
    9008. 

  9008. <li>Fixed sending of uninitialized paddings which may contain some information. (Andrei Nigmatulin)</li>
    9009. 

  9009. <li>Fixed a bug in formatting timestamps when DST is active in the default timezone (Derick)</li>
    9010. 

  9010. <li>Fix integer overflow in printf(). (Stas, Maksymilian Aciemowicz)</li>
    9011. 

  9011. <li>Fixed potential memleak in stream filter parameter for zlib filter. (Greg)</li>
    9012. 

  9012. <li>Added Reflection API metadata for the methods of the DOM classes. (Sebastian)</li>
    9013. 

  9013. <li>Fixed weird behavior in CGI parameter parsing. (Dmitry, Hannes Magnusson)</li>
    9014. 

  9014. <li>Fixed a bug with PDO::FETCH_COLUMN|PDO::FETCH_GROUP mode when a column # by which to group by data is specified. (Ilia)</li>
    9015. 

  9015. <li>Fixed segfault in filter extension when using callbacks. (Arnar Mar Sig, Felipe)</li>
    9016. 

  9016. <li>Fixed faulty fix for bug <?php bugfix(40189); ?> (endless loop in zlib.inflate stream filter). (Greg)</li>
    9017. 

  9017. 

  9018. <li><?php bugfix(44742); ?> (timezone_offset_get() causes segmentation faults). (Derick)</li>
    9019. 

  9019. <li><?php bugfix(44720); ?> (Prevent crash within session_register()). (Scott)</li>
    9020. 

  9020. <li><?php bugfix(44703); ?> (htmlspecialchars() does not detect bad character set argument). (Andy Wharmby)</li>
    9021. 

  9021. <li><?php bugfix(44673); ?> (With CGI argv/argc starts from arguments, not from script) (Dmitry)</li>
    9022. 

  9022. <li><?php bugfix(44667); ?> (proc_open() does not handle pipes with the mode 'wb' correctly). (Jani)</li>
    9023. 

  9023. <li><?php bugfix(44663); ?> (Crash in imap_mail_compose if "body" parameter invalid). (Ilia)</li>
    9024. 

  9024. <li><?php bugfix(44650); ?> (escapeshellscmd() does not check arg count). (Ilia)</li>
    9025. 

  9025. <li><?php bugfix(44613); ?> (Crash inside imap_headerinfo()). (Ilia, jmessa)</li>
    9026. 

  9026. <li><?php bugfix(44603); ?> (Order issues with Content-Type/Length headers on POST). (Ilia)</li>
    9027. 

  9027. <li><?php bugfix(44594); ?> (imap_open() does not validate # of retries parameter). (Ilia)</li>
    9028. 

  9028. <li><?php bugfix(44591); ?> (imagegif's filename parameter). (Felipe)</li>
    9029. 

  9029. <li><?php bugfix(44557); ?> (Crash in imap_setacl when supplied integer as username) (Thomas Jarosch)</li>
    9030. 

  9030. <li><?php bugfix(44487); ?> (call_user_method_array issues a warning when throwing an exception). (David Soria Parra)</li>
    9031. 

  9031. <li><?php bugfix(44478); ?> (Inconsistent behaviour when assigning new nodes). (Rob, Felipe)</li>
    9032. 

  9032. <li><?php bugfix(44445); ?> (email validator does not handle domains starting/ending with a -). (Ilia)</li>
    9033. 

  9033. <li><?php bugfix(44440); ?> (st_blocks undefined under BeOS). (Felipe)</li>
    9034. 

  9034. <li><?php bugfix(44394); ?> (Last two bytes missing from output). (Felipe)</li>
    9035. 

  9035. <li><?php bugfix(44388); ?> (Crash inside exif_read_data() on invalid images) (Ilia)</li>
    9036. 

  9036. <li><?php bugfix(44373); ?> (PDO_OCI extension compile failed). (Felipe)</li>
    9037. 

  9037. <li><?php bugfix(44333); ?> (SEGFAULT when using mysql_pconnect() with client_flags). (Felipe)</li>
    9038. 

  9038. <li><?php bugfix(44306); ?> (Better detection of MIPS processors on Windows). (Ilia)</li>
    9039. 

  9039. <li><?php bugfix(44242); ?> (metaphone('CMXFXM') crashes PHP). (Felipe)</li>
    9040. 

  9040. <li><?php bugfix(44233); ?> (MSG_PEEK undefined under BeOS R5). (jonathonfreeman at gmail dot com, Ilia)</li>
    9041. 

  9041. <li><?php bugfix(44216); ?> (strftime segfaults on large negative value). (Derick)</li>
    9042. 

  9042. <li><?php bugfix(44209); ?> (strtotime() doesn't support 64 bit timestamps on 64 bit platforms). (Derick)</li>
    9043. 

  9043. <li><?php bugfix(44206); ?> (OCI8 selecting ref cursors leads to ORA-1000 maximum open cursors reached). (Oracle Corp.)</li>
    9044. 

  9044. <li><?php bugfix(44200); ?> (A crash in PDO when no bound targets exists and yet bound parameters are present). (Ilia)</li>
    9045. 

  9045. <li><?php bugfix(44197); ?> (socket array keys lost on socket_select). (Felipe)</li>
    9046. 

  9046. <li><?php bugfix(44191); ?> (preg_grep messes up array index). (Felipe)</li>
    9047. 

  9047. <li><?php bugfix(44189); ?> (PDO setAttribute() does not properly validate values for native numeric options). (Ilia)</li>
    9048. 

  9048. <li><?php bugfix(44184); ?> (Double free of loop-variable on exception). (Dmitry)</li>
    9049. 

  9049. <li><?php bugfix(44171); ?> (Invalid FETCH_COLUMN index does not raise an error). (Ilia)</li>
    9050. 

  9050. <li><?php bugfix(44166); ?> (Parameter handling flaw in PDO::getAvailableDrivers()). (Ilia)</li>
    9051. 

  9051. <li><?php bugfix(44159); ?> (Crash: $pdo->setAttribute(PDO::STATEMENT_ATTR_CLASS, NULL)). (Felipe)</li>
    9052. 

  9052. <li><?php bugfix(44152); ?> (Possible crash with syslog logging on ZTS builds). (Ilia)</li>
    9053. 

  9053. <li><?php bugfix(44141); ?> (private parent constructor callable through static function). (Dmitry)</li>
    9054. 

  9054. <li><?php bugfix(44113); ?> (OCI8 new collection creation can fail with OCI-22303). (Oracle Corp.)</li>
    9055. 

  9055. <li><?php bugfix(44069); ?> (Huge memory usage with concatenation using . instead of .=). (Dmitry)</li>
    9056. 

  9056. <li><?php bugfix(44046); ?> (crash inside array_slice() function with an invalid by-ref offset). (Ilia)</li>
    9057. 

  9057. <li><?php bugfix(44028); ?> (crash inside stream_socket_enable_crypto() when enabling encryption without crypto type). (Ilia)</li>
    9058. 

  9058. <li><?php bugfix(44018); ?> (RecursiveDirectoryIterator options inconsistancy). (Marcus)</li>
    9059. 

  9059. <li><?php bugfix(44008); ?> (OCI8 incorrect usage of OCI-Lob->close crashes PHP). (Oracle Corp.)</li>
    9060. 

  9060. <li><?php bugfix(43998); ?> (Two error messages returned for incorrect encoding for mb_strto[upper|lower]). (Rui)</li>
    9061. 

  9061. <li><?php bugfix(43994); ?> (mb_ereg 'successfully' matching incorrect). (Rui)</li>
    9062. 

  9062. <li><?php bugfix(43954); ?> (Memory leak when sending the same HTTP status code multiple times). (Scott)</li>
    9063. 

  9063. <li><?php bugfix(43927); ?> (koi8r is missing from html_entity_decode()). (andy at demos dot su, Tony)</li>
    9064. 

  9064. <li><?php bugfix(43912); ?> (Interbase column names are truncated to 31 characters). (Ilia)</li>
    9065. 

  9065. <li><?php bugfix(43875); ?> (Two error messages returned for $new and $flag argument in mysql_connect()). (Hannes)</li>
    9066. 

  9066. <li><?php bugfix(43863); ?> (str_word_count() breaks on cyrillic "ya" in locale cp1251). (phprus at gmail dot com, Tony)</li>
    9067. 

  9067. <li><?php bugfix(43841); ?> (mb_strrpos offset is byte count for negative values). (Rui)</li>
    9068. 

  9068. <li><?php bugfix(43840); ?> (mb_strpos bounds check is byte count rather than a character count). (Rui)</li>
    9069. 

  9069. <li><?php bugfix(43808); ?> (date_create never fails (even when it should)). (Derick)</li>
    9070. 

  9070. <li><?php bugfix(43793); ?> (zlib filter is unable to auto-detect gzip/zlib file headers). (Greg)</li>
    9071. 

  9071. <li><?php bugfix(43703); ?> (Signature compatibility check broken). (Dmitry)</li>
    9072. 

  9072. <li><?php bugfix(43677); ?> (Inconsistent behaviour of include_path set with php_value). (manuel at mausz dot at)</li>
    9073. 

  9073. <li><?php bugfix(43663); ?> (Extending PDO class with a __call() function doesn't work). (David Soria Parra)</li>
    9074. 

  9074. <li><?php bugfix(43647); ?> (Make FindFile use PATH_SEPARATOR instead of ";"). (Ilia)</li>
    9075. 

  9075. <li><?php bugfix(43635); ?> (mysql extension ingores INI settings on NULL values passed to mysql_connect()). (Ilia)</li>
    9076. 

  9076. <li><?php bugfix(43620); ?> (Workaround for a bug inside libcurl 7.16.2 that can result in a crash). (Ilia)</li>
    9077. 

  9077. <li><?php bugfix(43614); ?> (incorrect processing of numerical string keys of array in arbitrary serialized data). (Dmitriy Buldakov, Felipe)</li>
    9078. 

  9078. <li><?php bugfix(43606); ?> (define missing depencies of the exif extension). (crrodriguez at suse dot de)</li>
    9079. 

  9079. <li><?php bugfix(43589); ?> (a possible infinite loop in bz2_filter.c). (Greg)</li>
    9080. 

  9080. <li><?php bugfix(43580); ?> (removed bogus declaration of a non-existent php_is_url() function). (Ilia)</li>
    9081. 

  9081. <li><?php bugfix(43559); ?> (array_merge_recursive() doesn't behave as expected with duplicate NULL values). (Felipe, Tony)</li>
    9082. 

  9082. <li><?php bugfix(43533); ?> (escapeshellarg('') returns null). (Ilia)</li>
    9083. 

  9083. <li><?php bugfix(43527); ?> (DateTime created from a timestamp reports environment timezone). (Derick)</li>
    9084. 

  9084. <li><?php bugfix(43522); ?> (stream_get_line() eats additional characters). (Felipe, Ilia, Tony)</li>
    9085. 

  9085. <li><?php bugfix(43507); ?> (SOAPFault HTTP Status 500 - would like to be able to set the HTTP Status). (Dmitry)</li>
    9086. 

  9086. <li><?php bugfix(43505); ?> (Assign by reference bug). (Dmitry)</li>
    9087. 

  9087. <li><?php bugfix(43498); ?> (file_exists() on a proftpd server got SIZE not allowed in ASCII mode). (Ilia, crrodriguez at suse dot de)</li>
    9088. 

  9088. <li><?php bugfix(43497); ?> (OCI8 XML/getClobVal aka temporary LOBs leak UGA memory). (Chris)</li>
    9089. 

  9089. <li><?php bugfix(43495); ?> (array_merge_recursive() crashes with recursive arrays). (Ilia)</li>
    9090. 

  9090. <li><?php bugfix(43493); ?> (pdo_pgsql does not send username on connect when password is not available). (Ilia)</li>
    9091. 

  9091. <li><?php bugfix(43491); ?> (Under certain conditions, file_exists() never returns). (Dmitry)</li>
    9092. 

  9092. <li><?php bugfix(43483); ?> (get_class_methods() does not list all visible methods). (Dmitry)</li>
    9093. 

  9093. <li><?php bugfix(43482); ?> (array_pad() does not warn on very small pad numbers). (Ilia)</li>
    9094. 

  9094. <li><?php bugfix(43457); ?> (Prepared statement with incorrect parms doesn't throw exception with pdo_pgsql driver). (Ilia)</li>
    9095. 

  9095. <li><?php bugfix(43450); ?> (Memory leak on some functions with implicit object __toString() call). (David C.)</li>
    9096. 

  9096. <li><?php bugfix(43386); ?> (array_globals not reset to 0 properly on init). (Ilia)</li>
    9097. 

  9097. <li><?php bugfix(43377); ?> (PHP crashes with invalid argument for DateTimeZone). (Ilia)</li>
    9098. 

  9098. <li><?php bugfix(43373); ?> (pcntl_fork() should not raise E_ERROR on error). (Ilia)</li>
    9099. 

  9099. <li><?php bugfix(43364); ?> (recursive xincludes don't remove internal xml nodes properly). (Rob, patch from ddb@bitxtender.de)</li>
    9100. 

  9100. <li><?php bugfix(43301); ?> (mb_ereg*_replace() crashes when replacement string is invalid PHP expression and 'e' option is used). (Jani)</li>
    9101. 

  9101. <li><?php bugfix(43295); ?> (crash because of uninitialized SG(sapi_headers).mimetype). (Dmitry)</li>
    9102. 

  9102. <li><?php bugfix(43293); ?> (Multiple segfaults in getopt()). (Hannes)</li>
    9103. 

  9103. <li><?php bugfix(43279); ?> (pg_send_query_params() converts all elements in 'params' to strings). (Ilia)</li>
    9104. 

  9104. <li><?php bugfix(43276); ?> (Incomplete fix for bug <?php bugl(42739); ?>, mkdir() under safe_mode). (Ilia)</li>
    9105. 

  9105. <li><?php bugfix(43248); ?> (backward compatibility break in realpath()). (Dmitry)</li>
    9106. 

  9106. <li><?php bugfix(43221); ?> (SimpleXML adding default namespace in addAttribute). (Rob)</li>
    9107. 

  9107. <li><?php bugfix(43216); ?> (stream_is_local() returns false on "file://"). (Dmitry)</li>
    9108. 

  9108. <li><?php bugfix(43201); ?> (Crash on using uninitialized vals and __get/__set). (Dmitry)</li>
    9109. 

  9109. <li><?php bugfix(43182); ?> (file_put_contents() LOCK_EX does not work properly on file truncation). (Ilia)</li>
    9110. 

  9110. <li><?php bugfix(43175); ?> (__destruct() throwing an exception with __call() causes segfault). (Dmitry)</li>
    9111. 

  9111. <li><?php bugfix(43128); ?> (Very long class name causes segfault). (Dmitry)</li>
    9112. 

  9112. <li><?php bugfix(43105); ?> (PHP seems to fail to close open files). (Hannes)</li>
    9113. 

  9113. <li><?php bugfix(43092); ?> (curl_copy_handle() crashes with > 32 chars long URL). (Jani)</li>
    9114. 

  9114. <li><?php bugfix(43003); ?> (Invalid timezone reported for DateTime objects constructed using a timestamp). (Derick)</li>
    9115. 

  9115. <li><?php bugfix(42978); ?> (mismatch between number of bound params and values causes a crash in pdo_pgsql). (Ilia)</li>
    9116. 

  9116. <li><?php bugfix(42945); ?> (preg_split() swallows part of the string). (Nuno)</li>
    9117. 

  9117. <li><?php bugfix(42937); ?> (__call() method not invoked when methods are called on parent from child class). (Dmitry)</li>
    9118. 

  9118. <li><?php bugfix(42841); ?> (REF CURSOR and oci_new_cursor() crash PHP). (Chris)</li>
    9119. 

  9119. <li><?php bugfix(42838); ?> (Wrong results in array_diff_uassoc) (Felipe)</li>
    9120. 

  9120. <li><?php bugfix(42779); ?> (Incorrect forcing from HTTP/1.0 request to HTTP/1.1 response). (Ilia)</li>
    9121. 

  9121. <li><?php bugfix(42736); ?> (xmlrpc_server_call_method() crashes). (Tony)</li>
    9122. 

  9122. <li><?php bugfix(42692); ?> (Procedure 'int1' not present with doc/lit SoapServer). (Dmitry)</li>
    9123. 

  9123. <li><?php bugfix(42548); ?> (mysqli PROCEDURE calls can't return result sets). (Hartmut)</li>
    9124. 

  9124. <li><?php bugfix(42505); ?> (new sendmail default breaks on Netware platform) (Guenter Knauf)</li>
    9125. 

  9125. <li><?php bugfix(42369); ?> (Implicit conversion to string leaks memory). (David C., Rob).</li>
    9126. 

  9126. <li><?php bugfix(42272); ?> (var_export() incorrectly escapes char(0)). (Derick)</li>
    9127. 

  9127. <li><?php bugfix(42261); ?> (Incorrect lengths for date and boolean data types). (Ilia)</li>
    9128. 

  9128. <li><?php bugfix(42190); ?> (Constructing DateTime with TimeZone Indicator invalidates DateTimeZone). (Derick)</li>
    9129. 

  9129. <li><?php bugfix(42177); ?> (Warning "array_merge_recursive(): recursion detected" comes again...). (Felipe)</li>
    9130. 

  9130. <li><?php bugfix(41941); ?> (oci8 extension not lib64 savvy). (Chris)</li>
    9131. 

  9131. <li><?php bugfix(41828); ?> (Failing to call RecursiveIteratorIterator::__construct() causes a sefault). (Etienne)</li>
    9132. 

  9132. <li><?php bugfix(41599); ?> (setTime() fails after modify() is used). (Derick)</li>
    9133. 

  9133. <li><?php bugfix(41562); ?> (SimpleXML memory issue). (Rob)</li>
    9134. 

  9134. <li><?php bugfix(40013); ?> (php_uname() does not return nodename on Netware (Guenter Knauf)</li>
    9135. 

  9135. <li><?php bugfix(38468); ?> (Unexpected creation of cycle). (Dmitry)</li>
    9136. 

  9136. <li><?php bugfix(32979); ?> (OpenSSL stream-&gt;fd casts broken in 64-bit build) (stotty at tvnet dot hu)</li>
    9137. 

  9137. 

  9138. </ul>
    9139. 

  9139. 

  9140. <!-- }}} --></section>
    9141. 

  9141. 

  9142. <section class="version" id="5.2.5"><!-- {{{ 5.2.5 -->
    9143. 

  9143. <h3>Version 5.2.5</h3>
    9144. 

  9144. <?php release_date('08-Nov-2007'); ?>
    9145. 

  9145. <ul>
    9146. 

  9146. 	<li>Security Fixes
    9147. 

  9147. 		<ul>
    9148. 

  9148. 			<li>Fixed dl() to only accept filenames. reported by Laurent Gaffie.</li>
    9149. 

  9149. 			<li>Fixed dl() to limit argument size to MAXPATHLEN (CVE-2007-4887).</li>
    9150. 

  9150. 			<li>Fixed htmlentities/htmlspecialchars not to accept partial multibyte sequences.</li>
    9151. 

  9151. 			<li>Fixed possible triggering of buffer overflows inside glibc implementations of the fnmatch(), setlocale() and glob() functions. Reported by Laurent Gaffie.</li>
    9152. 

  9152. 			<li>Fixed "mail.force_extra_parameters" php.ini directive not to be modifiable in .htaccess due to the security implications reported by SecurityReason.</li>
    9153. 

  9153. 			<li><?php bugfix(42869); ?> (automatic session id insertion adds sessions id to non-local forms).</li>
    9154. 

  9154. 			<li><?php bugfix(41561); ?> (Values set with php_admin_* in httpd.conf can be overwritten with ini_set()).</li>
    9155. 

  9155. 		</ul>
    9156. 

  9156. 	</li>
    9157. 

  9157. 

  9158. <li>Upgraded PCRE to version 7.3 (Nuno)</li>
    9159. 

  9159. <li>Added optional parameter $provide_object to debug_backtrace(). (Sebastian)</li>
    9160. 

  9160. <li>Added alpha support for imagefilter() IMG_FILTER_COLORIZE. (Pierre)</li>
    9161. 

  9161. <li>Added ability to control memory consumption between request using ZEND_MM_COMPACT environment variable. (Dmitry)</li>
    9162. 

  9162. 

  9163. <li>Improved speed of array_intersect_key(), array_intersect_assoc(), array_uintersect_assoc(), array_diff_key(), array_diff_assoc() and array_udiff_assoc(). (Dmitry)</li>
    9164. 

  9164. 

  9165. <li>Fixed move_uploaded_file() to always set file permissions of resulting file according to UMASK. (Andrew Sitnikov)</li>
    9166. 

  9166. <li>Fixed possible crash in ext/soap because of uninitialized value. (Zdash Urf)</li>
    9167. 

  9167. <li>Fixed regression in glob() when enforcing safe_mode/open_basedir checks on paths containing '*'. (Ilia)</li>
    9168. 

  9168. <li>Fixed PDO crash when driver returns empty LOB stream. (Stas)</li>
    9169. 

  9169. <li>Fixed iconv_*() functions to limit argument sizes as workaround to libc bug (CVE-2007-4783, CVE-2007-4840 by Laurent Gaffie). (Christian Hoffmann, Stas)</li>
    9170. 

  9170. <li>Fixed missing brackets leading to build warning and error in the log. Win32 code. (Andrey)</li>
    9171. 

  9171. <li>Fixed leaks with multiple connects on one mysqli object. (Andrey)</li>
    9172. 

  9172. <li>Fixed endianness detection on MacOS when building universal binary. (Uwe Schindler, Christian Speich, Tony)</li>
    9173. 

  9173. <li>Fixed imagerectangle regression with 1x1 rectangle (libgd #106). (Pierre)</li>
    9174. 

  9174. 

  9175. <li><?php bugfix(43196); ?> (array_intersect_assoc() crashes with non-array input). (Jani)</li>
    9176. 

  9176. <li><?php bugfix(43139); ?> (PDO ignores ATTR_DEFAULT_FETCH_MODE in some cases with fetchAll()). (Ilia)</li>
    9177. 

  9177. <li><?php bugfix(43137); ?> (rmdir() and rename() do not clear statcache). (Jani)</li>
    9178. 

  9178. <li><?php bugfix(43130); ?> (Bound parameters cannot have - in their name). (Ilia)</li>
    9179. 

  9179. <li><?php bugfix(43099); ?> (XMLWriter::endElement() does not check # of params). (Ilia)</li>
    9180. 

  9180. <li><?php bugfix(43020); ?> (Warning message is missing with shuffle() and more than one argument). (Scott)</li>
    9181. 

  9181. <li><?php bugfix(42976); ?> (Crash when constructor for newInstance() or newInstanceArgs() fails) (Ilia)</li>
    9182. 

  9182. <li><?php bugfix(42943); ?> (ext/mssql: Move *timeout initialization from RINIT to connect time). (Ilia)</li>
    9183. 

  9183. <li><?php bugfix(42917); ?> (PDO::FETCH_KEY_PAIR doesn't work with setFetchMode). (Ilia)</li>
    9184. 

  9184. <li><?php bugfix(42890); ?> (Constant "LIST" defined by mysqlclient and c-client). (Andrey)</li>
    9185. 

  9185. <li><?php bugfix(42818); ?> ($foo = clone(array()); leaks memory). (Dmitry)</li>
    9186. 

  9186. <li><?php bugfix(42817); ?> (clone() on a non-object does not result in a fatal error). (Ilia)</li>
    9187. 

  9187. <li><?php bugfix(42785); ?> (json_encode() formats doubles according to locale rather  then following standard syntax). (Ilia)</li>
    9188. 

  9188. <li><?php bugfix(42783); ?> (pg_insert() does not accept an empty list for insertion). (Ilia)</li>
    9189. 

  9189. <li><?php bugfix(42773); ?> (WSDL error causes HTTP 500 Response). (Dmitry)</li>
    9190. 

  9190. <li><?php bugfix(42772); ?> (Storing $this in a static var fails while handling a cast to string). (Dmitry)</li>
    9191. 

  9191. <li><?php bugfix(42767); ?> (highlight_string() truncates trailing comment). (Ilia)</li>
    9192. 

  9192. <li><?php bugfix(42739); ?> (mkdir() doesn't like a trailing slash when safe_mode is enabled). (Ilia)</li>
    9193. 

  9193. <li><?php bugfix(42703); ?> (Exception raised in an iterator::current() causes segfault in FilterIterator) (Marcus)</li>
    9194. 

  9194. <li><?php bugfix(42699); ?> (PHP_SELF duplicates path). (Dmitry)</li>
    9195. 

  9195. <li><?php bugfix(42654); ?> (RecursiveIteratorIterator modifies only part of leaves) (Marcus)</li>
    9196. 

  9196. <li><?php bugfix(42643); ?> (CLI segfaults if using ATTR_PERSISTENT). (Ilia)</li>
    9197. 

  9197. <li><?php bugfix(42637); ?> (SoapFault : Only http and https are allowed). (Bill Moran)</li>
    9198. 

  9198. <li><?php bugfix(42629); ?> (Dynamically loaded PHP extensions need symbols exported on MacOSX). (jdolecek at NetBSD dot org)</li>
    9199. 

  9199. <li><?php bugfix(42627); ?> (bz2 extension fails to build with -fno-common). (dolecek at netbsd dot org)</li>
    9200. 

  9200. <li><?php bugfix(42596); ?> (session.save_path MODE option does not work). (Ilia)</li>
    9201. 

  9201. <li><?php bugfix(42590); ?> (Make the engine recognize \v and \f escape sequences). (Ilia)</li>
    9202. 

  9202. <li><?php bugfix(42587); ?> (behavior change regarding symlinked .php files). (Dmitry)</li>
    9203. 

  9203. <li><?php bugfix(42579); ?> (apache_reset_timeout() does not exist). (Jani)</li>
    9204. 

  9204. <li><?php bugfix(42549); ?> (ext/mysql failed to compile with libmysql 3.23). (Scott)</li>
    9205. 

  9205. <li><?php bugfix(42523); ?> (PHP_SELF duplicates path). (Dmitry)</li>
    9206. 

  9206. <li><?php bugfix(42512); ?> (ip2long('255.255.255.255') should return 4294967295 on 64-bit PHP). (Derick)</li>
    9207. 

  9207. <li><?php bugfix(42506); ?> (php_pgsql_convert() timezone parse bug) (nonunnet at gmail dot com, Ilia)</li>
    9208. 

  9208. <li><?php bugfix(42462); ?> (Segmentation when trying to set an attribute in a DOMElement). (Rob)</li>
    9209. 

  9209. <li><?php bugfix(42453); ?> (CGI SAPI does not shut down cleanly with -i/-m/-v cmdline options). (Dmitry)</li>
    9210. 

  9210. <li><?php bugfix(42452); ?> (PDO classes do not expose Reflection API information). (Hannes)</li>
    9211. 

  9211. <li><?php bugfix(42468); ?> (Write lock on file_get_contents fails when using a compression stream). (Ilia)</li>
    9212. 

  9212. <li><?php bugfix(42488); ?> (SoapServer reports an encoding error and the error itself breaks). (Dmitry)</li>
    9213. 

  9213. <li><?php bugfix(42378); ?> (mysqli_stmt_bind_result memory exhaustion). (Andrey)</li>
    9214. 

  9214. <li><?php bugfix(42359); ?> (xsd:list type not parsed). (Dmitry)</li>
    9215. 

  9215. <li><?php bugfix(42326); ?> (SoapServer crash). (Dmitry)</li>
    9216. 

  9216. <li><?php bugfix(42214); ?> (SoapServer sends clients internal PHP errors). (Dmitry)</li>
    9217. 

  9217. <li><?php bugfix(42189); ?> (xmlrpc_set_type() crashes php on invalid datetime values). (Ilia)</li>
    9218. 

  9218. <li><?php bugfix(42139); ?> (XMLReader option constants are broken using XML()). (Rob)</li>
    9219. 

  9219. <li><?php bugfix(42086); ?> (SoapServer return Procedure '' not present for WSIBasic compliant wsdl). (Dmitry)</li>
    9220. 

  9220. <li><?php bugfix(41822); ?> (Relative includes broken when getcwd() fails). (Ab5602, Jani)</li>
    9221. 

  9221. <li><?php bugfix(39651); ?> (proc_open() append mode doesn't work on windows). (Nuno)</li>
    9222. 

    9223. 

  9223. </ul>
    9224. 

  9224. 

  9225. <!-- }}} --></section>
    9226. 

  9226. 

  9227. <section class="version" id="5.2.4"><!-- {{{ 5.2.4 -->
    9228. 

  9228. <h3>Version 5.2.4</h3>
    9229. 

  9229. <?php release_date('30-Aug-2007'); ?>
    9230. 

  9230. <ul>
    9231. 

  9231. <li>Security Fixes
    9232. 

  9232. 	<ul>
    9233. 

  9233. 		<li>Fixed "Floating point exception" inside wordwrap(). (Mattias Bengtsson, Ilia)</li>
    9234. 

  9234. 		<li>Fixed several integer overflows in ImageCreate(), ImageCreateTrueColor(), ImageCopyResampled() and ImageFilledPolygon() reported by Mattias Bengtsson. (Tony)</li>
    9235. 

  9235. 		<li>Fixed size calculation in chunk_split(). (Stas)</li>
    9236. 

  9236. 		<li>Fixed integer overflow in str[c]spn(). (Stas)</li>
    9237. 

  9237. 		<li>Fixed money_format() not to accept multiple %i or %n tokens. (Stas, Ilia)</li>
    9238. 

  9238. 		<li>Fixed zend_alter_ini_entry() memory_limit interruption vulnerability. (Ilia)</li>
    9239. 

  9239. 		<li>Fixed INFILE LOCAL option handling with MySQL extensions not to be allowed when open_basedir or safe_mode is active. (Stas)</li>
    9240. 

  9240. 		<li>Fixed session.save_path and error_log values to be checked against open_basedir and safe_mode (CVE-2007-3378) (Stas, Maksymilian Arciemowicz)</li>
    9241. 

  9241. 		<li>Fixed possible invalid read in glob() win32 implementation (CVE-2007-3806). (Tony)</li>
    9242. 

  9242. 		<li>Improved fix for MOPB-03-2007. (Ilia)</li>
    9243. 

  9243. 		<li>Corrected fix for CVE-2007-2872. (Ilia)</li>
    9244. 

  9244. 	</ul>
    9245. 

  9245. </li>
    9246. 

  9246. 

  9247. <li>Removed --enable-versioning configure option. (Jani)</li>
    9248. 

  9248. 

  9249. <li>Upgraded PCRE to version 7.2 (Nuno)</li>
    9250. 

  9250. <li>Updated timezone database to version 2007.6. (Derick)</li>
    9251. 

  9251. 

  9252. <li>Improved openssl_x509_parse() to return extensions in readable form. (Dmitry)</li>
    9253. 

  9253. 

  9254. <li>Enabled changing the size of statement cache for non-persistent OCI8 connections. (Chris Jones, Tony)</li>
    9255. 

  9255. 

  9256. <li>Changed display_errors php.ini option to accept stderr as value which makes the error messages to be outputted to STDERR instead of STDOUT with CGI and CLI SAPIs (<?php bugl(22839); ?>). (Jani)</li>
    9257. 

  9257. <li>Changed error handler to send HTTP 500 instead of blank page on PHP errors. (Dmitry, Andrei Nigmatulin)</li>
    9258. 

  9258. <li>Changed mail() function to be always available. (Johannes)</li>
    9259. 

  9259. 

  9260. <li>Added check for unknown options passed to configure. (Jani)</li>
    9261. 

  9261. <li>Added persistent connection status checker to pdo_pgsql. (Elvis Pranskevichus, Ilia)</li>
    9262. 

  9262. <li>Added support for ATTR_TIMEOUT inside pdo_pgsql driver. (Ilia)</li>
    9263. 

  9263. <li>Added php_ini_loaded_file() function which returns the path to the actual php.ini in use. (Jani)</li>
    9264. 

  9264. <li>Added GD version constants GD_MAJOR_VERSION, GD_MINOR_VERSION GD_RELEASE_VERSION, GD_EXTRA_VERSION and GD_VERSION_STRING. (Pierre)</li>
    9265. 

  9265. <li>Added missing open_basedir checks to CGI. (anight at eyelinkmedia dot com, Tony)</li>
    9266. 

  9266. <li>Added missing format validator to unpack() function. (Ilia)</li>
    9267. 

  9267. <li>Added missing error check inside bcpowmod(). (Ilia)</li>
    9268. 

  9268. <li>Added CURLOPT_PRIVATE &amp; CURLINFO_PRIVATE constants.  (Andrey A. Belashkov, Tony)</li>
    9269. 

  9269. <li>Added missing MSG_EOR and MSG_EOF constants to sockets extension. (Jani)</li>
    9270. 

  9270. <li>Added PCRE_VERSION constant. (Tony)</li>
    9271. 

  9271. <li>Added ReflectionExtension::info() function to print the phpinfo() block for an extension. (Johannes)</li>
    9272. 

  9272. 

  9273. <li>Implemented FR <?php bugl(41884); ?> (ReflectionClass::getDefaultProperties() does not handle static attributes). (Tony)</li>
    9274. 

  9274. 

  9275. <li>Fixed possible crash in imagepsloadfont(), work around a bug in the pslib on Windows. (Pierre)</li>
    9276. 

  9276. <li>Fixed oci8 and PDO_OCI extensions to allow configuring with Oracle 11g client libraries. (Chris Jones)</li>
    9277. 

  9277. <li>Fixed EOF handling in case of reading from file opened in write only mode. (Dmitry)</li>
    9278. 

  9278. <li>Fixed var_export() to use the new H modifier so that it can generate parseable PHP code for floats, independent of the locale. (Derick)</li>
    9279. 

  9279. <li>Fixed regression introduced by the fix for the libgd bug #74. (Pierre)</li>
    9280. 

  9280. <li>Fixed SimpleXML's behavior when used with empty(). (Sara)</li>
    9281. 

  9281. <li>Fixed crash in OpenSSL extension because of non-string passphrase. (Dmitry)</li>
    9282. 

  9282. 

  9283. <li><?php peclbugfix(11345); ?> (PDO_OCI crash after National language Support &quot;NLS&quot; environment initialization error). (Chris Jones)</li>
    9284. 

  9284. <li><?php peclbugfix(11216); ?> (crash in ZipArchive::addEmptyDir when a directory already exists). (Pierre)</li>
    9285. 

  9285. 

  9286. <li><?php bugfix(42368); ?> (Incorrect error message displayed by pg_escape_string). (Ilia)</li>
    9287. 

  9287. <li><?php bugfix(42365); ?> (glob() crashes and/or accepts way too many flags). (Jani)</li>
    9288. 

  9288. <li><?php bugfix(42364); ?> (Crash when using getRealPath with DirectoryIterator). (Johannes)</li>
    9289. 

  9289. <li><?php bugfix(42292); ?> ($PHP_CONFIG not set for phpized builds). (Jani)</li>
    9290. 

  9290. <li><?php bugfix(42261); ?> (header wrong for date field). (roberto at spadim dot com dot br, Ilia)</li>
    9291. 

  9291. <li><?php bugfix(42259); ?> (SimpleXMLIterator loses ancestry). (Rob)</li>
    9292. 

  9292. <li><?php bugfix(42247); ?> (ldap_parse_result() not defined under win32). (Jani)</li>
    9293. 

  9293. <li><?php bugfix(42243); ?> (copy() does not output an error when the first arg is a dir). (Ilia)</li>
    9294. 

  9294. <li><?php bugfix(42242); ?> (sybase_connect() crashes). (Ilia)</li>
    9295. 

  9295. <li><?php bugfix(42237); ?> (stream_copy_to_stream returns invalid values for mmaped streams). (andrew dot minerd at sellingsource dot com, Ilia)</li>
    9296. 

  9296. <li><?php bugfix(42233); ?> (Problems with æøå in extract()). (Jani)</li>
    9297. 

  9297. <li><?php bugfix(42222); ?> (possible buffer overflow in php_openssl_make_REQ). (Pierre)</li>
    9298. 

  9298. <li><?php bugfix(42211); ?> (property_exists() fails to find protected properties from a parent class). (Dmitry)</li>
    9299. 

  9299. <li><?php bugfix(42208); ?> (substr_replace() crashes when the same array is passed more than once). (crrodriguez at suse dot de, Ilia)</li>
    9300. 

  9300. <li><?php bugfix(42198); ?> (SCRIPT_NAME and PHP_SELF truncated when inside a userdir and using PATH_INFO). (Dmitry)</li>
    9301. 

  9301. <li><?php bugfix(42195); ?> (C++ compiler required always). (Jani)</li>
    9302. 

  9302. <li><?php bugfix(42183); ?> (classmap causes crash in non-wsdl mode). (Dmitry)</li>
    9303. 

  9303. <li><?php bugfix(42173); ?> (oci8 INTERVAL and TIMESTAMP type fixes). (Chris)</li>
    9304. 

  9304. <li><?php bugfix(42151); ?> (__destruct functions not called after catching a SoapFault exception). (Dmitry)</li>
    9305. 

  9305. <li><?php bugfix(42142); ?> (substr_replace() returns FALSE when length &gt; string length). (Ilia) </li>
    9306. 

  9306. <li><?php bugfix(42135); ?> (Second call of session_start() causes creation of SID). (Ilia)</li>
    9307. 

  9307. <li><?php bugfix(42134); ?> (oci_error() returns false after oci_new_collection() fails). (Tony)</li>
    9308. 

  9308. <li><?php bugfix(42119); ?> (array_push($arr,&amp;$obj) doesn't work with zend.ze1_compatibility_mode On). (Dmitry)</li>
    9309. 

  9309. <li><?php bugfix(42117); ?> (bzip2.compress loses data in internal buffer). (Philip, Ilia)</li>
    9310. 

  9310. <li><?php bugfix(42112); ?> (deleting a node produces memory corruption). (Rob)</li>
    9311. 

  9311. <li><?php bugfix(42107); ?> (sscanf broken when using %2$s format parameters). (Jani)</li>
    9312. 

  9312. <li><?php bugfix(42090); ?> (json_decode causes segmentation fault). (Hannes)</li>
    9313. 

  9313. <li><?php bugfix(42082); ?> (NodeList length zero should be empty). (Hannes)</li>
    9314. 

  9314. <li><?php bugfix(42072); ?> (No warning message for clearstatcache() with arguments). (Ilia)</li>
    9315. 

  9315. <li><?php bugfix(42071); ?> (ini scanner allows using NULL as option name). (Jani)</li>
    9316. 

  9316. <li><?php bugfix(42027); ?> (is_file() / is_dir() matches file/dirnames with wildcard char or trailing slash in Windows). (Dmitry)</li>
    9317. 

  9317. <li><?php bugfix(42019); ?> (configure option --with-adabas=DIR does not work). (Jani)</li>
    9318. 

  9318. <li><?php bugfix(42015); ?> (ldap_rename(): server error &quot;DSA is unwilling to perform&quot;). (bob at mroczka dot com, Jani)</li>
    9319. 

  9319. <li><?php bugfix(42009); ?> (is_a() and is_subclass_of() should NOT call autoload, in the same way as &quot;instanceof&quot; operator). (Dmitry)</li>
    9320. 

  9320. <li><?php bugfix(41989); ?> (move_uploaded_file() &amp; relative path in ZTS mode). (Tony)</li>
    9321. 

  9321. <li><?php bugfix(41984); ?> (Hangs on large SoapClient requests). (Dmitry)</li>
    9322. 

  9322. <li><?php bugfix(41983); ?> (Error Fetching http headers terminated by '\n'). (Dmitry)</li>
    9323. 

  9323. <li><?php bugfix(41973); ?> (--with-ldap=shared fails with LDFLAGS=&quot;-Wl,--as-needed&quot;). (Nuno)</li>
    9324. 

  9324. <li><?php bugfix(41971); ?> (PDOStatement::fetch and PDOStatement::setFetchMode causes unexpected behavior). (Ilia)</li>
    9325. 

  9325. <li><?php bugfix(41964); ?> (strtotime returns a timestamp for non-time string of pattern '(A|a) .+'). (Derick)</li>
    9326. 

  9326. <li><?php bugfix(41961); ?> (Ensure search for hidden private methods does not stray from class hierarchy). (robin_fernandes at uk dot ibm dot com)</li>
    9327. 

  9327. <li><?php bugfix(41947); ?> (SimpleXML incorrectly registers empty strings as  namespaces). (Rob)</li>
    9328. 

  9328. <li><?php bugfix(41929); ?> (Foreach on object does not iterate over all visible properties). (Dmitry)</li>
    9329. 

  9329. <li><?php bugfix(41919); ?> (crash in string to array conversion). (judas dot iscariote at gmail dot com, Ilia)</li>
    9330. 

  9330. <li><?php bugfix(41909); ?> (var_export() is locale sensitive when exporting float values). (Derick)</li>
    9331. 

  9331. <li><?php bugfix(41908); ?> (CFLAGS=&quot;-Os&quot; ./configure --enable-debug fails).  (christian at hoffie dot info, Tony) </li>
    9332. 

  9332. <li><?php bugfix(41904); ?> (proc_open(): empty env array should cause empty environment to be passed to process). (Jani)</li>
    9333. 

  9333. <li><?php bugfix(41867); ?> (SimpleXML: getName is broken). (Rob)</li>
    9334. 

  9334. <li><?php bugfix(41865); ?> (fputcsv(): 2nd parameter is not optional). (Jani)</li>
    9335. 

  9335. <li><?php bugfix(41861); ?> (SimpleXML: getNamespaces() returns the namespaces of  a node's siblings). (Rob)</li>
    9336. 

  9336. <li><?php bugfix(41845); ?> (pgsql extension does not compile with PostgreSQL &lt;7.4). (Ilia)</li>
    9337. 

  9337. <li><?php bugfix(41844); ?> (Format returns incorrect number of digits for negative years -0001 to -0999). (Derick)</li>
    9338. 

  9338. <li><?php bugfix(41842); ?> (Cannot create years &lt; 0100 &amp; negative years with date_create or new DateTime). (Derick)</li>
    9339. 

  9339. <li><?php bugfix(41833); ?> (addChild() on a non-existent node, no node created,  getName() segfaults). (Rob)</li>
    9340. 

  9340. <li><?php bugfix(41831); ?> (pdo_sqlite prepared statements convert resources to strings). (Ilia)</li>
    9341. 

  9341. <li><?php bugfix(41815); ?> (Concurrent read/write fails when EOF is reached). (Sascha)</li>
    9342. 

  9342. <li><?php bugfix(41813); ?> (segmentation fault when using string offset as an object). (judas dot iscariote at gmail dot com, Tony)</li>
    9343. 

  9343. <li><?php bugfix(41795); ?> (checkdnsrr does not support DNS_TXT type).  (lucas at facebook dot com, Tony)</li>
    9344. 

  9344. <li><?php bugfix(41773); ?> (php_strip_whitespace() sends headers with errors  suppressed). (Tony)</li>
    9345. 

  9345. <li><?php bugfix(41770); ?> (SSL: fatal protocol error due to buffer issues). (Ilia)</li>
    9346. 

  9346. <li><?php bugfix(41765); ?> (Recode crashes/does not work on amd64).  (nexus at smoula dot net, Stas)</li>
    9347. 

  9347. <li><?php bugfix(41724); ?> (libxml_get_last_error() - errors service request scope). (thekid at php dot net, Ilia)</li>
    9348. 

  9348. <li><?php bugfix(41717); ?> (imagepolygon does not respect thickness). (Pierre)</li>
    9349. 

  9349. <li><?php bugfix(41713); ?> (Persistent memory consumption on win32 since 5.2). (Dmitry)</li>
    9350. 

  9350. <li><?php bugfix(41711); ?> (NULL temporary lobs not supported in OCI8).  (Chris Jones, Tony)</li>
    9351. 

  9351. <li><?php bugfix(41709); ?> (strtotime() does not handle 00.00.0000). (Derick)</li>
    9352. 

  9352. <li><?php bugfix(41698); ?> (float parameters truncated to integer in prepared  statements). (Ilia)</li>
    9353. 

  9353. <li><?php bugfix(41692); ?> (ArrayObject shows weird behavior in respect to  inheritance). (Tony)</li>
    9354. 

  9354. <li><?php bugfix(41691); ?> (ArrayObject::exchangeArray hangs Apache). (Tony)</li>
    9355. 

  9355. <li><?php bugfix(41686); ?> (Omitting length param in array_slice not possible). (Ilia)</li>
    9356. 

  9356. <li><?php bugfix(41685); ?> (array_push() fails to warn when next index is already occupied). (Ilia)</li>
    9357. 

  9357. <li><?php bugfix(41655); ?> (open_basedir bypass via glob()). (Ilia)</li>
    9358. 

  9358. <li><?php bugfix(41640); ?> (get_class_vars produces error on class constants). (Johannes)</li>
    9359. 

  9359. <li><?php bugfix(41635); ?> (SoapServer and zlib.output_compression with FastCGI result in major slowdown). (Dmitry)</li>
    9360. 

  9360. <li><?php bugfix(41633); ?> (Crash instantiating classes with self-referencing constants). (Dmitry)</li>
    9361. 

  9361. <li><?php bugfix(41630); ?> (segfault when an invalid color index is present in the image data). (Reported by Elliot wccoder@gmail dot com) (Pierre)</li>
    9362. 

  9362. <li><?php bugfix(41628); ?> (PHP settings leak between Virtual Hosts in Apache 1.3). (Scott, manuel at mausz dot at)</li>
    9363. 

  9363. <li><?php bugfix(41608); ?> (segfault on a weird code with objects and switch()).  (Tony)</li>
    9364. 

  9364. <li><?php bugfix(41600); ?> (url rewriter tags doesn't work with namespaced tags). (Ilia)</li>
    9365. 

  9365. <li><?php bugfix(41596); ?> (Fixed a crash inside pdo_pgsql on some non-well-formed SQL queries). (Ilia)</li>
    9366. 

  9366. <li><?php bugfix(41594); ?> (OCI8 statement cache is flushed too frequently). (Tony)</li>
    9367. 

  9367. <li><?php bugfix(41582); ?> (SimpleXML crashes when accessing newly created element). (Tony)</li>
    9368. 

  9368. <li><?php bugfix(41576); ?> (configure failure when using --without-apxs or some other SAPIs disabling options). (Jani)</li>
    9369. 

  9369. <li><?php bugfix(41567); ?> (json_encode() double conversion is inconsistent with PHP). (Lucas, Ilia)</li>
    9370. 

  9370. <li><?php bugfix(41566); ?> (SOAP Server not properly generating href attributes). (Dmitry)</li>
    9371. 

  9371. <li><?php bugfix(41555); ?> (configure failure: regression caused by fix for <?php bugl(41265); ?>). (Jani)</li>
    9372. 

  9372. <li><?php bugfix(41527); ?> (WDDX deserialize numeric string array key). (Matt, Ilia)</li>
    9373. 

  9373. <li><?php bugfix(41523); ?> (strtotime('0000-00-00 00:00:00') is parsed as 1999-11-30). (Derick)</li>
    9374. 

  9374. <li><?php bugfix(41518); ?> (file_exists() warns of open_basedir restriction on  non-existent file). (Tony)</li>
    9375. 

  9375. <li><?php bugfix(41445); ?> (parse_ini_file() has a problem with certain types of  integer as sections). (Tony)</li>
    9376. 

  9376. <li><?php bugfix(41433); ?> (DBA: configure fails to include correct db.h for db4). (Jani)</li>
    9377. 

  9377. <li><?php bugfix(41372); ?> (Internal pointer of source array resets during array copying). (Dmitry)</li>
    9378. 

  9378. <li><?php bugfix(41350); ?> (my_thread_global_end() error during request shutdown on Windows). (Scott, Andrey)</li>
    9379. 

  9379. <li><?php bugfix(41278); ?> (get_loaded_extensions() should list Zend extensions). (Johannes)</li>
    9380. 

  9380. <li><?php bugfix(41127); ?> (Memory leak in ldap_{first|next}_attribute functions). (Jani)</li>
    9381. 

  9381. <li><?php bugfix(40757); ?> (get_object_vars get nothing in child class). (Dmitry)</li>
    9382. 

  9382. <li><?php bugfix(40705); ?> (Iterating within function moves original array pointer). (Dmitry)</li>
    9383. 

  9383. <li><?php bugfix(40509); ?> (key() function changed behaviour if global array is used within function). (Dmitry)</li>
    9384. 

  9384. <li><?php bugfix(40419); ?> (Trailing slash in CGI request does not work). (Dmitry)</li>
    9385. 

  9385. <li><?php bugfix(39330); ?> (apache2handler does not call shutdown actions before  apache child die). (isk at ecommerce dot com, Gopal, Tony)</li>
    9386. 

  9386. <li><?php bugfix(39291); ?> (ldap_sasl_bind() misses the sasl_authc_id parameter). (diafour at gmail dot com, Jani)</li>
    9387. 

  9387. <li><?php bugfix(37715); ?> (array pointers resetting on copy). (Dmitry)</li>
    9388. 

  9388. <li><?php bugfix(37273); ?> (Symlinks and mod_files session handler allow open_basedir bypass). (Ilia)</li>
    9389. 

  9389. <li><?php bugfix(36492); ?> (Userfilters can leak buckets). (Sara)</li>
    9390. 

  9390. <li>Fixed bugs <?php bugl(36796); ?>, <?php bugl(36918); ?>, <?php bugl(41371); ?> (stream_set_blocking() does not work). (Jani)</li>
    9391. 

  9391. <li><?php bugfix(35981); ?> (pdo-pgsql should not use pkg-config when not present). (Jani)</li>
    9392. 

  9392. <li><?php bugfix(31892); ?> (PHP_SELF incorrect without cgi.fix_pathinfo, but turning on screws up PATH_INFO). (Dmitry)</li>
    9393. 

  9393. <li><?php bugfix(21197); ?> (socket_read() outputs error with PHP_NORMAL_READ). (Nuno, Jani)</li>
    9394. 

  9394. 

  9395. </ul>
    9396. 

  9396. 

  9397. <!-- }}} --></section>
    9398. 

  9398. 

  9399. <section class="version" id="5.2.3"><!-- {{{ 5.2.3 -->
    9400. 

  9400. <h3>Version 5.2.3</h3>
    9401. 

  9401. <?php release_date('31-May-2007'); ?>
    9402. 

  9402. <ul>
    9403. 

  9403. <li>Security Fixes
    9404. 

  9404. 	<ul>
    9405. 

  9405. 		<li>Fixed an integer overflow inside chunk_split() (by Gerhard Wagner, CVE-2007-2872)</li>
    9406. 

  9406. 		<li>Fixed possible infinite loop in imagecreatefrompng. (by Xavier Roche, CVE-2007-2756)</li>
    9407. 

  9407. 		<li>Fixed ext/filter Email Validation Vulnerability (MOPB-45 by Stefan Esser, CVE-2007-1900)</li>
    9408. 

  9408. 		<li><?php bugfix(41492); ?> (open_basedir/safe_mode bypass inside realpath()) (by bugs dot php dot net at chsc dot dk)</li>
    9409. 

  9409. 		<li>Improved fix for CVE-2007-1887 to work with non-bundled sqlite2 lib.</li>
    9410. 

  9410. 		<li>Added mysql_set_charset() to allow runtime altering of connection encoding.</li>
    9411. 

  9411. 	</ul>
    9412. 

  9412. </li>
    9413. 

  9413. 

  9414. <li>Changed CGI install target to php-cgi and 'make install' to install CLI when CGI is selected. (Jani)</li>
    9415. 

  9415. <li>Changed JSON maximum nesting depth from 20 to 128. (Rasmus)</li>
    9416. 

  9416. 

  9417. <li>Improved compilation of heredocs and interpolated strings. (Matt, Dmitry)</li>
    9418. 

  9418. <li>Optimized out a couple of per-request syscalls. (Rasmus)</li>
    9419. 

  9419. <li>Optimized digest generation in md5() and sha1() functions. (Ilia)</li>
    9420. 

  9420. <li>Upgraded bundled SQLite 3 to version 3.3.17. (Ilia)</li>
    9421. 

  9421. 

  9422. <li>Added "max_input_nesting_level" php.ini option to limit nesting level of input variables. Fix for MOPB-03-2007. (Stas)</li>
    9423. 

  9423. <li>Added a 4th parameter flag to htmlspecialchars() and htmlentities() that makes the function not encode existing html entities. (Ilia)</li>
    9424. 

  9424. <li>Added PDO::FETCH_KEY_PAIR mode that will fetch a 2 column result set into an associated array. (Ilia)</li>
    9425. 

  9425. <li>Added CURLOPT_TIMEOUT_MS and CURLOPT_CONNECTTIMEOUT_MS cURL constants. (Sara)</li>
    9426. 

  9426. <li>Added --ini switch to CLI that prints out configuration file names. (Marcus)</li>
    9427. 

  9427. 

  9428. <li>Implemented FR <?php bugl(41416); ?> (getColumnMeta() should also return table name). (Tony)</li>
    9429. 

  9429. 

  9430. <li>Fixed filetype() and linkinfo() processing of symlinks on ZTS systems. (Oliver Block, Tony, Dmitry)</li>
    9431. 

  9431. <li>Fixed SOAP extension's handler() to work even when "always_populate_raw_post_data" is off. (Ilia)</li>
    9432. 

  9432. <li>Fixed altering $this via argument named "this". (Dmitry)</li>
    9433. 

  9433. <li>Fixed PHP CLI usage of php.ini from the binary location. (Hannes)</li>
    9434. 

  9434. <li>Fixed segfault in strripos(). (Tony, Joxean Koret)</li>
    9435. 

  9435. <li>Fixed gd build when used with freetype 1.x (Pierre, Tony)</li>
    9436. 

  9436. <li><?php bugfix(41525); ?> (ReflectionParameter::getPosition() not available). (Marcus)</li>
    9437. 

  9437. <li><?php bugfix(41511); ?> (Compile failure under IRIX 6.5.30 building md5.c). (Jani)</li>
    9438. 

  9438. <li><?php bugfix(41504); ?> (json_decode() incorrectly decodes JSON arrays with empty string keys). (Ilia)</li>
    9439. 

  9439. <li><?php bugfix(41477); ?> (no arginfo about SoapClient::__soapCall()). (Ilia)</li>
    9440. 

  9440. <li><?php bugfix(41455); ?> (ext/dba/config.m4 pollutes global $LIBS and $LDFLAGS).  (mmarek at suse dot cz, Tony)</li>
    9441. 

  9441. <li><?php bugfix(41442); ?> (imagegd2() under output control). (Tony)</li>
    9442. 

  9442. <li><?php bugfix(41430); ?> (Fatal error with negative values of maxlen parameter of  file_get_contents()). (Tony)</li>
    9443. 

  9443. <li><?php bugfix(41423); ?> (PHP assumes wrongly that certain ciphers are enabled in  OpenSSL). (Pierre)</li>
    9444. 

  9444. <li><?php bugfix(41421); ?> (Uncaught exception from a stream wrapper segfaults).  (Tony, Dmitry)</li>
    9445. 

  9445. <li><?php bugfix(41403); ?> (json_decode cannot decode floats if localeconv  decimal_point is not '.'). (Tony)</li>
    9446. 

  9446. <li><?php bugfix(41401); ?> (wrong unary operator precedence). (Stas)</li>
    9447. 

  9447. <li><?php bugfix(41394); ?> (dbase_create creates file with corrupted header). (Tony)</li>
    9448. 

  9448. <li><?php bugfix(41390); ?> (Clarify error message with invalid protocol scheme). (Scott)</li>
    9449. 

  9449. <li><?php bugfix(41378); ?> (fastcgi protocol lacks support for Reason-Phrase in  "Status:" header). (anight at eyelinkmedia dot com, Dmitry)</li>
    9450. 

  9450. <li><?php bugfix(41374); ?> (whole text concats values of wrong nodes). (Rob)</li>
    9451. 

  9451. <li><?php bugfix(41358); ?> (configure cannot determine SSL lib with libcurl >= 7.16.2). (Mike)</li>
    9452. 

  9452. <li><?php bugfix(41353); ?> (crash in openssl_pkcs12_read() on invalid input). (Ilia)</li>
    9453. 

  9453. <li><?php bugfix(41351); ?> (Invalid opcode with foreach ($a[] as $b)). (Dmitry, Tony)</li>
    9454. 

  9454. <li><?php bugfix(41347); ?> (checkdnsrr() segfaults on empty hostname). (Scott)</li>
    9455. 

  9455. <li><?php bugfix(41337); ?> (WSDL parsing doesn't ignore non soap bindings). (Dmitry)</li>
    9456. 

  9456. <li><?php bugfix(41326); ?> (Writing empty tags with Xmlwriter::WriteElement[ns]) (Pierre)</li>
    9457. 

  9457. <li><?php bugfix(41321); ?> (downgrade read errors in getimagesize() to E_NOTICE). (Ilia)</li>
    9458. 

  9458. <li><?php bugfix(41304); ?> (compress.zlib temp files left). (Dmitry)</li>
    9459. 

  9459. <li><?php bugfix(41293); ?> (Fixed creation of HTTP_RAW_POST_DATA when there is no default post handler). (Ilia)</li>
    9460. 

  9460. <li><?php bugfix(41291); ?> (FastCGI does not set SO_REUSEADDR).  (fmajid at kefta dot com, Dmitry)</li>
    9461. 

  9461. <li><?php bugfix(41287); ?> (Namespace functions don't allow xmlns definition to be  optional). (Rob)</li>
    9462. 

  9462. <li><?php bugfix(41283); ?> (Bug with deserializing array key that are doubles or floats in wddx). (Ilia)</li>
    9463. 

  9463. <li><?php bugfix(41257); ?> (lookupNamespaceURI does not work as expected). (Rob)</li>
    9464. 

  9464. <li><?php bugfix(41236); ?> (Regression in timeout handling of non-blocking SSL connections during reads and writes). (Ilia)</li>
    9465. 

  9465. <li><?php bugfix(41134); ?> (zend_ts_hash_clean not thread-safe).  (marco dot cova at gmail dot com, Tony)</li>
    9466. 

  9466. <li><?php bugfix(41097); ?> (ext/soap returning associative array as indexed without using WSDL). (Dmitry)</li>
    9467. 

  9467. <li><?php bugfix(41004); ?> (minOccurs="0" and null class member variable). (Dmitry)</li>
    9468. 

  9468. <li><?php bugfix(39542); ?> (Behavior of require/include different to &lt; 5.2.0). (Dmitry)</li>
    9469. 

  9469. 

  9470. 

  9471. </ul>
    9472. 

  9472. 

  9473. <!-- }}} --></section>
    9474. 

  9474. 

  9475. <section class="version" id="5.2.2"><!-- {{{ 5.2.2 -->
    9476. 

  9476. <h3>Version 5.2.2</h3>
    9477. 

  9477. <?php release_date('03-May-2007'); ?>
    9478. 

  9478. <ul>
    9479. 

  9479. <li>Security Fixes
    9480. 

  9480. 	<ul>
    9481. 

  9481. 	<li>Fixed CVE-2007-1001, GD wbmp used with invalid image size (by Ivan Fratric) (Pierre)</li>
    9482. 

  9482. 	<li>Fixed a header injection via Subject and To parameters to the mail() function (MOPB-34 by Stefan Esser) (Ilia)</li>
    9483. 

  9483. 	<li>Fixed asciiz byte truncation inside mail() (MOPB-33 by Stefan Esser) (Ilia)</li>
    9484. 

  9484. 	<li>Fixed wrong length calculation in unserialize S type (MOPB-29 by Stefan Esser) (Stas)</li>
    9485. 

  9485. 	<li>Fixed a bug in mb_parse_str() that can be used to activate register_globals (MOPB-26 by Stefan Esser) (Ilia)</li>
    9486. 

  9486. 	<li>Fixed unallocated memory access/double free in in array_user_key_compare() (MOPB-24 by Stefan Esser) (Stas)</li>
    9487. 

  9487. 	<li>Fixed a double free inside session_regenerate_id() (MOPB-22 by Stefan Esser) (Ilia)</li>
    9488. 

  9488. 	<li>Added missing open_basedir &amp; safe_mode checks to zip:// and bzip:// wrappers. (MOPB-20, MOPB-21 by Stefan Esser). (Ilia)</li>
    9489. 

  9489. 	<li>Fixed substr_compare and substr_count information leak (MOPB-14 by Stefan Esser) (Stas, Ilia)</li>
    9490. 

  9490. 	<li>Limit nesting level of input variables with max_input_nesting_level as fix for (MOPB-03 by Stefan Esser) (Stas)</li>
    9491. 

  9491. 	<li>Fixed CRLF injection inside ftp_putcmd(). (by loveshell[at]Bug.Center.Team) (Ilia)</li>
    9492. 

  9492. 	<li>Fixed a possible super-global overwrite inside import_request_variables(). (by Stefano Di Paola, Stefan Esser) (Ilia)</li>
    9493. 

  9493. 	<li>Fixed a remotely trigger-able buffer overflow inside make_http_soap_request(). (Ilia)</li>
    9494. 

  9494. 	<li>Fixed a buffer overflow inside user_filter_factory_create(). (Ilia)</li>
    9495. 

  9495. 	<li>Fixed a remotely trigger-able buffer overflow inside bundled libxmlrpc library. (Stas)</li>
    9496. 

  9496.   </ul>
    9497. 

  9497. </li>
    9498. 

  9498. 

  9499. <li>Improved bundled GD
    9500. 

  9500.   <ul>
    9501. 

  9501.   <li>Sync to 2.0.35</li>
    9502. 

  9502.   <li>Added imagegrabwindow and imagegrabscreen, capture a screen or a window using its handle (Pierre)</li>
    9503. 

  9503.   <li>colors allocated henceforth from the resulting image overwrite the palette colors (Rob Leslie)</li>
    9504. 

  9504.   <li>Improved thread safety of the gif support (Roman Nemecek, Nuno, Pierre)
    9505. 

  9505.     <ul>
    9506. 

  9506.       <li>Use the dimension of the GIF frame to create the destination image (Pierre)</li>
    9507. 

  9507.       <li>Load only once the local color map from a GIF data (Pierre)</li>
    9508. 

  9508.     </ul>
    9509. 

  9509.   </li>
    9510. 

  9510.   </ul>
    9511. 

  9511. </li>
    9512. 

  9512. <li>Improved thread safety of the freetype cache (Scott MacVicar, Nuno, Pierre)
    9513. 

  9513.   <ul>
    9514. 

  9514.     <li>imagearc huge CPU usage with large angles, libgd bug #74 (Pierre)</li>
    9515. 

  9515.   </ul>
    9516. 

  9516. </li>
    9517. 

  9517. <li>Improved FastCGI SAPI to support external pipe and socket servers on win32. (Dmitry)</li>
    9518. 

  9518. <li>Improved Zend Memory Manager
    9519. 

  9519.   <ul>
    9520. 

  9520.     <li>guarantee of reasonable time for worst cases of best-fit free block searching algorithm. (Dmitry)</li>
    9521. 

  9521.     <li>better cache usage and less fragmentation on erealloc() (Tony, Dmitry)</li>
    9522. 

  9522.   </ul>
    9523. 

  9523. </li>
    9524. 

  9524. <li>Improved SPL (Marcus)
    9525. 

  9525.   <ul>
    9526. 

  9526.     <li>Added SplFileInfo::getBasename(), DirectoryIterator::getBasename().</li>
    9527. 

  9527.     <li>Added SplFileInfo::getLinkTarget(), SplFileInfo::getRealPath().</li>
    9528. 

  9528.     <li>Made RecursiveFilterIterator::accept() abstract as stated in documentation.</li>
    9529. 

  9529.   </ul>
    9530. 

  9530. </li>
    9531. 

  9531. <li>Improved SOAP
    9532. 

  9532.   <ul>
    9533. 

  9533.     <li>Added ability to encode arrays with &quot;SOAP-ENC:Array&quot; type instead of WSDL type. To activate the ability use &quot;feature&quot;=&gt;SOAP_USE_XSI_ARRAY_TYPE option in SoapClient/SoapServer constructors. (Rob, Dmitry)</li>
    9534. 

  9534.   </ul>
    9535. 

  9535. </li>
    9536. 

  9536. <li>Added GMP_VERSION constant. (Tony)</li>
    9537. 

  9537. <li>Added --ri switch to CLI which allows to check extension information. (Marcus)</li>
    9538. 

  9538. <li>Added tidyNode::getParent() method (John, Nuno)</li>
    9539. 

  9539. <li>Added openbasedir and safemode checks in zip:// stream wrapper and ZipArchive::open (Pierre)</li>
    9540. 

  9540. <li>Added php_pdo_sqlite_external.dll, a version of the PDO SQLite driver that links against an external sqlite3.dll. This provides Windows users to upgrade their sqlite3 version outside of the PHP release cycle. (Wez, Edin)</li>
    9541. 

  9541. <li>Added linenumbers to array returned by token_get_all(). (Johannes)</li>
    9542. 

  9542. 

  9543. <li>Implement #40947, allow a single filter as argument for filter_var_array (Pierre)</li>
    9544. 

  9544. <li>Implement #39867 (openssl PKCS#12 support) (Marc Delling, Pierre)</li>
    9545. 

  9545. 

  9546. <li>Upgraded SQLite 3 to version 3.3.16 (Ilia)</li>
    9547. 

  9547. <li>Upgraded libraries bundled in the Windows distribution. (Edin)
    9548. 

  9548.   <ul>
    9549. 

  9549.   <li>c-client (imap) to version 2006e</li>
    9550. 

  9550.   <li>libpq (PostgreSQL) to version 8.2.3</li>
    9551. 

  9551.   <li>libmysql (MySQL) to version 5.0.37</li>
    9552. 

  9552.   <li>openssl to version 0.9.8e</li>
    9553. 

  9553.   </ul>
    9554. 

  9554. </li>
    9555. 

  9555. <li>Upgraded PCRE to version 7.0 (Nuno)</li>
    9556. 

  9556. <li>Updated timezone database to version 2007.5. (Derick)</li>
    9557. 

  9557. 

  9558. <li>Fixed commandline handling for CLI and CGI. (Marcus, Johannes)</li>
    9559. 

  9559. <li>Fixed iterator_apply() with a callback using __call(). (Johannes)</li>
    9560. 

  9560. <li>Fixed possible multi bytes issues in openssl csr parser (Pierre)</li>
    9561. 

  9561. <li>Fixed shmop_open() with IPC_CREAT|IPC_EXCL flags on Windows. (Vladimir Kamaev, Tony).</li>
    9562. 

  9562. <li>Fixed possible leak in ZipArchive::extractTo when safemode checks fails (Ilia)</li>
    9563. 

  9563. <li>Fixed possible relative path issues in zip_open and TS mode (old API) (Pierre)</li>
    9564. 

  9564. <li>Fixed zend_llist_remove_tail (Michael Wallner, Dmitry)</li>
    9565. 

  9565. <li>Fixed a thread safety issue in gd gif read code (Nuno, Roman Nemecek)</li>
    9566. 

  9566. <li>Fixed crash on op-assign where argument is string offset (Brian, Stas)</li>
    9567. 

  9567. 

  9568. 

  9569. <li><?php bugfix(41215); ?> (setAttribute return code reversed). (Ilia)</li>
    9570. 

  9570. <li><?php bugfix(41192); ?> (Per Directory Values only work for one key). (Dmitry)</li>
    9571. 

  9571. <li><?php bugfix(41175); ?> (addAttribute() fails to add an attribute with an empty value). (Ilia)</li>
    9572. 

  9572. <li><?php bugfix(41159); ?> (mysql_pconnect() hash does not account for connect flags). (Ilia)</li>
    9573. 

  9573. <li><?php bugfix(41121); ?> (range() overflow handling for large numbers on 32bit machines). (Ilia)</li>
    9574. 

  9574. <li><?php bugfix(41118); ?> (PHP does not handle overflow of octal integers). (Tony)</li>
    9575. 

  9575. <li><?php bugfix(41109); ?> (recursiveiterator.inc says &quot;implements&quot; Iterator instead of &quot;extends&quot;). (Marcus)</li>
    9576. 

  9576. <li><?php bugfix(40130); ?> (TTF usage doesn't work properly under Netware). (Scott, gk at gknw dot de)</li>
    9577. 

  9577. <li><?php bugfix(41093); ?> (magic_quotes_gpc ignores first arrays keys). (Arpad, Ilia)</li>
    9578. 

  9578. <li><?php bugfix(41075); ?> (memleak when creating default object caused exception). (Dmitry)</li>
    9579. 

  9579. <li><?php bugfix(41067); ?> (json_encode() problem with UTF-16 input). (jp at df5ea dot net. Ilia)</li>
    9580. 

  9580. <li><?php bugfix(41063); ?> (chdir doesn't like root paths). (Dmitry)</li>
    9581. 

  9581. <li><?php bugfix(41061); ?> (&quot;visibility error&quot; in ReflectionFunction::export()). (Johannes)</li>
    9582. 

  9582. <li><?php bugfix(41043); ?> (pdo_oci crash when freeing error text with persistent connection). (Tony)</li>
    9583. 

  9583. <li><?php bugfix(41037); ?> (unregister_tick_function() inside the tick function crash PHP). (Tony)</li>
    9584. 

  9584. <li><?php bugfix(41034); ?> (json_encode() ignores null byte started keys in arrays). (Ilia)</li>
    9585. 

  9585. <li><?php bugfix(41026); ?> (segfault when calling &quot;self::method()&quot; in shutdown functions). (Tony)</li>
    9586. 

  9586. <li><?php bugfix(40999); ?> (mcrypt_create_iv() not using random seed). (Ilia)</li>
    9587. 

  9587. <li><?php bugfix(40998); ?> (long session array keys are truncated). (Tony)</li>
    9588. 

  9588. <li><?php bugfix(40935); ?> (pdo_mysql does not raise an exception on empty fetchAll()). (Ilia)</li>
    9589. 

  9589. <li><?php bugfix(40931); ?> (open_basedir bypass via symlink and move_uploaded_file()). (Tony)</li>
    9590. 

  9590. <li><?php bugfix(40921); ?> (php_default_post_reader crashes when post_max_size is exceeded). (trickie at gmail dot com, Ilia)</li>
    9591. 

  9591. <li><?php bugfix(40915); ?> (addcslashes unexpected behavior with binary input). (Tony)</li>
    9592. 

  9592. <li><?php bugfix(40899); ?> (memory leak when nesting list()). (Dmitry)</li>
    9593. 

  9593. <li><?php bugfix(40897); ?> (error_log file not locked). (Ilia)</li>
    9594. 

  9594. <li><?php bugfix(40883); ?> (mysql_query() is allocating memory incorrectly). (Tony)</li>
    9595. 

  9595. <li><?php bugfix(40872); ?> (inconsistency in offsetSet, offsetExists treatment of string enclosed integers). (Marcus)</li>
    9596. 

  9596. <li><?php bugfix(40861); ?> (strtotime() doesn't handle double negative relative time units correctly). (Derick, Ilia)</li>
    9597. 

  9597. <li><?php bugfix(40854); ?> (imap_mail_compose() creates an invalid terminator for multipart e-mails). (Ilia)</li>
    9598. 

  9598. <li><?php bugfix(40848); ?> (sorting issue on 64-bit Solaris). (Wez)</li>
    9599. 

  9599. <li><?php bugfix(40836); ?> (Segfault in ext/dom). (Rob)</li>
    9600. 

  9600. <li><?php bugfix(40833); ?> (Crash when using unset() on an ArrayAccess object retrieved via __get()). (Dmitry)</li>
    9601. 

  9601. <li><?php bugfix(40822); ?> (pdo_mysql does not return rowCount() on select). (Ilia)</li>
    9602. 

  9602. <li><?php bugfix(40815); ?> (using strings like &quot;class::func&quot; and static methods in set_exception_handler() might result in crash). (Tony)</li>
    9603. 

  9603. <li><?php bugfix(40809); ?> (Poor performance of &quot;.=&quot;). (Dmitry)</li>
    9604. 

  9604. <li><?php bugfix(40805); ?> (Failure executing function ibase_execute()). (Tony)</li>
    9605. 

  9605. <li><?php bugfix(40800); ?> (cannot disable memory_limit with -1). (Dmitry, Tony)</li>
    9606. 

  9606. <li><?php bugfix(40794); ?> (ReflectionObject::getValues() may crash when used with dynamic properties). (Tony)</li>
    9607. 

  9607. <li><?php bugfix(40784); ?> (Case sensitivity in constructor's fallback). (Tony)</li>
    9608. 

  9608. <li><?php bugfix(40770); ?> (Apache child exits when PHP memory limit reached). (Dmitry)</li>
    9609. 

  9609. <li><?php bugfix(40764); ?> (line thickness not respected for horizontal and vertical lines). (Pierre)</li>
    9610. 

  9610. <li><?php bugfix(40758); ?> (Test fcgi_is_fastcgi() is wrong on windows). (Dmitry)</li>
    9611. 

  9611. <li><?php bugfix(40754); ?> (added substr() &amp; substr_replace() overflow checks). (Ilia)</li>
    9612. 

  9612. <li><?php bugfix(40752); ?> (parse_ini_file() segfaults when a scalar setting is redeclared as an array). (Tony)</li>
    9613. 

  9613. <li><?php bugfix(40750); ?> (openssl stream wrapper ignores default_stream_timeout). (Tony)</li>
    9614. 

  9614. <li><?php bugfix(40727); ?> (segfault in PDO when failed to bind parameters). (Tony)</li>
    9615. 

  9615. <li><?php bugfix(40709); ?> (array_reduce() behaves strange with one item stored arrays). (Ilia)</li>
    9616. 

  9616. <li><?php bugfix(40703); ?> (Resolved a possible namespace conflict between libxmlrpc and MySQL's NDB table handler). (Ilia)</li>
    9617. 

  9617. <li><?php bugfix(40961); ?> (Incorrect results of DateTime equality check). (Mike)</li>
    9618. 

  9618. <li><?php bugfix(40678); ?> (Cross compilation fails). (Tony)</li>
    9619. 

  9619. <li><?php bugfix(40621); ?> (Crash when constructor called inappropriately). (Tony)</li>
    9620. 

  9620. <li><?php bugfix(40609); ?> (Segfaults when using more than one SoapVar in a request). (Rob, Dmitry)</li>
    9621. 

  9621. <li><?php bugfix(40606); ?> (umask is not being restored when request is finished). (Tony)</li>
    9622. 

  9622. <li><?php bugfix(40598); ?> (libxml segfault). (Rob)</li>
    9623. 

  9623. <li><?php bugfix(40591); ?> (list()=&quot;string&quot;; gives invalid opcode). (Dmitry)</li>
    9624. 

  9624. <li><?php bugfix(40578); ?> (imagettftext() multithreading issue). (Tony, Pierre)</li>
    9625. 

  9625. <li><?php bugfix(40576); ?> (double values are truncated to 6 decimal digits when encoding). (Tony)</li>
    9626. 

  9626. <li><?php bugfix(40560); ?> (DIR functions do not work on root UNC path). (Dmitry)</li>
    9627. 

  9627. <li><?php bugfix(40548); ?> (SplFileInfo::getOwner/getGroup give a warning on broken symlink). (Marcus)</li>
    9628. 

  9628. <li><?php bugfix(40546); ?> (SplFileInfo::getPathInfo() throws an exception if directory is in root dir). (Marcus)</li>
    9629. 

  9629. <li><?php bugfix(40545); ?> (multithreading issue in zend_strtod()). (Tony)</li>
    9630. 

  9630. <li><?php bugfix(40503); ?> (json_encode() value corruption on 32bit systems with overflown values). (Ilia)</li>
    9631. 

  9631. <li><?php bugfix(40467); ?> (Partial SOAP request sent when XSD sequence or choice include minOccurs=0). (Dmitry) </li>
    9632. 

  9632. <li><?php bugfix(40465); ?> (Ensure that all PHP elements are printed by var_dump). (wharmby at uk dot ibm dot com, Ilia)</li>
    9633. 

  9633. <li><?php bugfix(40464); ?> (session.save_path wont use default-value when safe_mode or open_basedir is enabled). (Ilia)</li>
    9634. 

  9634. <li><?php bugfix(40455); ?> (proc_open() uses wrong command line when safe_mode_exec_dir is set). (Tony)</li>
    9635. 

  9635. <li><?php bugfix(40432); ?> (strip_tags() fails with greater than in attribute). (Ilia)</li>
    9636. 

  9636. <li><?php bugfix(40431); ?> (dynamic properties may cause crash in ReflectionProperty methods). (Tony)</li>
    9637. 

  9637. <li><?php bugfix(40451); ?> (addAttribute() may crash when used with non-existent child node). (Tony)</li>
    9638. 

  9638. <li><?php bugfix(40442); ?> (ArrayObject::offsetExists broke in 5.2.1, works in 5.2.0). (olivier at elma dot fr, Marcus)</li>
    9639. 

  9639. <li><?php bugfix(40428); ?> (imagepstext() doesn't accept optional parameter). (Pierre)</li>
    9640. 

  9640. <li><?php bugfix(40417); ?> (Allow multiple instances of the same named PDO token in prepared statement emulation code). (Ilia)</li>
    9641. 

  9641. <li><?php bugfix(40414); ?> (possible endless fork() loop when running fastcgi). (Dmitry)</li>
    9642. 

  9642. <li><?php bugfix(40410); ?> (ext/posix does not compile on MacOS 10.3.9). (Tony)</li>
    9643. 

  9643. <li><?php bugfix(40392); ?> (memory leaks in PHP milter SAPI). (tuxracer69 at gmail dot com, Tony)</li>
    9644. 

  9644. <li><?php bugfix(40371); ?> (pg_client_encoding() not working on Windows). (Edin)</li>
    9645. 

  9645. <li><?php bugfix(40352); ?> (FCGI_WEB_SERVER_ADDRS function get lost). (Dmitry)</li>
    9646. 

  9646. <li><?php bugfix(40290); ?> (strtotime() returns unexpected result with particular timezone offset). (Derick)</li>
    9647. 

  9647. <li><?php bugfix(40286); ?> (PHP fastcgi with PHP_FCGI_CHILDREN don't kill children when parent is killed). (Dmitry)</li>
    9648. 

  9648. <li><?php bugfix(40261); ?> (Extremely slow data handling due to memory fragmentation). (Dmitry)</li>
    9649. 

  9649. <li><?php bugfix(40236); ?> (php -a function allocation eats memory). (Dmitry)</li>
    9650. 

  9650. <li><?php bugfix(40109); ?> (iptcembed fails on non-jfif jpegs). (Tony)</li>
    9651. 

  9651. <li><?php bugfix(39965); ?> (Latitude and longitude are backwards in date_sun_info()). (Derick)</li>
    9652. 

  9652. <li><?php bugfix(39836); ?> (SplObjectStorage empty after unserialize). (Marcus)</li>
    9653. 

  9653. <li><?php bugfix(39416); ?> (Milliseconds in date()). (Derick)</li>
    9654. 

  9654. <li><?php bugfix(39396); ?> (stream_set_blocking crashes on Win32). (Ilia, maurice at iceblog dot de)</li>
    9655. 

  9655. <li><?php bugfix(39351); ?> (relative include fails on Solaris). (Dmitry, Tony)</li>
    9656. 

  9656. <li><?php bugfix(39322); ?> (proc_terminate() destroys process resource). (Nuno)</li>
    9657. 

  9657. <li><?php bugfix(38406); ?> (crash when assigning objects to SimpleXML attributes). (Tony)</li>
    9658. 

  9658. <li><?php bugfix(37799); ?> (ftp_ssl_connect() falls back to non-ssl connection). (Nuno)</li>
    9659. 

  9659. <li><?php bugfix(36496); ?> (SSL support in imap_open() not working on Windows). (Edin)</li>
    9660. 

  9660. <li><?php bugfix(36226); ?> (Inconsistent handling when passing nillable arrays). (Dmitry)</li>
    9661. 

  9661. <li><?php bugfix(35872); ?> (Avoid crash caused by object store being referenced during RSHUTDOWN). (Andy) </li>
    9662. 

  9662. <li><?php bugfix(34794); ?> (proc_close() hangs when used with two processes). (jdolecek at netbsd dot org, Nuno)</li>
    9663. 

  9663. <li><?php bugfix(38710); ?> (data leakage because of nonexisting boundary checking in statements in mysqli) (Stas)</li>
    9664. 

  9664. <li><?php bugfix(37386); ?> (autocreating element doesn't assign value to first node). (Rob)</li>
    9665. 

  9665. <li><?php bugfix(37013); ?> (server hangs when returning circular object references). (Dmitry)</li>
    9666. 

  9666. <li><?php bugfix(33664); ?> Console window appears when using exec() (Richard Quadling, Stas)</li>
    9667. 

  9667. <li><?php peclbugfix(10194); ?> (crash in Oracle client when memory limit reached in the callback). (Tony)</li>
    9668. 

  9668. </ul>
    9669. 

  9669. 

  9670. <!-- }}} --></section>
    9671. 

  9671. 

  9672. <section class="version" id="5.2.1"><!-- {{{ 5.2.1 -->
    9673. 

  9673. <h3>Version 5.2.1</h3>
    9674. 

  9674. <?php release_date('08-Feb-2007'); ?>
    9675. 

  9675. <ul>
    9676. 

  9676. <li>Added CURLOPT_TCP_NODELAY constant to Curl extension. (Sara)</li>
    9677. 

  9677. <li>Added support for hex numbers of any size. (Matt)</li>
    9678. 

  9678. <li>Added function stream_socket_shutdown(). It is a wrapper for system shutdown() function, that shut downs part of a full-duplex connection. (Dmitry)</li>
    9679. 

  9679. <li>Added internal heap protection (Dmitry)
    9680. 

  9680.  <ul>
    9681. 

  9681.    <li>memory-limit is always enabled (--enable-memory-limit removed)</li>
    9682. 

  9682.    <li>default value if memory-limit is set to 128M</li>
    9683. 

  9683.    <li>safe unlinking</li>
    9684. 

  9684.    <li>cookies</li>
    9685. 

  9685.    <li>canary protection (debug build only)</li>
    9686. 

  9686.    <li>random generation of cookies and canaries</li>
    9687. 

  9687.  </ul>
    9688. 

  9688. </li>
    9689. 

  9689. <li>Added forward support for 'b' prefix in front of string literals. (Andrei)</li>
    9690. 

  9690. <li>Added three new functions to ext/xmlwriter (Rob, Ilia)
    9691. 

  9691.  <ul>
    9692. 

  9692.    <li>xmlwriter_start_dtd_entity()</li>
    9693. 

  9693.    <li>xmlwriter_end_dtd_entity()</li>
    9694. 

  9694.    <li>xmlwriter_write_dtd_entity()</li>
    9695. 

  9695.  </ul>
    9696. 

  9696. </li>
    9697. 

  9697. <li>Added a meta tag to phpinfo() output to prevent search engines from indexing the page. (Ilia)</li>
    9698. 

  9698. <li>Added new function, sys_get_temp_dir(). (Hartmut)</li>
    9699. 

  9699. <li>Added missing object support to file_put_contents(). (Ilia)</li>
    9700. 

  9700. <li>Added support for md2, ripemd256 and ripemd320 algos to hash(). (Sara)</li>
    9701. 

  9701. <li>Added forward support for (binary) cast. (Derick)</li>
    9702. 

  9702. <li>Added optimization for imageline with horizontal and vertical lines (Pierre)</li>
    9703. 

  9703. 

  9704. <li>Removed dependency from SHELL32.DLL. (Dmitry)</li>
    9705. 

  9705. <li>Removed double &quot;wrong parameter count&quot; warnings in various functions.  (Hannes)</li>
    9706. 

  9706. <li>Moved extensions to PECL:
    9707. 

  9707.  <ul>
    9708. 

  9708.    <li>ext/informix (Derick, Tony)</li>
    9709. 

  9709.  </ul>
    9710. 

  9710. </li>
    9711. 

  9711. <li>Changed double-to-string utilities to use BSD implementation. (Dmitry, Tony)</li>
    9712. 

  9712. <li>Updated bundled libcURL to version 7.16.0 in the Windows distro. (Edin)</li>
    9713. 

  9713. <li>Updated timezone database to version 2006.16. (Derick)</li>
    9714. 

  9714. <li>cgi.* and fastcgi.* directives are moved to INI subsystem. The new directive cgi.check_shebang_line can be used to omitting check for &quot;#! /usr/bin/php&quot; line. (Dmitry).</li>
    9715. 

  9715. <li>Improved proc_open(). Now on Windows it can run external commands not through CMD.EXE. (Dmitry)</li>
    9716. 

  9716. <li>VCWD_REALPATH() is improved to use realpath cache without VIRTUAL_DIR. (Dmitry)</li>
    9717. 

  9717. <li>ext/bcmath initialization code is moved from request startup to module startup. (Dmitry)</li>
    9718. 

  9718. <li>Zend Memory Manager Improvements (Dmitry)
    9719. 

  9719.  <ul>
    9720. 

  9720.    <li>use HeapAlloc() instead of VirtualAlloc()</li>
    9721. 

  9721.    <li>use &quot;win32&quot; storage manager (instead of &quot;malloc&quot;) on Windows by default</li>
    9722. 

  9722.  </ul>
    9723. 

  9723. </li>
    9724. 

  9724. <li>Zip Extension Improvements (Pierre)
    9725. 

  9725.  <ul>
    9726. 

  9726.    <li>Fixed leak in statName and stateIndex</li>
    9727. 

  9727.    <li>Fixed return setComment (Hannes)</li>
    9728. 

  9728.    <li>Added addEmptyDir method</li>
    9729. 

  9729.  </ul>
    9730. 

  9730. </li>
    9731. 

  9731. <li>Filter Extension Improvements (Ilia, Pierre)
    9732. 

  9732.  <ul>
    9733. 

  9733.    <li>Fixed a bug when callback function returns a non-modified value.</li>
    9734. 

  9734.    <li>Added filter support for $_SERVER in cgi/apache2 sapis.</li>
    9735. 

  9735.    <li>Make sure PHP_SELF is filtered in Apache 1 sapi.</li>
    9736. 

  9736.    <li><?php bugfix(39358); ?> (INSTALL_HEADERS contains incorrect reference to php_filter.h).</li>
    9737. 

  9737.    <li>Added &quot;default&quot; option that allows a default value to be set for an invalid or missing value.</li>
    9738. 

  9738.    <li>Invalid filters fails instead of returning unsafe value</li>
    9739. 

  9739.    <li>Fixed possible double encoding problem with sanitizing filters</li>
    9740. 

  9740.    <li>Make use of space-strict strip_tags() function</li>
    9741. 

  9741.    <li>Fixed whitespace trimming</li>
    9742. 

  9742.    <li>Added support for FastCGI environment variables. (Dmitry)</li>
    9743. 

  9743.  </ul>
    9744. 

  9744. </li>
    9745. 

  9745. <li>PDO_MySQL Extension Improvements (Ilia)
    9746. 

  9746.  <ul>
    9747. 

  9747.    <li>Enabled buffered queries by default.</li>
    9748. 

  9748.    <li>Enabled prepared statement emulation by default.</li>
    9749. 

  9749.  </ul>
    9750. 

  9750. </li>
    9751. 

  9751. 

  9752. <li>Small optimization of the date() function. (Matt,Ilia)</li>
    9753. 

  9753. <li>Optimized the internal is_numeric_string() function. (Matt,Ilia)</li>
    9754. 

  9754. <li>Optimized array functions utilizing php_splice(). (Ilia)</li>
    9755. 

  9755. <li>Windows related optimizations (Dmitry, Stas)
    9756. 

  9756.  <ul>
    9757. 

  9757.    <li>COM initialization/deinitialization are done only if necessary</li>
    9758. 

  9758.    <li>removed unnecessary checks for ISREG file and corresponding stat() calls</li>
    9759. 

  9759.    <li>opendir() is reimplementation using GetFirstFile/GetNextFile those are faster then _findfirst/_findnext</li>
    9760. 

  9760.    <li>implemented registry cache that prevent registry lookup on each request. In case of modification of corresponding registry-tree PHP will reload it automatic</li>
    9761. 

  9761.    <li>start timeout thread only if necessary</li>
    9762. 

  9762.    <li>stat() is reimplementation using GetFileAttributesEx(). The new implementation is faster then implementation in MS VC CRT, but it doesn't support Windows 95.</li>
    9763. 

  9763.  </ul>
    9764. 

  9764. </li>
    9765. 

  9765. <li>Streams optimization (Dmitry)
    9766. 

  9766.  <ul>
    9767. 

  9767.    <li>removed unnecessary ftell() calls (one call for each included PHP file)</li>
    9768. 

  9768.    <li>disabled calls to read() after EOF</li>
    9769. 

  9769.  </ul>
    9770. 

  9770. </li>
    9771. 

  9771. 

  9772. <li>Fixed incorrect function names on FreeBSD where inet_pton() was named __inet_pton() and inet_ntop() was named __inet_ntop(). (Hannes)</li>
    9773. 

  9773. <li>Fixed FastCGI impersonation for persistent connections on Windows. (Dmitry)</li>
    9774. 

  9774. <li>Fixed wrong signature initialization in imagepng (Takeshi Abe)</li>
    9775. 

  9775. <li>Fixed ftruncate() with negative size on FreeBSD. (Hannes)</li>
    9776. 

  9776. <li>Fixed segfault in RegexIterator when given invalid regex. (Hannes)</li>
    9777. 

  9777. <li>Fixed segfault in SplFileObject-&gt;openFile()-&gt;getPathname(). (Hannes)</li>
    9778. 

  9778. <li>Fixed segfault in ZTS mode when OCI8 statements containing sub-statements  are destroyed in wrong order. (Tony)</li>
    9779. 

  9779. <li>Fixed the validate email filter so that the letter &quot;v&quot; can also be used in the user part of the email address. (Derick)</li>
    9780. 

  9780. <li><?php bugfix(40297); ?> (compile failure in ZTS mode when collections support is  missing). (Tony)</li>
    9781. 

  9781. <li><?php bugfix(40285); ?> (The PDO prepare parser goes into an infinite loop in some instances). (Ilia)</li>
    9782. 

  9782. <li><?php bugfix(40274); ?> (Sessions fail with numeric root keys). (Ilia)</li>
    9783. 

  9783. <li><?php bugfix(40259); ?> (ob_start call many times - memory error). (Dmitry)</li>
    9784. 

  9784. <li><?php bugfix(40231); ?> (file_exists incorrectly reports false). (Dmitry)</li>
    9785. 

  9785. <li><?php bugfix(40228); ?> (ZipArchive::extractTo does create empty directories  recursively). (Pierre)</li>
    9786. 

  9786. <li><?php bugfix(40200); ?> (The FastCgi version has different realpath results than  thread safe version). (Dmitry)</li>
    9787. 

  9787. <li><?php bugfix(40191); ?> (use of array_unique() with objects triggers segfault).  (Tony)</li>
    9788. 

  9788. <li><?php bugfix(40189); ?> (possible endless loop in zlib.inflate stream filter). (Greg, Tony)</li>
    9789. 

  9789. <li><?php bugfix(40169); ?> (CURLOPT_TCP_NODELAY only available in curl >= 7.11.2).  (Tony)</li>
    9790. 

  9790. <li><?php bugfix(40129); ?> (iconv extension doesn't compile with CodeWarrior on  Netware). (gk at gknw dot de, Tony)</li>
    9791. 

  9791. <li><?php bugfix(40127); ?> (apache2handler doesn't compile on Netware).  (gk at gknw dot de)</li>
    9792. 

  9792. <li><?php bugfix(40121); ?> (PDO_DBLIB driver wont free statements). (Ilia)</li>
    9793. 

  9793. <li><?php bugfix(40098); ?> (php_fopen_primary_script() not thread safe). (Ilia)</li>
    9794. 

  9794. <li><?php bugfix(40092); ?> (chroot() doesn't clear realpath cache). (Dmitry)</li>
    9795. 

  9795. <li><?php bugfix(40091); ?> (spl_autoload_register with 2 instances of the same class). (Ilia)</li>
    9796. 

  9796. <li><?php bugfix(40083); ?> (milter SAPI functions always return false/null). (Tony)</li>
    9797. 

  9797. <li><?php bugfix(40079); ?> (php_get_current_user() not thread safe). (Ilia, wharmby at uk dot ibm dot com)</li>
    9798. 

  9798. <li><?php bugfix(40078); ?> (ORA-01405 when fetching NULL values using oci_bind_array_by_name()). (Tony)</li>
    9799. 

  9799. <li><?php bugfix(40076); ?> (zend_alloc.c: Value of enumeration constant must be in  range of signed integer). (Dmitry)</li>
    9800. 

  9800. <li><?php bugfix(40073); ?> (exif_read_data dies on certain images). (Tony, Marcus)</li>
    9801. 

  9801. <li><?php bugfix(40036); ?> (empty() does not work correctly with ArrayObject when  using ARRAY_AS_PROPS). (Ilia)</li>
    9802. 

  9802. <li><?php bugfix(40012); ?> (php_date.c doesn't compile on Netware). (gk at gknw dot de, Derick)</li>
    9803. 

  9803. <li><?php bugfix(40009); ?> (http_build_query(array()) returns NULL). (Ilia)</li>
    9804. 

  9804. <li><?php bugfix(40002); ?> (Try/Catch performs poorly). (Dmitry)</li>
    9805. 

  9805. <li><?php bugfix(39993); ?> (tr_TR.UTF-8 locale has problems with PHP). (Ilia)</li>
    9806. 

  9806. <li><?php bugfix(39990); ?> (Cannot &quot;foreach&quot; over overloaded properties). (Dmitry)</li>
    9807. 

  9807. <li><?php bugfix(39988); ?> (type argument of oci_define_by_name() is ignored). (Chris Jones, Tony)</li>
    9808. 

  9808. <li><?php bugfix(39984); ?> (redirect response code in header() could be ignored  in CGI sapi). (Ilia)</li>
    9809. 

  9809. <li><?php bugfix(39979); ?> (PGSQL_CONNECT_FORCE_NEW will causes next connect to  establish a new connection). (Ilia)</li>
    9810. 

  9810. <li><?php bugfix(39971); ?> (pg_insert/pg_update do not allow now() to be used  for timestamp fields). (Ilia)</li>
    9811. 

  9811. <li><?php bugfix(39969); ?> (ini setting short_open_tag has no effect when using  --enable-maintainer-zts). (Dmitry)</li>
    9812. 

  9812. <li><?php bugfix(39952); ?> (zip ignoring --with-libdir on zlib checks) (judas dot iscariote at gmail dot com)</li>
    9813. 

  9813. <li><?php bugfix(39944); ?> (References broken). (Dmitry)</li>
    9814. 

  9814. <li><?php bugfix(39935); ?> (Extensions tidy,mcrypt,mhash,pdo_sqlite ignores  --with-libdir). (judas dot iscariote at gmail dot com, Derick)</li>
    9815. 

  9815. <li><?php bugfix(39903); ?> (Notice message when executing __halt_compiler() more than once). (Tony)</li>
    9816. 

  9816. <li><?php bugfix(39898); ?> (FILTER_VALIDATE_URL validates \r\n\t etc). (Ilia)</li>
    9817. 

  9817. <li><?php bugfix(39890); ?> (using autoconf 2.6x and --with-layout=GNU breaks PEAR install path). (Tony)</li>
    9818. 

  9818. <li><?php bugfix(39884); ?> (ReflectionParameter::getClass() throws exception for  type hint self). (thekid at php dot net)</li>
    9819. 

  9819. <li><?php bugfix(39878); ?> (CURL doesn't compile on Sun Studio Pro). (Ilia)</li>
    9820. 

  9820. <li><?php bugfix(39873); ?> (number_format() breaks with locale &amp; decimal points). (Ilia)</li>
    9821. 

  9821. <li><?php bugfix(39869); ?> (safe_read does not initialize errno). (michiel at boland dot org, Dmitry)</li>
    9822. 

  9822. <li><?php bugfix(39850); ?> (SplFileObject throws contradictory/wrong error messages when trying to open &quot;php://wrong&quot;). (Tony)</li>
    9823. 

  9823. <li><?php bugfix(39846); ?> (Invalid IPv4 treated as valid). (Ilia)</li>
    9824. 

  9824. <li><?php bugfix(39845); ?> (Persistent connections generate a warning in pdo_pgsql). (Ilia)</li>
    9825. 

  9825. <li><?php bugfix(39832); ?> (SOAP Server: parameter not matching the WSDL specified  type are set to 0). (Dmitry)</li>
    9826. 

  9826. <li><?php bugfix(39825); ?> (foreach produces memory error). (Dmitry)</li>
    9827. 

  9827. <li><?php bugfix(39816); ?> (apxs2filter ignores httpd.conf &amp; .htaccess php config  settings). (Ilia)</li>
    9828. 

  9828. <li><?php bugfix(39815); ?> (SOAP double encoding is not locale-independent). (Dmitry)</li>
    9829. 

  9829. <li><?php bugfix(39797); ?> (virtual() does not reset changed INI settings). (Ilia) </li>
    9830. 

  9830. <li><?php bugfix(39795); ?> (build fails on AIX because crypt_r() uses different  data struct). (Tony)</li>
    9831. 

  9831. <li><?php bugfix(39791); ?> (Crash in strtotime() on overly long relative date  multipliers). (Ilia)</li>
    9832. 

  9832. <li><?php bugfix(39787); ?> (PHP doesn't work with Apache 2.3). (mv at binarysec dot com).</li>
    9833. 

  9833. <li><?php bugfix(39782); ?> (setTime() on a DateTime constructed with a Weekday  yields incorrect results). (Ilia)</li>
    9834. 

  9834. <li><?php bugfix(39780); ?> (PNG image with CRC/data error raises fatal error) (Pierre)</li>
    9835. 

  9835. <li><?php bugfix(39779); ?> (Enable AUTH PLAIN mechanism in underlying libc-client). (michael dot heimpold at s2000 dot tu-chemnitz dot de, Ilia)</li>
    9836. 

  9836. <li><?php bugfix(39775); ?> (&quot;Indirect modification ...&quot; message is not shown). (Dmitry)</li>
    9837. 

  9837. <li><?php bugfix(39763); ?> (magic quotes are applied twice by ext/filter in  parse_str()). (Ilia) </li>
    9838. 

  9838. <li><?php bugfix(39760); ?> (cloning fails on nested SimpleXML-Object). (Rob)</li>
    9839. 

  9839. <li><?php bugfix(39759); ?> (Can't use stored procedures fetching multiple result  sets in pdo_mysql). (Ilia)</li>
    9840. 

  9840. <li><?php bugfix(39754); ?> (Some POSIX extension functions not thread safe). (Ilia, wharmby at uk dot ibm dot com)</li>
    9841. 

  9841. <li><?php bugfix(39751); ?> (putenv crash on Windows). (KevinJohnHoffman at gmail.com)</li>
    9842. 

  9842. <li><?php bugfix(39732); ?> (oci_bind_array_by_name doesn't work on Solaris 64bit). (Tony)</li>
    9843. 

  9843. <li><?php bugfix(39724); ?> (Broken build due to spl/filter usage of pcre extension). (Tony, Ilia)</li>
    9844. 

  9844. <li><?php bugfix(39718); ?> (possible crash if assert.callback is set in ini). (Ilia)</li>
    9845. 

  9845. <li><?php bugfix(39702); ?> (php crashes in the allocator on linux-m68k). (Dmitry)</li>
    9846. 

  9846. <li><?php bugfix(39685); ?> (iconv() - undefined function). (Hannes)</li>
    9847. 

  9847. <li><?php bugfix(39673); ?> (file_get_contents causes bus error on certain offsets). (Tony)</li>
    9848. 

  9848. <li><?php bugfix(39663); ?> (Memory leak in pg_get_notify() and a possible memory  corruption on Windows in pgsql and pdo_pgsql extensions). (Ilia, matteo at beccati dot com)</li>
    9849. 

  9849. <li><?php bugfix(39662); ?> (Segfault when calling asXML() of a cloned  SimpleXMLElement). (Rob, Tony)</li>
    9850. 

  9850. <li><?php bugfix(39656); ?> (crash when calling fetch() on a PDO statment object after closeCursor()). (Ilia, Tony)</li>
    9851. 

  9851. <li><?php bugfix(39653); ?> (ext/dba doesn't check for db-4.5 and db-4.4 when db4 support is enabled). (Tony)</li>
    9852. 

  9852. <li><?php bugfix(39652); ?> (Wrong negative results from memory_get_usage()). (Dmitry)</li>
    9853. 

  9853. <li><?php bugfix(39648); ?> (Implementation of PHP functions chown() and chgrp() are  not thread safe). (Ilia, wharmby at uk dot ibm dot com)</li>
    9854. 

  9854. <li><?php bugfix(39640); ?> (Segfault with &quot;Allowed memory size exhausted&quot;). (Dmitry)</li>
    9855. 

  9855. <li><?php bugfix(39625); ?> (Apache crashes on importStylesheet call). (Rob)</li>
    9856. 

  9856. <li><?php bugfix(39623); ?> (thread safety fixes on *nix for putenv() &amp; mime_magic). (Ilia, wharmby at uk dot ibm dot com)</li>
    9857. 

  9857. <li><?php bugfix(39621); ?> (str_replace() is not binary safe on strings with equal length). (Tony)</li>
    9858. 

  9858. <li><?php bugfix(39613); ?> (Possible segfault in imap initialization due to missing module dependency). (wharmby at uk dot ibm dot com, Tony)</li>
    9859. 

  9859. <li><?php bugfix(39606); ?> (Use of com.typelib_file in PHP.ini STILL causes A/V). (Rob)</li>
    9860. 

  9860. <li><?php bugfix(39602); ?> (Invalid session.save_handler crashes PHP). (Dmitry)</li>
    9861. 

  9861. <li><?php bugfix(39596); ?> (Creating Variant of type VT_ARRAY). (Rob)</li>
    9862. 

  9862. <li><?php bugfix(39583); ?> (ftp_put() does not change transfer mode to ASCII). (Tony)</li>
    9863. 

  9863. <li><?php bugfix(39576); ?> (array_walk() doesn't separate user data zval). (Tony)</li>
    9864. 

  9864. <li><?php bugfix(39575); ?> (move_uploaded_file() no longer working (safe mode  related)). (Tony)</li>
    9865. 

  9865. <li><?php bugfix(39571); ?> (timeout ssl:// connections). (Ilia)</li>
    9866. 

  9866. <li><?php bugfix(39564); ?> (PDO::errorInfo() returns inconsistent information when  sqlite3_step() fails). (Tony)</li>
    9867. 

  9867. <li><?php bugfix(39548); ?> (ZMSG_LOG_SCRIPT_NAME not routed to OutputDebugString() on Windows). (Dmitry)</li>
    9868. 

  9868. <li><?php bugfix(39538); ?> (fgetcsv can't handle starting newlines and trailing odd number of backslashes). (David Soria Parra, Pierre)</li>
    9869. 

  9869. <li><?php bugfix(39534); ?> (Error in maths to calculate of  ZEND_MM_ALIGNED_MIN_HEADER_SIZE). (wharmby at uk dot ibm dot com, Dmitry)</li>
    9870. 

  9870. <li><?php bugfix(39527); ?> (Failure to retrieve results when multiple unbuffered, prepared statements are used in pdo_mysql). (Ilia)</li>
    9871. 

  9871. <li><?php bugfix(39508); ?> (imagefill crashes with small images 3 pixels or less). (Pierre)</li>
    9872. 

  9872. <li><?php bugfix(39506); ?> (Archive corrupt with ZipArchive::addFile method). (Pierre)</li>
    9873. 

  9873. <li><?php bugfix(39504); ?> (xmlwriter_write_dtd_entity() creates Attlist tag, not  entity). (Hannes)</li>
    9874. 

  9874. <li><?php bugfix(39483); ?> (Problem with handling of \ char in prepared statements). (Ilia, suhachov at gmail dot com)</li>
    9875. 

  9875. <li><?php bugfix(39458); ?> (ftp_nlist() returns false on empty dirs). (Nuno)</li>
    9876. 

  9876. <li><?php bugfix(39454); ?> (Returning a SOAP array segfaults PHP). (Dmitry)</li>
    9877. 

  9877. <li><?php bugfix(39450); ?> (getenv() fills other super-globals). (Ilia, Tony)</li>
    9878. 

  9878. <li><?php bugfix(39449); ?> (Overloaded array properties do not work correctly). (Dmitry)</li>
    9879. 

  9879. <li><?php bugfix(39445); ?> (Calling debug_backtrace() in the __toString() function produces a crash). (Dmitry)</li>
    9880. 

  9880. <li><?php bugfix(39438); ?> (Fatal error: Out of memory). (Dmitry)</li>
    9881. 

  9881. <li><?php bugfix(39435); ?> ('foo' instanceof bar gives invalid opcode error). (Sara)</li>
    9882. 

  9882. <li><?php bugfix(39414); ?> (Syntax error while compiling with Sun Workshop Complier). (Johannes)</li>
    9883. 

  9883. <li><?php bugfix(39398); ?> (Booleans are not automatically translated to integers). (Ilia)</li>
    9884. 

  9884. <li><?php bugfix(39394); ?> (Missing check for older variants of openssl). (Ilia)</li>
    9885. 

  9885. <li><?php bugfix(39367); ?> (clearstatcache() doesn't clear realpath cache). (j at pureftpd dot org, Dmitry)</li>
    9886. 

  9886. <li><?php bugfix(39366); ?> (imagerotate does not use alpha with angle > 45 degrees) (Pierre)</li>
    9887. 

  9887. <li><?php bugfix(39364); ?> (Removed warning on empty haystack inside mb_strstr()). (Ilia)</li>
    9888. 

  9888. <li><?php bugfix(39362); ?> (Added an option to imap_open/imap_reopen to control the number of connection retries). (Ilia)</li>
    9889. 

  9889. <li>Fixed bugs <?php bugl(39361); ?>, <?php bugl(39400); ?> (mbstring function overloading problem). (Seiji)</li>
    9890. 

  9890. <li><?php bugfix(39354); ?> (Allow building of curl extension against libcurl 7.16.0). (Ilia) </li>
    9891. 

  9891. <li><?php bugfix(39350); ?> (crash with implode(&quot;\n&quot;, array(false))). (Ilia)</li>
    9892. 

  9892. <li><?php bugfix(39344); ?> (Unnecessary calls to OnModify callback routine for an extension INI directive). (wharmby at uk dot ibm dot com, Dmitry)</li>
    9893. 

  9893. <li><?php bugfix(39320); ?> (ZEND_HASH_APPLY_STOP causes deletion). (Marcus)</li>
    9894. 

  9894. <li><?php bugfix(39313); ?> (spl_autoload triggers Fatal error). (Marcus)</li>
    9895. 

  9895. <li><?php bugfix(39300); ?> (make install fails if wget is not available). (Tony)</li>
    9896. 

  9896. <li><?php bugfix(39297); ?> (Memory corruption because of indirect modification of overloaded array). (Dmitry)</li>
    9897. 

  9897. <li><?php bugfix(39286); ?> (misleading error message when invalid dimensions are given) (Pierre)</li>
    9898. 

  9898. <li><?php bugfix(39273); ?> (imagecopyresized may ignore alpha channel) (Pierre)</li>
    9899. 

  9899. <li><?php bugfix(39265); ?> (Fixed path handling inside mod_files.sh). (michal dot taborsky at gmail dot com, Ilia)</li>
    9900. 

  9900. <li><?php bugfix(39217); ?> (serialNumber might be -1 when the value is too large). (Pierre, Tony)</li>
    9901. 

  9901. <li><?php bugfix(39215); ?> (Inappropriate close of stdin/stdout/stderr). (Wez, Ilia)</li>
    9902. 

  9902. <li><?php bugfix(39201); ?> (Possible crash in Apache 2 with 413 ErrorHandler). (Ilia)</li>
    9903. 

  9903. <li><?php bugfix(39151); ?> (Parse error in recursiveiteratoriterator.php). (Marcus)</li>
    9904. 

  9904. <li><?php bugfix(39121); ?> (Incorrect return array handling in non-wsdl soap client). (Dmitry)</li>
    9905. 

  9905. <li><?php bugfix(39090); ?> (DirectoryFilterDots doxygen docs and example is wrong). (Marcus)</li>
    9906. 

  9906. <li><?php bugfix(38852); ?> (XML-RPC Breaks iconv). (Hannes)</li>
    9907. 

  9907. <li><?php bugfix(38770); ?> (unpack() broken with longs on 64 bit machines). (Ilia, David Soria Parra).</li>
    9908. 

  9908. <li><?php bugfix(38698); ?> (for some keys cdbmake creates corrupted db and cdb can't read valid db). (Marcus)</li>
    9909. 

  9909. <li><?php bugfix(38680); ?> (Added missing handling of basic types in json_decode). (Ilia)</li>
    9910. 

  9910. <li><?php bugfix(38604); ?> (Fixed request time leak inside foreach() when iterating through virtual properties). (Dmitry)</li>
    9911. 

  9911. <li><?php bugfix(38602); ?> (header( &quot;HTTP/1.0 ...&quot; ) does not change proto version). (Ilia)</li>
    9912. 

  9912. <li><?php bugfix(38542); ?> (proc_get_status() returns wrong PID on windows). (Nuno)</li>
    9913. 

  9913. <li><?php bugfix(38536); ?> (SOAP returns an array of values instead of an object). (Dmitry)</li>
    9914. 

  9914. <li><?php bugfix(38456); ?> (Apache2 segfaults when virtual() is called in .php  ErrorDocument). (Ilia)</li>
    9915. 

  9915. <li><?php bugfix(38325); ?> (spl_autoload_register() gives wrong line for &quot;class not found&quot;). (Ilia)</li>
    9916. 

  9916. <li><?php bugfix(38319); ?> (Remove bogus warnings from persistent PDO connections). (Ilia)</li>
    9917. 

  9917. <li><?php bugfix(38274); ?> (Memlimit fatal error sent to &quot;wrong&quot; stderr when using fastcgi). (Dmitry)</li>
    9918. 

  9918. <li><?php bugfix(38252); ?> (Incorrect PDO error message on invalid default fetch mode). (Ilia)</li>
    9919. 

  9919. <li><?php bugfix(37927); ?> (Prevent trap when COM extension processes argument of type VT_DISPATCH|VT_REF) (Andy)</li>
    9920. 

  9920. <li><?php bugfix(37773); ?> (iconv_substr() gives &quot;Unknown error&quot; when string length = 1&quot;). (Ilia)</li>
    9921. 

  9921. <li><?php bugfix(37627); ?> (session save_path check checks the parent directory). (Ilia)</li>
    9922. 

  9922. <li><?php bugfix(37619); ?> (proc_open() closes stdin on fork() failure). (jdolecek at NetBSD dot org, Nuno)</li>
    9923. 

  9923. <li><?php bugfix(37588); ?> (COM Property propputref converts to PHP function and can't be accesed). (Rob)</li>
    9924. 

  9924. <li><?php bugfix(36975); ?> (natcasesort() causes array_pop() to misbehave). (Hannes)</li>
    9925. 

  9925. <li><?php bugfix(36812); ?> (pg_execute() modifies input array). (Ilia)</li>
    9926. 

  9926. <li><?php bugfix(36798); ?> (Error parsing named parameters with queries containing high-ascii chars). (Ilia)</li>
    9927. 

  9927. <li><?php bugfix(36644); ?> (possible crash in variant_date_from_timestamp()). (Ilia)</li>
    9928. 

  9928. <li><?php bugfix(36427); ?> (proc_open() / proc_close() leak handles on windows). (jdolecek at NetBSD dot org, Nuno)</li>
    9929. 

  9929. <li><?php bugfix(36392); ?> (wrong number of decimal digits with %e specifier in sprintf). (Matt,Ilia)</li>
    9930. 

  9930. <li><?php bugfix(36214); ?> (__get method works properly only when conditional operator is used). (Dmitry)</li>
    9931. 

  9931. <li><?php bugfix(35634); ?> (Erroneous &quot;Class declarations may not be nested&quot; error raised). (Carl P. Corliss, Dmitry)</li>
    9932. 

  9932. <li><?php bugfix(35106); ?> (nested foreach fails when array variable has a reference). (Dmitry)</li>
    9933. 

  9933. <li><?php bugfix(34564); ?> (COM extension not returning modified &quot;out&quot; argument) (Andy)</li>
    9934. 

  9934. <li><?php bugfix(33734); ?> (Something strange with COM Object). (Rob)</li>
    9935. 

  9935. <li><?php bugfix(33386); ?> (ScriptControl only sees last function of class). (Rob)</li>
    9936. 

  9936. <li><?php bugfix(33282); ?> (Re-assignment by reference does not clear the is_ref flag) (Ilia, Dmitry, Matt Wilmas)</li>
    9937. 

  9937. <li><?php bugfix(30074); ?> (apparent symbol table error with  extract($blah, EXTR_REFS)) (Brian)</li>
    9938. 

  9938. <li><?php bugfix(29840); ?> (is_executable() does not honor safe_mode_exec_dir  setting). (Ilia)</li>
    9939. 

  9939. <li><?php peclbugfix(7295); ?> (ORA-01405: fetched column value is NULL on LOB fields). (Tony)</li>
    9940. 

  9940. 

  9941. </ul>
    9942. 

  9942. 

  9943. <!-- }}} --></section>
    9944. 

  9944. 

  9945. <section class="version" id="5.2.0"><!-- {{{ 5.2.0 -->
    9946. 

  9946. <h3>Version 5.2.0</h3>
    9947. 

  9947. <?php release_date('02-Nov-2006'); ?>
    9948. 

  9948. <ul>
    9949. 

  9949. <li>Updated bundled OpenSSL to version 0.9.8d in the Windows distro. (Edin)</li>
    9950. 

  9950. <li>Updated Postgresql client libraries to 8.1.4 in the Windows distro. (Edin)</li>
    9951. 

  9951. <li>Updated PCRE to version 6.7. (Ilia)</li>
    9952. 

  9952. <li>Updated libsqlite in ext/pdo_sqlite to 3.3.7. (Ilia)</li>
    9953. 

  9953. <li>Updated bundled MySQL client library to version 5.0.22 in the Windows distribution. (Edin)</li>
    9954. 

  9954. <li>Updated timezonedb to version 2006.14. (Derick)</li>
    9955. 

  9955. 

  9956. <li>Added ability to make SOAP call userspace PHP&lt;-&gt;XML converters. (Dmitry)</li>
    9957. 

  9957. <li>Added support for character sets in pg_escape_string() for PostgreSQL 8.1.4 and higher. (Ilia)</li>
    9958. 

  9958. <li>Added support for character sets in PDO quote() method for PostgreSQL 8.1.4 and higher. (Ilia)</li>
    9959. 

  9959. <li>Added DSA key generation support to openssl_pkey_new(), FR <?php bugl(38731); ?> (marci at balabit dot hu, Tony)</li>
    9960. 

  9960. <li>Added SoapServer::setObject() method (it is a simplified version of SoapServer::setClass() method). (Dmitry)</li>
    9961. 

  9961. <li>Added support for hexadecimal entity in imagettftext() for the bundled GD. (Pierre)</li>
    9962. 

  9962. <li>Added support for httpOnly flag for session extension and cookie setting functions. (Scott MacVicar, Ilia)</li>
    9963. 

  9963. <li>Added version specific registry keys to allow different configurations for different php version. (Richard, Dmitry)</li>
    9964. 

  9964. <li>Added &quot;PHPINIDir&quot; Apache directive to apache and apache_hooks SAPIs. (Dmitry)</li>
    9965. 

  9965. <li>Added an optional boolean parameter to memory_get_usage() and  memory_get_peak_usage() to get memory size allocated by emalloc() or real size of memory allocated from system. (Dmitry)</li>
    9966. 

  9966. <li>Added Zip Archive extension. (Pierre)</li>
    9967. 

  9967. <li>Added RFC1867 fileupload processing hook. (Stefan E.)</li>
    9968. 

  9968. <li>Added JSON and Filter extensions. (Derick, Rasmus, Pierre, Ilia)</li>
    9969. 

  9969. <li>Added error messages to disk_free_space() and disk_total_space() functions. FR <?php bugl(37971); ?> (Tony)</li>
    9970. 

  9970. <li>Added PATHINFO_FILENAME option to pathinfo() to get the filename. (Toby S.  and Christian S.)</li>
    9971. 

  9971. <li>Added array_fill_keys() function. (Marcus, Matt Wilmas)</li>
    9972. 

  9972. <li>Added posix_initgroups() function. (Ilia)</li>
    9973. 

  9973. <li>Added optional parameter to http_build_query() to allow specification of string separator. (Ilia)</li>
    9974. 

  9974. <li>Added image_type_to_extension() function. (Hannes, Ilia)</li>
    9975. 

  9975. <li>Added allow_
    9976.