Software 42837 Published by

Pierrick Charron has announced the release candidate for PHP 8.2.14.



php-8.2.14RC1

- Core:
. Fixed bug #79699 (PHP parses encoded cookie names so malicious `__Host-`
cookies can be sent). (CVE-2020-7070) (Stas)

- OpenSSL:
. Fixed bug #79601 (Wrong ciphertext/tag in AES-CCM encryption for a 12
bytes IV). (CVE-2020-7069) (Jakub Zelenka)

Release php-8.2.14RC1 · php/php-src