PHP

5.4.39

Released on 19 Mar 2015
Project description.
PHP is a popular general-purpose scripting language that is especially suited to web development
PHP 5.4.39 Changelog
  • Core:
    • Fixed bug #68976 (Use After Free Vulnerability in unserialize()). (CVE-2015-2787)
    • Fixed bug #69134 (Per Directory Values overrides PHP_INI_SYSTEM configuration options).
    • Fixed bug #69207 (move_uploaded_file allows nulls in path). (CVE-2015-2348)
  • Ereg:
    • Fixed bug #69248 (heap overflow vulnerability in regcomp.c). (CVE-2015-2305)
  • SOAP:
    • Fixed bug #69085 (SoapClient's __call() type confusion through unserialize()).
  • ZIP:
    • Fixed bug #69253 (ZIP Integer Overflow leads to writing past heap boundary). (CVE-2015-2331)