PHP

5.6.5

Released on 22 Jan 2015
Project description.
PHP is a popular general-purpose scripting language that is especially suited to web development
PHP 5.6.5 Changelog
  • Core:
    • Upgraded crypt_blowfish to version 1.3.
    • Fixed bug #60704 (unlink() bug with some files path).
    • Fixed bug #65419 (Inside trait, self::class != __CLASS__).
    • Fixed bug #68536 (pack for 64bits integer is broken on bigendian).
    • Fixed bug #55541 (errors spawn MessageBox, which blocks test automation).
    • Fixed bug #68297 (Application Popup provides too few information).
    • Fixed bug #65769 (localeconv() broken in TS builds).
    • Fixed bug #65230 (setting locale randomly broken).
    • Fixed bug #66764 (configure doesn't define EXPANDED_DATADIR / PHP_DATADIR correctly).
    • Fixed bug #68583 (Crash in timeout thread).
    • Fixed bug #65576 (Constructor from trait conflicts with inherited constructor).
    • Fixed bug #68676 (Explicit Double Free). (CVE-2014-9425)
    • Fixed bug #68710 (Use After Free Vulnerability in PHP's unserialize()). (CVE-2015-0231)
  • CGI:
    • Fixed bug #68618 (out of bounds read crashes php-cgi). (CVE-2014-9427)
  • CLI server:
    • Fixed bug #68745 (Invalid HTTP requests make web server segfault).
  • cURL:
    • Fixed bug #67643 (curl_multi_getcontent returns '' when CURLOPT_RETURNTRANSFER isn't set).
  • Date:
    • Implemented FR #68268 (DatePeriod: Getter for start date, end date and interval).
  • EXIF:
    • Fixed bug #68799 (Free called on uninitialized pointer). (CVE-2015-0232)
  • Fileinfo:
    • Fixed bug #68398 (msooxml matches too many archives).
    • Fixed bug #68665 (invalid free in libmagic).
    • Fixed bug #68671 (incorrect expression in libmagic).
    • Removed readelf.c and related code from libmagic sources.
    • Fixed bug #68735 (fileinfo out-of-bounds memory access). (CVE-2014-9652)
  • FPM:
    • Implemented FR #68526 (Implement POSIX Access Control List for UDS).
    • Fixed bug #68751 (listen.allowed_clients is broken).
  • GD:
    • Fixed bug #68601 (buffer read overflow in gd_gif_in.c). (CVE-2014-9709)
    • Implemented FR #68656 (Report gd library version).
  • mbstring:
    • Fixed bug #68504 (--with-libmbfl configure option not present on Windows).
  • Opcache:
    • Fixed bug #68644 (strlen incorrect : mbstring + func_overload=2 +UTF-8 + Opcache).
    • Fixed bug #67111 (Memory leak when using "continue 2" inside two foreach loops).
  • OpenSSL:
    • Improved handling of OPENSSL_KEYTYPE_EC keys.
  • pcntl:
    • Fixed bug #60509 (pcntl_signal doesn't decrease ref-count of old handler when setting SIG_DFL).
  • PCRE:
    • Fixed bug #66679 (Alignment Bug in PCRE 8.34 upstream).
  • pgsql:
    • Fixed bug #68697 (lo_export return -1 on failure).
  • PDO:
    • Fixed bug #68371 (PDO#getAttribute() cannot be called with platform-specifi attribute names).
  • PDO_mysql:
    • Fixed bug #68424 (Add new PDO mysql connection attr to control multi statements option).
  • SPL:
    • Fixed bug #66405 (RecursiveDirectoryIterator::CURRENT_AS_PATHNAME breaks the RecursiveIterator).
    • Fixed bug #68479 (Added escape parameter to SplFileObject::fputcsv).
  • SQLite:
    • Fixed bug #68120 (Update bundled libsqlite to 3.8.7.2).
  • Streams:
    • Fixed bug #68532 (convert.base64-encode omits padding bytes).