Software 42837 Published by

Jakub Zelenka announced the release of PHP 8.3.7. The change log includes fixes for Zend problems such as zend_call_stack build, zend_max-execution-timers, fileinfo, FPM, Intl, MySQLnd, Opcache, OpenSSL, PDO SQLite, Phar, PHPDBG, Posix, Session, and Streams. These fixes address a variety of issues, including invalid execute_data->opline pointers, incorrect dnl appended in configure, incorrect autoloading during constant resolution, ASAN false positive underflow, incorrect filename and lineno identification, ASAN false positive underflow when copy() is executed, and more.



php-8.3.7

- Core:
. Fixed zend_call_stack build with Linux/uclibc-ng without thread support.
(Fabrice Fontaine)
. Fixed bug GH-13772 (Invalid execute_data->opline pointers in observer fcall
handlers when JIT is enabled). (Bob)
. Fixed bug GH-13931 (Applying zero offset to null pointer in
Zend/zend_opcode.c). (nielsdos)
. Fixed bug GH-13942 (Align the behavior of zend-max-execution-timers with
other timeout implementations). (Kévin Dunglas)
. Fixed bug GH-14003 (Broken cleanup of unfinished calls with callable convert
parameters). (ilutov)
. Fixed bug GH-14013 (Erroneous dnl appended in configure). (Peter Kokot)
. Fixed bug GH-10232 (If autoloading occurs during constant resolution
filename and lineno are identified incorrectly). (ranvis)
. Fixed bug GH-13727 (Missing void keyword). (Peter Kokot)

- Fibers:
. Fixed bug GH-13903 (ASAN false positive underflow when executing copy()).
(nielsdos)

- Fileinfo:
. Fixed bug GH-13795 (Test failing in ext/fileinfo/tests/bug78987.phpt on
big-endian PPC). (orlitzky)

- FPM:
. Fixed bug GH-13563 (Setting bool values via env in FPM config fails).
(Jakub Zelenka)

- Intl:
. Fixed build for icu 74 and onwards. (dunglas)

- MySQLnd:
. Fix shift out of bounds on 32-bit non-fast-path platforms. (nielsdos)

- Opcache:
. Fixed bug GH-13433 (Segmentation Fault in zend_class_init_statics when
using opcache.preload). (nielsdos)
. Fixed incorrect assumptions across compilation units for static calls.
(ilutov)

- OpenSSL:
. Fixed bug GH-10495 (feof on OpenSSL stream hangs indefinitely).
(Jakub Zelenka)

- PDO SQLite:
. Fix GH-13984 (Buffer size is now checked before memcmp). (Saki Takamachi)
. Fix GH-13998 (Manage refcount of agg_context->val correctly).
(Saki Takamachi)

- Phar:
. Fixed bug GH-13836 (Renaming a file in a Phar to an already existing
filename causes a NULL pointer dereference). (nielsdos)
. Fixed bug GH-13833 (Applying zero offset to null pointer in zend_hash.c).
(nielsdos)
. Fix potential NULL pointer dereference before calling EVP_SignInit. (icy17)

- PHPDBG:
. Fixed bug GH-13827 (Null pointer access of type 'zval' in phpdbg_frame).
(nielsdos)

- Posix:
. Fix usage of reentrant functions in ext/posix. (Arnaud)

- Session:
. Fixed bug GH-13856 (Member access within null pointer of type 'ps_files' in
ext/session/mod_files.c). (nielsdos)
. Fixed bug GH-13891 (memleak and segfault when using ini_set with
session.trans_sid_hosts). (nielsdos, kamil-tekiela)
. Fixed buffer _read/_write size limit on windows for the file mode. (David Carlier)

- Streams:
. Fixed file_get_contents() on Windows fails with "errno=22 Invalid
argument". (Damian Wójcik)
. Fixed bug GH-13264 (Part 1 - Memory leak on stream filter failure).
(Jakub Zelenka)
. Fixed bug GH-13860 (Incorrect PHP_STREAM_OPTION_CHECK_LIVENESS case in
ext/openssl/xp_ssl.c - causing use of dead socket). (nielsdos)
. Fixed bug GH-11678 (Build fails on musl 1.2.4 - lfs64). (Arnaud)

- Treewide:
. Fix gcc-14 Wcalloc-transposed-args warnings. (Cristian Rodríguez)

Release php-8.3.7 · php/php-src