php-8.3.21RC1
- Core:
. Fixed bug GH-18304 (Changing the properties of a DateInterval through
dynamic properties triggers a SegFault). (nielsdos)
. Fix some leaks in php_scandir. (nielsdos)
- Filter:
. Fixed bug GH-18309 (ipv6 filter integer overflow). (nielsdos)
- GD:
. Fixed imagecrop() overflow with rect argument with x/width y/heigh usage
in gdImageCrop(). (David Carlier)
. Fixed GH-18243 imagettftext() overflow/underflow on font size value.
(David Carlier)
- Intl:
. Fix reference support for intltz_get_offset(). (nielsdos)
- LDAP:
. Fixed bug GH-17776 (LDAP_OPT_X_TLS_* options can't be overridden). (Remi)
. Fix NULL deref on high modification key. (nielsdos)
- libxml:
. Fixed custom external entity loader returning an invalid resource leading
to a confusing TypeError message. (Girgias)
- OpenSSL:
. Fix memory leak in openssl_sign() when passing invalid algorithm.
(nielsdos)
. Fix potential leaks when writing to BIO fails. (nielsdos)
- PDO Firebird:
. Fixed GH-18276 - persistent connection - "zend_mm_heap corrupted"
with setAttribute() (SakiTakamachi).
- SPL:
. Fixed bug GH-18322 (SplObjectStorage debug handler mismanages memory).
(nielsdos)
- Standard:
. Fixed bug GH-18145 (php8ts crashes in php_clear_stat_cache()).
(Jakub Zelenka)
. Fixed bug GH-18209 (Use-after-free in extract() with EXTR_REFS). (ilutov)
. Fixed bug GH-18212 (fseek with SEEK_CUR whence value and negative offset
leads to negative stream position). (David Carlier)
. Fix resource leak in iptcembed() on error. (nielsdos)
- Zip:
. Fix uouv when handling empty options in ZipArchive::addGlob(). (nielsdos)
. Fix memory leak when handling a too long path in ZipArchive::addGlob().
(nielsdos)
PHP-8.3.21 RC1 has been released for testing and addresses multiple issues across several components, including core, filter, GD, Intl, LDAP, libxml, OpenSSL, PDO Firebird, SPL, and Standard. The updates cover various critical fixes, including bug GH-18304, an integer overflow in the IPv6 filter, overflow issues with imagecrop(), reference support for intltz_get_offset(), the inability to override LDAP_OPT_X_TLS_* options, a libxml custom external entity loader returning invalid resources, memory leaks in OpenSSL, persistent connection issues with PDO Firebird, memory mismanagement in SPL, and standard bugs such as php8ts crashes, use-after-free errors in extract(), fseek with SEEK_CUR, and resource leaks in iptcembed().
