=====================================================================

                             CERT-Renater

                   Note d'Information No. 2021/VULN090
_____________________________________________________________________

DATE                : 22/02/2022

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running PHP versions prior to 8.1.3,
                                    8.0.16, 7.4.28.

=====================================================================
https://www.php.net/ChangeLog-8.php#8.1.3
https://www.php.net/ChangeLog-8.php#8.0.16
https://www.php.net/ChangeLog-7.php#7.4.28
_____________________________________________________________________

Version 8.1.3
17 Feb 2022


Core:
Fixed bug #81430 (Attribute instantiation leaves dangling pointer).
Fixed bug #7896 (Environment vars may be mangled on Windows).
Fixed bug #7883 (Segfault when INI file is not readable).
FFI:
Fixed bug #7867 (FFI::cast() from pointer to array is broken).
Filter:
Fix #81708: UAF due to php_filter_float() failing for ints. (CVE-2021-21708)
FPM:
Fixed memory leak on invalid port.
Fixed bug #7842 (Invalid OpenMetrics response format returned by FPM
   status page.
MBString:
Fixed bug #7902 (mb_send_mail may delimit headers with LF only).
MySQLnd:
Fixed bug #7972 (MariaDB version prefix 5.5.5- is not stripped).
pcntl:
Fixed pcntl_rfork build for DragonFlyBSD.
Sockets:
Fixed bug #7978 (sockets extension compilation errors).
Standard:
Fixed bug #7899 (Regression in unpack for negative int value).
Fixed bug #7875 (mails are sent even if failure to log throws exception).

_____________________________________________________________________

Version 8.0.16
17 Feb 2022


Core:
Fixed bug #81430 (Attribute instantiation leaves dangling pointer).
Fixed bug #7896 (Environment vars may be mangled on Windows).
FFI:
Fixed bug #7867 (FFI::cast() from pointer to array is broken).
Filter:
Fix #81708: UAF due to php_filter_float() failing for ints.
FPM:
Fixed memory leak on invalid port.
MBString:
Fixed bug #7902 (mb_send_mail may delimit headers with LF only).
MySQLnd:
Fixed bug #7972 (MariaDB version prefix 5.5.5- is not stripped).
Sockets:
Fixed ext/sockets build on Haiku.
Fixed bug #7978 (sockets extension compilation errors).
Standard:
Fixed bug #7875 (mails are sent even if failure to log throws exception).

_____________________________________________________________________


Version 7.4.28
17 Feb 2022


Filter:
Fix #81708: UAF due to php_filter_float() failing for ints (CVE-2021-21708)


=========================================================
+ CERT-RENATER       | tel : 01-53-94-20-44             +
+ 23/25 Rue Daviel   | fax : 01-53-94-20-41             +
+ 75013 Paris        | email:cert@support.renater.fr    +
=========================================================