===================================================================== CERT-Renater Note d'Information No. 2023/VULN222 _____________________________________________________________________ DATE : 14/06/2023 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running PHP versions prior to 8.0.29, 8.1.20, 8.2.7. ===================================================================== https://www.php.net/archive/2023.php#2023-06-08-1 https://www.php.net/archive/2023.php#2023-06-08-4 https://www.php.net/archive/2023.php#2023-06-08-2 http://www.php.net/ChangeLog-8.php#8.0.29 http://www.php.net/ChangeLog-8.php#8.1.20 http://www.php.net/ChangeLog-8.php#8.2.7 _____________________________________________________________________ PHP 8.0.29 Released! 08 Jun 2023 The PHP development team announces the immediate availability of PHP 8.0.29. This is a security release. All PHP 8.0 users are encouraged to upgrade to this version. For source downloads of PHP 8.0.29 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog. _____________________________________________________________________ PHP 8.1.20 Released! 08 Jun 2023 The PHP development team announces the immediate availability of PHP 8.1.20. This is a security release. All PHP 8.1 users are encouraged to upgrade to this version. For source downloads of PHP 8.1.20 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog. _____________________________________________________________________ PHP 8.2.7 Released! 08 Jun 2023 The PHP development team announces the immediate availability of PHP 8.2.7. This is a security release. All PHP 8.2 users are encouraged to upgrade to this version. For source downloads of PHP 8.2.7 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog. _____________________________________________________________________ Version 8.0.29 08 Jun 2023 Soap: Fixed bug GHSA-76gg-c692-v2mw (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP). _____________________________________________________________________ Version 8.1.20 08 Jun 2023 Core: Fixed bug GH-9068 (Conditional jump or move depends on uninitialised value(s)). Fixed bug GH-11189 (Exceeding memory limit in zend_hash_do_resize leaves the array in an invalid state). Fixed bug GH-11222 (foreach by-ref may jump over keys during a rehash). Date: Fixed bug GH-11281 (DateTimeZone::getName() does not include seconds in offset). Exif: Fixed bug GH-10834 (exif_read_data() cannot read smaller stream wrapper chunk sizes). FPM: Fixed bug GH-10461 (PHP-FPM segfault due to after free usage of child->ev_std(out|err)). Fixed bug #64539 (FPM status page: query_string not properly JSON encoded). Fixed memory leak for invalid primary script file handle. Hash: Fixed bug GH-11180 (hash_file() appears to be restricted to 3 arguments). LibXML: Fixed bug GH-11160 (Few tests failed building with new libxml 2.11.0). Opcache: Fixed bug GH-11134 (Incorrect match default branch optimization). Fixed too wide OR and AND range inference. Fixed bug GH-11245 (In some specific cases SWITCH with one default statement will cause segfault). PGSQL: Fixed parameter parsing of pg_lo_export(). Phar: Fixed bug GH-11099 (Generating phar.php during cross-compile can't be done). Soap: Fixed bug GHSA-76gg-c692-v2mw (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP). Fixed bug GH-8426 (make test fail while soap extension build). SPL: Fixed bug GH-11178 (Segmentation fault in spl_array_it_get_current_data (PHP 8.1.18)). Standard: Fixed bug GH-11138 (move_uploaded_file() emits open_basedir warning for source file). Fixed bug GH-11274 (POST/PATCH request switches to GET after a HTTP 308 redirect). Streams: Fixed bug GH-10031 ([Stream] STREAM_NOTIFY_PROGRESS over HTTP emitted irregularly for last chunk of data). Fixed bug GH-11175 (Stream Socket Timeout). Fixed bug GH-11177 (ASAN UndefinedBehaviorSanitizer when timeout = -1 passed to stream_socket_accept/stream_socket_client). _____________________________________________________________________ Version 8.2.7 08 Jun 2023 Core: Fixed bug GH-11152 (Unable to alias namespaces containing reserved class names). Fixed bug GH-9068 (Conditional jump or move depends on uninitialised value(s)). Fixed bug GH-11189 (Exceeding memory limit in zend_hash_do_resize leaves the array in an invalid state). Fixed bug GH-11063 (Compilation error on old GCC versions). Fixed bug GH-11222 (foreach by-ref may jump over keys during a rehash). Date: Fixed bug GH-11281 (DateTimeZone::getName() does not include seconds in offset). Exif: Fixed bug GH-10834 (exif_read_data() cannot read smaller stream wrapper chunk sizes). FPM: Fixed bug GH-10461 (PHP-FPM segfault due to after free usage of child->ev_std(out|err)). Fixed bug #64539 (FPM status page: query_string not properly JSON encoded). Fixed memory leak for invalid primary script file handle. Hash: Fixed bug GH-11180 (hash_file() appears to be restricted to 3 arguments). LibXML: Fixed bug GH-11160 (Few tests failed building with new libxml 2.11.0). MBString: Fix bug GH-11217 (Segfault in mb_strrpos / mb_strripos when using negative offset and ASCII encoding). Opcache: Fixed bug GH-11134 (Incorrect match default branch optimization). Fixed too wide OR and AND range inference. Fixed missing class redeclaration error with OPcache enabled. Fixed bug GH-11245 (In some specific cases SWITCH with one default statement will cause segfault). PCNTL: Fixed maximum argument count of pcntl_forkx(). PGSQL: Fixed parameter parsing of pg_lo_export(). Phar: Fixed bug GH-11099 (Generating phar.php during cross-compile can't be done). Soap: Fixed bug GHSA-76gg-c692-v2mw (Missing error check and insufficient random bytes in HTTP Digest authentication for SOAP). Fixed bug GH-8426 (make test fail while soap extension build). SPL: Fixed bug GH-11178 (Segmentation fault in spl_array_it_get_current_data (PHP 8.1.18)). Standard: Fixed bug GH-11138 (move_uploaded_file() emits open_basedir warning for source file). Fixed bug GH-11274 (POST/PATCH request switches to GET after a HTTP 308 redirect). Streams: Fixed bug GH-10031 ([Stream] STREAM_NOTIFY_PROGRESS over HTTP emitted irregularly for last chunk of data). Fixed bug GH-11175 (Stream Socket Timeout). Fixed bug GH-11177 (ASAN UndefinedBehaviorSanitizer when timeout = -1 passed to stream_socket_accept/stream_socket_client). ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================