Merge pull request #1 from php/master

upd

Author: Wes1262

ChangeLog-5.php

@@ -7,6 +7,108 @@
 ?>
 
 <h1>PHP 5 ChangeLog</h1>
+<section class="version" id="5.6.23"><!-- {{{ 5.6.23 -->
+<h3>Version 5.6.23</h3>
+<b><?php release_date('23-Jun-2016'); ?></b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(72268); ?> (Integer Overflow in nl2br()).</li>
+  <li><?php bugfix(72275); ?> (Integer Overflow in json_encode()/json_decode()/ json_utf8_to_utf16()).</li>
+  <li><?php bugfix(72400); ?> (Integer Overflow in addcslashes/addslashes).</li>
+  <li><?php bugfix(72403); ?> (Integer Overflow in Length of String-typed ZVAL).</li>
+</ul></li>
+<li>Date:
+<ul>
+  <li><?php bugfix(63740); ?> (strtotime seems to use both sunday and monday as start of week).</li>
+</ul></li>
+<li>GD:
+<ul>
+  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
+  <li><?php bugfix(72298); ?> (pass2_no_dither out-of-bounds access).</li>
+  <li><?php bugfix(72337); ?> (invalid dimensions can lead to crash).</li>
+  <li><?php bugfix(72339); ?> (Integer Overflow in _gd2GetHeader() resulting in heap overflow). (CVE-2016-5766)</li>
+  <li><?php bugfix(72407); ?> (NULL Pointer Dereference at _gdScaleVert).</li>
+  <li><?php bugfix(72446); ?> (Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow). (CVE-2016-5767)</li>
+</ul></li>
+<li>Intl:
+<ul>
+  <li><?php bugfix(70484); ?> (selectordinal doesn't work with named parameters).</li>
+</ul></li>
+<li>mbstring:
+<ul>
+  <li><?php bugfix(72402); ?> (_php_mb_regex_ereg_replace_exec - double free). (CVE-2016-5768)</li>
+</ul></li>
+<li>mcrypt:
+<ul>
+  <li><?php bugfix(72455); ?> (Heap Overflow due to integer overflows). (CVE-2016-5769)</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+  <li><?php bugfix(72140); ?> (segfault after calling ERR_free_strings()).</li>
+</ul></li>
+<li>Phar:
+<ul>
+  <li><?php bugfix(72321); ?> (invalid free in phar_extract_file()).</li>
+</ul></li>
+<li>SPL:
+<ul>
+  <li><?php bugfix(72262); ?> (int/size_t confusion in SplFileObject::fread). (CVE-2016-5770)</li>
+  <li><?php bugfix(72433); ?> (Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5771)</li>
+</ul></li>
+<li>WDDX:
+<ul>
+  <li><?php bugfix(72340); ?> (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)</li>
+</ul></li>
+<li>zip:
+<ul>
+  <li><?php bugfix(72434); ?> (ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5773)</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
+<section class="version" id="5.5.37"><!-- {{{ 5.5.37 -->
+<h3>Version 5.5.37</h3>
+<b><?php release_date('23-Jun-2016'); ?></b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(72268); ?> (Integer Overflow in nl2br()).</li>
+  <li><?php bugfix(72275); ?> (Integer Overflow in json_encode()/json_decode()/ json_utf8_to_utf16()).</li>
+  <li><?php bugfix(72400); ?> (Integer Overflow in addcslashes/addslashes).</li>
+  <li><?php bugfix(72403); ?> (Integer Overflow in Length of String-typed ZVAL).</li>
+</ul></li>
+<li>GD:
+<ul>
+  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
+  <li><?php bugfix(72298); ?> (pass2_no_dither out-of-bounds access).</li>
+  <li><?php bugfix(72339); ?> (Integer Overflow in _gd2GetHeader() resulting in heap overflow). (CVE-2016-5766)</li>
+  <li><?php bugfix(72407); ?> (NULL Pointer Dereference at _gdScaleVert).</li>
+  <li><?php bugfix(72446); ?> (Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow). (CVE-2016-5767)</li>
+</ul></li>
+<li>mbstring:
+<ul>
+  <li><?php bugfix(72402); ?> (_php_mb_regex_ereg_replace_exec - double free). (CVE-2016-5768)</li>
+</ul></li>
+</ul></li>
+<li>mcrypt:
+<ul>
+  <li><?php bugfix(72455); ?> (Heap Overflow due to integer overflows). (CVE-2016-5769)</li>
+</ul></li>
+<li>SPL:
+<ul>
+  <li><?php bugfix(72262); ?> (int/size_t confusion in SplFileObject::fread). (CVE-2016-5770)</li>
+  <li><?php bugfix(72433); ?> (Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5771)</li>
+</ul></li>
+<li>WDDX:
+<ul>
+  <li><?php bugfix(72340); ?> (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)</li>
+</ul></li>
+<li>zip:
+<ul>
+  <li><?php bugfix(72434); ?> (ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5773)</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
 <section class="version" id="5.6.22"><!-- {{{ 5.6.22 -->
 <h3>Version 5.6.22</h3>
 <b><?php release_date('26-May-2016'); ?></b>
@@ -27,7 +129,7 @@
 </ul></li>
 <li>Postgres:
 <ul>
-  <li><?php bugfix(72151); ?> (mysqli_fetch_object changed behaviour).</li>
+<li><?php bugfix(72151); ?> (mysqli_fetch_object changed behaviour). Patch to <?php bugl(71820) ?> is reverted.</li>
 </ul></li>
 </ul>
 <!-- }}} --></section>
@@ -763,7 +865,7 @@
 <li>GD:
 <ul>
   <li><?php bugfix(53156); ?> (imagerectangle problem with point ordering).</li>
-  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder).</li>
+  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
   <li><?php bugfix(70102); ?> (imagecreatefromwebm() shifts colors).</li>
   <li><?php bugfix(66590); ?> (imagewebp() doesn't pad to even length).</li>
   <li><?php bugfix(66882); ?> (imagerotate by -90 degrees truncates image by 1px).</li>

ChangeLog-7.php

@@ -7,6 +7,100 @@
 
 <h1>PHP 7 ChangeLog</h1>
 
+<section class="version" id="7.0.8"><!-- {{{ 7.0.8 -->
+<h3>Version 7.0.8</h3>
+<b><?php release_date('23-Jun-2016'); ?></b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(72218); ?> (If host name cannot be resolved then PHP 7 crashes).</li>
+  <li><?php bugfix(72221); ?> (segfault, past-the-end access).</li>
+  <li><?php bugfix(72268); ?> (Integer Overflow in nl2br()).</li>
+  <li><?php bugfix(72275); ?> (Integer Overflow in json_encode()/json_decode()/ json_utf8_to_utf16()).</li>
+  <li><?php bugfix(72400); ?> (Integer Overflow in addcslashes/addslashes).</li>
+  <li><?php bugfix(72403); ?> (Integer Overflow in Length of String-typed ZVAL).</li>
+</ul></li>
+<li>Date:
+<ul>
+  <li><?php bugfix(63740); ?> (strtotime seems to use both sunday and monday as start of week).</li>
+</ul></li>
+<li>FPM:
+<ul>
+  <li><?php bugfix(72308); ?> (fastcgi_finish_request and logging environment variables).</li>
+</ul></li>
+<li>GD:
+<ul>
+  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
+  <li><?php bugfix(72298); ?> (pass2_no_dither out-of-bounds access).</li>
+  <li><?php bugfix(72337); ?> (invalid dimensions can lead to crash).</li>
+  <li><?php bugfix(72339); ?> (Integer Overflow in _gd2GetHeader() resulting in heap overflow). (CVE-2016-5766)</li>
+  <li><?php bugfix(72407); ?> (NULL Pointer Dereference at _gdScaleVert).</li>
+  <li><?php bugfix(72446); ?> (Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow). (CVE-2016-5767)</li>
+</ul></li>
+<li>Intl:
+<ul>
+  <li><?php bugfix(70484); ?> (selectordinal doesn't work with named parameters).</li>
+</ul></li>
+<li>mbstring:
+<ul>
+  <li><?php bugfix(72402); ?> (_php_mb_regex_ereg_replace_exec - double free). (CVE-2016-5768)</li>
+</ul></li>
+<li>mcrypt:
+<ul>
+  <li><?php bugfix(72455); ?> (Heap Overflow due to integer overflows). (CVE-2016-5769)</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+  <li><?php bugfix(72140); ?> (segfault after calling ERR_free_strings()).</li>
+</ul></li>
+<li>PCRE:
+<ul>
+  <li><?php bugfix(72143); ?> (preg_replace uses int instead of size_t).</li>
+</ul></li>
+<li>PDO_pgsql:
+<ul>
+  <li><?php bugfix(71573); ?> (Segfault (core dumped) if paramno beyond bound).</li>
+  <li><?php bugfix(72294); ?> (Segmentation fault/invalid pointer in connection with pgsql_stmt_dtor).</li>
+</ul></li>
+<li>Phar:
+<ul>
+  <li><?php bugfix(72321); ?> (invalid free in phar_extract_file()).</li>
+</ul></li>
+<li>Phpdbg:
+<ul>
+  <li><?php bugfix(72284); ?> (phpdbg fatal errors with coverage).</li>
+</ul></li>
+<li>Postgres:
+<ul>
+  <li><?php bugfix(72195); ?> (pg_pconnect/pg_connect cause use-after-free).</li>
+  <li><?php bugfix(72197); ?> (pg_lo_create arbitrary read).</li>
+</ul></li>
+<li>Standard:
+<ul>
+  <li><?php bugfix(72017); ?> (range() with float step produces unexpected result).</li>
+  <li><?php bugfix(72193); ?> (dns_get_record returns array containing elements of type 'unknown').</li>
+  <li><?php bugfix(72229); ?> (Wrong reference when serialize/unserialize an object).</li>
+  <li><?php bugfix(72300); ?> (ignore_user_abort(false) has no effect).</li>
+</ul></li>
+<li>WDDX:
+<ul>
+  <li><?php bugfix(72340); ?> (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)</li>
+</ul></li>
+<li>XML:
+<ul>
+  <li><?php bugfix(72206); ?> (xml_parser_create/xml_parser_free leaks mem).</li>
+</ul></li>
+<li>XMLRPC:
+<ul>
+  <li><?php bugfix(72155); ?> (use-after-free caused by get_zval_xmlrpc_type).</li>
+</ul></li>
+<li>Zip:
+<ul>
+  <li><?php bugfix(72258); ?> (ZipArchive converts filenames to unrecoverable form).</li>
+  <li><?php bugfix(72434); ?> (ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5773)</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
 <section class="version" id="7.0.7"><!-- {{{ 7.0.7 -->
 <h3>Version 7.0.7</h3>
 <b><?php release_date('26-May-2016'); ?></b>
@@ -36,6 +130,7 @@
 </ul></li>
 <li>Intl:
 <ul>
+  <li><?php bugfix(64524); ?> (Add intl.use_exceptions to php.ini-*).</li>
   <li><?php bugfix(72241); ?> (get_icu_value_internal out-of-bounds read). (CVE-2016-5093)</li>
 </ul></li>
 <li>JSON:
@@ -70,7 +165,7 @@
 <ul>
   <li><?php bugfix(72028); ?> (pg_query_params(): NULL converts to empty string).</li>
   <li><?php bugfix(71062); ?> (pg_convert() doesn't accept ISO 8601 for datatype timestamp).</li>
-  <li><?php bugfix(72151); ?> (mysqli_fetch_object changed behaviour).</li>
+  <li><?php bugfix(72151); ?> (mysqli_fetch_object changed behaviour). Patch to <?php bugl(71820) ?> is reverted.</li>
 </ul></li>
 <li>Reflection:
 <ul>
@@ -859,7 +954,7 @@
 <li>GD:
 <ul>
   <li><?php bugfix(53156); ?> (imagerectangle problem with point ordering).</li>
-  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder).</li>
+  <li><?php bugfix(66387); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
   <li><?php bugfix(70102); ?> (imagecreatefromwebm() shifts colors).</li>
   <li><?php bugfix(66590); ?> (imagewebp() doesn't pad to even length).</li>
   <li><?php bugfix(66882); ?> (imagerotate by -90 degrees truncates image by 1px).</li>

archive/archive.xml

@@ -9,6 +9,17 @@
     <uri>http://php.net/contact</uri>
     <email>[email protected]</email>
   </author>
+  <xi:include href="entries/2016-07-07-1.xml"/>
+  <xi:include href="entries/2016-06-24-1.xml"/>
+  <xi:include href="entries/2016-06-23-3.xml"/>
+  <xi:include href="entries/2016-06-23-2.xml"/>
+  <xi:include href="entries/2016-06-23-1.xml"/>
+  <xi:include href="entries/2016-06-15-1.xml"/>
+  <xi:include href="entries/2016-06-09-1.xml"/>
+  <xi:include href="entries/2016-06-06-1.xml"/>
+  <xi:include href="entries/2016-06-03-1.xml"/>
+  <xi:include href="entries/2016-06-02-1.xml"/>
+  <xi:include href="entries/2016-05-30-1.xml"/>
   <xi:include href="entries/2016-05-26-3.xml"/>
   <xi:include href="entries/2016-05-26-2.xml"/>
   <xi:include href="entries/2016-05-26-1.xml"/>

archive/entries/2016-05-30-1.xml

@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom" xmlns:default="http://php.net/ns/news">
+  <title>The 4th Annual China PHP Conference</title>
+  <id>http://php.net/archive/2016.php#id2016-05-30-1</id>
+  <published>2016-05-30T15:53:21+00:00</published>
+  <updated>2016-05-30T15:53:21+00:00</updated>
+  <default:finalTeaserDate xmlns="http://php.net/ns/news">2016-06-25</default:finalTeaserDate>
+  <category term="conferences" label="Conference announcement"/>
+  <link href="http://php.net/conferences/index.php#id2016-05-30-1" rel="alternate" type="text/html"/>
+  <default:newsImage xmlns="http://php.net/ns/news" link="http://www.phpconchina.com/"
+	  title="The 4th Annual China PHP Conference">shanghai2016.jpg</default:newsImage>
+  <link href="http://php.net/archive/2016.php#id2016-05-30-1" rel="via" type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml">
+					<p>The 4th Annual China PHP Conference – June 25 to 26, Shanghai</p>
+					
+					<p>We will be hosting a 2-days event filled with high quality, technical sessions about PHP Core, PHP High Performance, PHP Engineering, and PHP more.</p>
+					 
+					<p>Don’t miss out on 2-great days sessions, delicious food, fantastic shows and countless networking opportunities to engage with speakers and delegates.</p>
+
+					<p>Go to <a href="http://www.phpconchina.com/">www.phpconchina.com</a> for tickets and more information.</p>
+    </div>
+  </content>
+</entry>

archive/entries/2016-06-02-1.xml

@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom" xmlns:default="http://php.net/ns/news">
+  <title>php[world] 2016 Call for Speakers</title>
+  <id>http://php.net/archive/2016.php#id2016-06-02-1</id>
+  <published>2016-06-02T11:36:27-04:00</published>
+  <updated>2016-06-02T11:36:27-04:00</updated>
+  <default:finalTeaserDate xmlns="http://php.net/ns/news">2016-06-24</default:finalTeaserDate>
+  <category term="cfp" label="Call for Papers"/>
+  <link href="http://php.net/conferences/index.php#id2016-06-02-1" rel="alternate" type="text/html"/>
+  <default:newsImage xmlns="http://php.net/ns/news" link="https://world.phparch.com/" title="php[world] 2016">phpworld-logo-banner-x-200.png</default:newsImage>
+  <link href="https://world.phparch.com/" rel="via" type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml">
+     <p>We are excited to announce that the <a href="https://world.phparch.com/call-for-speakers/">Call for Speakers</a> has opened for <a href="https://world.phparch.com">php[world] 2016</a>.
+     </p>
+     <p>Now in its 3rd year, <a href="https://world.phparch.com">php[world]</a> is the conference designed to bring the entire world of PHP together in one place, with dedicated tracks for the biggest applications and frameworks in the PHP community such as WordPress, Drupal, Magento, Joomla!, Symfony, Zend Framework, CakePHP, and Laravel.
+     </p>
+     <p>We need to hear from you what you want to speak about though.  Talks that fit any of those frameworks or are related to PHP development are all welcome.  We offer a comprehensive speakers package to make sure that our presenters aren't put out financially for the event, including:
+     </p>
+     <ul>
+     <li>Airfare coverage ($400 domestic, $1000 international)</li>
+     <li>Hotel room (1 night + 1 per accepted talk)</li>
+     <li>Free ticket to the conference</li>
+     <li>Most meals included!</li>
+     </ul>
+     <p>Don't hesitate, our <a href="https://world.phparch.com/call-for-speakers/">Call for Speakers</a> is only open for 3 weeks and closes on June 24th, 2016.  So get those submissions in soon, we look forward to <a href="https://world.phparch.com/call-for-speakers/">hearing from you</a>!</p>
+    </div>
+  </content>
+</entry>

archive/entries/2016-06-03-1.xml

@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom" xmlns:default="http://php.net/ns/news">
+  <title>Madison PHP Conference 2016 Call For Papers</title>
+  <id>http://php.net/archive/2016.php#id2016-06-03-1</id>
+  <published>2016-06-03T21:05:00-04:00</published>
+  <updated>2016-06-03T21:05:00-04:00</updated>
+  <default:finalTeaserDate xmlns="http://php.net/ns/news">2016-06-20</default:finalTeaserDate>
+  <category term="cfp" label="Call for Papers"/>
+  <link href="http://php.net/conferences/index.php#id2016-06-03-1" rel="alternate" type="text/html"/>
+  <default:newsImage xmlns="http://php.net/ns/news" link="http://2016.madisonphpconference.com/" title="Madison PHP Conference 2016">madison-php-2016-conf-logo.png</default:newsImage>
+  <link href="http://2016.madisonphpconference.com" rel="via" type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml">
+     <p>We are excited to announce that the <a href="https://cfp.madisonphpconference.com/">Call for Papers</a> has opened for <a href="http://2016.madisonphpconference.com">Madison PHP Conference 2016</a>.
+     </p>
+     <p>
+       Join us on Friday, September 30th, 2016 for a full day of tutorials followed by a three tracks of talks on Saturday, October 1st, 2016. Madison PHP Conference in Madison, Wisconsin focuses on PHP and related web technologies. This event is organized by Madison PHP and is designed to offer something to attendees at all skill levels. It will be two days of networking, learning, sharing, and great fun!
+     </p>
+    </div>
+  </content>
+</entry>

archive/entries/2016-06-06-1.xml

@@ -0,0 +1,43 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom" xmlns:default="http://php.net/ns/news">
+  <title>DevConf 2016</title>
+  <id>http://php.net/archive/2016.php#id2016-06-06-1</id>
+  <published>2016-06-06T09:10:08+00:00</published>
+  <updated>2016-06-06T09:10:08+00:00</updated>
+  <default:finalTeaserDate xmlns="http://php.net/ns/news">2016-06-17</default:finalTeaserDate>
+  <category term="conferences" label="Conference announcement"/>
+  <link href="http://php.net/conferences/index.php#id2016-06-06-1" rel="alternate" type="text/html"/>
+  <default:newsImage xmlns="http://php.net/ns/news" link="http://devconf.ru" title="DevConf 2016">devconfru2012.png</default:newsImage>
+  <link href="http://devconf.ru" rel="via" type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml">
+          <p>
+           DevConf 2016 in Moscow, Russia on June 17-18.
+          </p>
+          <p>
+           DevConf is the ultimate meeting place for russian-speaking web-developers,
+              combining several language-specific conferences under one roof.
+              This year the conference will take place in <a href="http://devconf.ru/ru/members/location">Skolkovo Moscow School of Management</a>.
+          </p>
+          <p>
+           DevConf 2016 will include the following sections:
+          </p>
+          <ul>
+           <li>DevConf::PHP();</li>
+           <li>DevConf::Python();</li>
+           <li>DevConf::Javascript();</li>
+           <li>DevConf::Storage();</li>
+           <li>DevConf::Golang();</li>
+           <li>DevConf::DevOps();</li>
+           <li>DevConf::Ruby();</li>
+          </ul>
+          <p>
+           Each section will feature several talks from the active contributors/authors of the language.
+              Among the invited speakers are Dmitry Stogov (Zend), Ekaterina Marshalkina (Drupal), Eduard Medvedev (StackStorm),
+              Alexander Alekseev (Postgres Professional), Sergey Petrunya (MariaDB), Vasily Soshnikov (Mail.Ru),
+              Nik Zavarnickiy (LuaJIT), Anton Shramko (Rust), Valentin Bartenev (NGINX) and speakers from Lazada, Oracle and other companies.
+           See more details on <a href="http://devconf.ru">the official website</a>.
+          </p>
+    </div>
+  </content>
+</entry>