PHP 7.3.16 Release Announcement The PHP development team announces the immediate availability of PHP 7.3.16. This is a security release which also contains several bug fixes. All PHP 7.3 users are encouraged to upgrade to this version. For source downloads of PHP 7.3.16 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.
PHP 7.3.16发行公告PHP开发团队宣布PHP 7.3.16的立即可用性。 这是一个安全版本,其中还包含一些错误修复。 鼓励所有PHP 7.3用户升级到该版本。 有关PHP 7.3.16的源代码下载,请访问我们的下载页面,可在Windows.php.net/download/上找到Windows源代码和二进制文件。 更改列表记录在ChangeLog中。
Version 7.3.16
19 Mar 2020
Core:
Fixed bug #63206 (resTore_error_handler does not restore previous errors mask).
COM:
Fixed bug #66322 (COMPersistHelper::SaveToFile can save to wrong location).
Fixed bug #79242 (COM error constants don't match com_exception codes on x86).
Fixed bug #79248 (Traversing empty VT_ARRAY throws com_exception).
Fixed bug #79299 (com_print_typeinfo prints duplicate variables).
Fixed bug #79332 (php_istreams are never freed).
Fixed bug #79333 (com_print_typeinfo() leaks memory).
DOM:
Fixed bug #77569: (Write Access Violation in DomImplementation).
Fixed bug #79271 (DOMDocumentType::$childNodes is NULL).
Enchant:
Fixed bug #79311 (enchant_dict_suggest() fails on big endian architecture).
EXIF:
Fixed bug #79282 (Use-of-uninitialized-value in exif). (CVE-2020-7064)
MBstring:
Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full). (CVE-2020-7065)
MySQLi:
Fixed bug #64032 (mysqli reports different client_version).
PCRE:
Fixed bug #79188 (Memory corruption in preg_replace/preg_replace_callback and unicode).
PDO_ODBC:
Fixed bug #79038 (PDOStatement::nextRowset() leaks column values).
Reflection:
Fixed bug #79062 (Property with heredoc default value returns false for getDocComment).
SQLite3:
Fixed bug #79294 (::columnType() may fail after SQLite3Stmt::reset()).
Standard:
Fixed bug #79329 (get_headers() silently truncates after a null byte). (CVE-2020-7066)
Fixed bug #79254 (getenv() w/o arguments not showing changes).
Fixed bug #79265 (Improper injection of Host header when using fopen for http requests).
The PHP development team announces the immediate availability of PHP 7.4.4. This is a security release which also contains several bug fixes.
All PHP 7.4 users are encouraged to upgrade to this version.
For source downloads of PHP 7.4.4 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.
PHP开发团队宣布将立即提供PHP 7.4.4。 这是一个安全版本,其中还包含一些错误修复。 鼓励所有PHP 7.4用户升级到该版本。 有关PHP 7.4.4的源代码下载,请访问我们的下载页面,可在Windows.php.net/download/上找到Windows源代码和二进制文件。 更改列表记录在ChangeLog中。
Version 7.4.4
19 Mar 2020
Core:
Fixed bug #79329 (get_headers() silently truncates after a null byte) (CVE-2020-7066)
Fixed bug #79244 (php crashes during parsing INI file).
Fixed bug #63206 (restore_error_handler does not restore previous errors mask).
COM:
Fixed bug #66322 (COMPersistHelper::SaveToFile can save to wrong location).
Fixed bug #79242 (COM error constants don't match com_exception codes on x86).
Fixed bug #79247 (Garbage collecting variant objects segfaults).
Fixed bug #79248 (Traversing empty VT_ARRAY throws com_exception).
Fixed bug #79299 (com_print_typeinfo prints duplicate variables).
Fixed bug #79332 (php_istreams are never freed).
Fixed bug #79333 (com_print_typeinfo() leaks memory).
CURL:
Fixed bug #79019 (Copied cURL handles upload empty file).
Fixed bug #79013 (Content-Length missing when posting a curlFile with curl).
DOM:
Fixed bug #77569: (Write Access Violation in DomImplementation).
Fixed bug #79271 (DOMDocumentType::$childNodes is NULL).
Enchant:
Fixed bug #79311 (enchant_dict_suggest() fails on big endian architecture).
EXIF:
Fixed bug #79282 (Use-of-uninitialized-value in exif) (CVE-2020-7064).
Fileinfo:
Fixed bug #79283 (Segfault in libmagic patch contains a buffer overflow).
FPM:
Fixed bug #77653 (Operator displayed instead of the real error message).
Fixed bug #79014 (PHP-FPM & Primary script unknown).
MBstring:
Fixed bug #79371 (mb_strtolower (UTF-32LE): stack-buffer-overflow at php_unicode_tolower_full) (CVE-2020-7065).
MySQLi:
Fixed bug #64032 (mysqli reports different client_version).
MySQLnd:
Implemented FR #79275 (Support auth_plugin_caching_sha2_password on Windows).
Opcache:
Fixed bug #79252 (preloading causes php-fpm to segfault during exit).
PCRE:
Fixed bug #79188 (Memory corruption in preg_replace/preg_replace_callback and unicode).
Fixed bug #79241 (Segmentation fault on preg_match()).
Fixed bug #79257 (Duplicate named groups (?J) prefer last alternative even if not matched).
PDO_ODBC:
Fixed bug #79038 (PDOStatement::nextRowset() leaks column values).
Reflection:
Fixed bug #79062 (Property with heredoc default value returns false for getDocComment).
SQLite3:
Fixed bug #79294 (::columnType() may fail after SQLite3Stmt::reset()).
Standard:
Fixed bug #79254 (getenv() w/o arguments not showing changes).
Fixed bug #79265 (Improper injection of Host header when using fopen for http requests).
Zip:
Fixed bug #79315 (ZipArchive::addFile doesn't honor start/length parameters).
