php-src

mirror of https://github.com/php/php-src.git synced 2025-08-15 13:38:49 +02:00

History

Arnaud Le Blanc d65a1e6f91 Fix GHSA-9pqp-7h25-4f32 multipart/form-data boundaries larger than the read buffer result in erroneous parsing, which violates data integrity. Limit boundary size, as allowed by RFC 1521: Encapsulation boundaries [...] must be no longer than 70 characters, not counting the two leading hyphens. We correctly parse payloads with boundaries of length up to FILLUNIT-strlen("\r\n--") bytes, so allow this for BC.		2024-09-23 11:23:13 +01:00
..
basic	Fix GHSA-9pqp-7h25-4f32	2024-09-23 11:23:13 +01:00
classes	Include class name in Serializable deprecation message	2021-08-11 10:35:47 +02:00
func	Add many missing closing PHP tags to tests	2020-08-09 22:03:36 +02:00
lang	Fix GH-9905: constant() behaves inconsistent when class is undefined	2022-11-09 15:21:50 +01:00
output	Migrate SKIPIF -> EXTENSIONS (#7138 )	2021-06-11 11:57:42 +02:00
run-test	run-tests: use the EXTENSIONS section for skipping	2021-03-22 09:53:38 +01:00
security	Merge branch 'PHP-8.0'	2021-08-17 11:32:24 +02:00
strings	Merge branch 'PHP-8.0' into PHP-8.1	2021-09-29 12:21:49 +02:00