archive/php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2025-08-15 13:38:49 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Update NEWS with entries for security fixes

Browse source
This commit is contained in:
Jakub Zelenka 2025-06-26 11:27:48 +02:00 committed by Sergey Panteleev
parent 97c51c0e3d
commit 4c77a397d0
No known key found for this signature in database
GPG key ID: 659A97C9CF2A795A
1 changed files with 12 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

12
NEWS
View file

@ -2,6 +2,18 @@ PHP NEWS
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
?? ??? ????, PHP 8.2.29 ?? ??? ????, PHP 8.2.29
- PGSQL:
. Fixed GHSA-hrwm-9436-5mv3 (pgsql extension does not check for errors during
escaping). (CVE-2025-1735) (Jakub Zelenka)
- SOAP:
. Fixed GHSA-453j-q27h-5p8x (NULL Pointer Dereference in PHP SOAP Extension
via Large XML Namespace Prefix). (CVE-2025-6491) (Lekssays, nielsdos)
- Standard:
. Fixed GHSA-3cr5-j632-f35r (Null byte termination in hostnames).
(CVE-2025-1220) (Jakub Zelenka)
13 Mar 2025, PHP 8.2.28 13 Mar 2025, PHP 8.2.28
- Core: - Core: