Announce PHP 8.4.10

SakiTakamachi · SakiTakamachi · commit 4134868838e0 · 2025-07-03T20:48:19.000+09:00
diff --git a/ChangeLog-8.php b/ChangeLog-8.php
@@ -9,6 +9,112 @@
 
 <a id="PHP_8_4"></a>
 
+<section class="version" id="8.4.10"><!-- {{{ 8.4.10 -->
+<h3>Version 8.4.10</h3>
+<b><?php release_date('03-Jul-2025'); ?></b>
+<ul><li>BcMath:
+<ul>
+  <li>Fixed bug <?php githubissuel('php/php-src', 18641); ?> (Accessing a BcMath\Number property by ref crashes).</li>
+</ul></li>
+<li>Core:
+<ul>
+  <li>Fixed bugs <?php githubissuel('php/php-src', 17711); ?> and <?php githubissuel('php/php-src', 18022); ?> (Infinite recursion on deprecated attribute evaluation) and <?php githubissuel('php/php-src', 18464); ?> (Recursion protection for deprecation constants not released on bailout).</li>
+  <li>Fixed <?php githubissuel('php/php-src', 18695); ?> (zend_ast_export() - float number is not preserved).</li>
+  <li>Fix handling of references in zval_try_get_long().</li>
+  <li>Do not delete main chunk in zend_gc.</li>
+  <li>Fix compile issues with zend_alloc and some non-default options.</li>
+</ul></li>
+<li>Curl:
+<ul>
+  <li>Fix memory leak when setting a list via curl_setopt fails.</li>
+</ul></li>
+<li>Date:
+<ul>
+  <li>Fix leaks with multiple calls to DatePeriod iterator current().</li>
+</ul></li>
+<li>DOM:
+<ul>
+  <li>Fixed bug <?php githubissuel('php/php-src', 18744); ?> (classList works not correctly if copy HTMLElement by clone keyword).</li>
+</ul></li>
+<li>FPM:
+<ul>
+  <li>Fixed <?php githubissuel('php/php-src', 18662); ?> (fpm_get_status segfault).</li>
+</ul></li>
+<li>Hash:
+<ul>
+  <li>Fixed bug <?php githubissuel('php/php-src', 14551); ?> (PGO build fails with xxhash).</li>
+</ul></li>
+<li>Intl:
+<ul>
+  <li>Fix memory leak in intl_datetime_decompose() on failure.</li>
+  <li>Fix memory leak in locale lookup on failure.</li>
+</ul></li>
+<li>Opcache:
+<ul>
+  <li>Fixed bug <?php githubissuel('php/php-src', 18743); ?> (Incompatibility in Inline TLS Assembly on Alpine 3.22).</li>
+</ul></li>
+<li>ODBC:
+<ul>
+  <li>Fix memory leak on php_odbc_fetch_hash() failure.</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+  <li>Fix memory leak of X509_STORE in php_openssl_setup_verify() on failure.</li>
+  <li><?php bugfix(74796); ?> (Requests through http proxy set peer name).</li>
+</ul></li>
+<li>PGSQL:
+<ul>
+  <li>Fixed <?php githubsecurityl('php/php-src', 'hrwm-9436-5mv3'); ?> (pgsql extension does not check for errors during escaping). (CVE-2025-1735)</li>
+  <li>Fix warning not being emitted when failure to cancel a query with pg_cancel_query().</li>
+</ul></li>
+<li>PDO ODBC:
+<ul>
+  <li>Fix memory leak if WideCharToMultiByte() fails.</li>
+</ul></li>
+<li>PDO Sqlite:
+<ul>
+  <li>Fixed memory leak with Pdo_Sqlite::createCollation when the callback has an incorrect return type.</li>
+</ul></li>
+<li>Phar:
+<ul>
+  <li>Add missing filter cleanups on phar failure.</li>
+  <li>Fixed bug <?php githubissuel('php/php-src', 18642); ?> (Signed integer overflow in ext/phar fseek).</li>
+</ul></li>
+<li>PHPDBG:
+<ul>
+  <li>Fix 'phpdbg --help' segfault on shutdown with USE_ZEND_ALLOC=0.</li>
+</ul></li>
+<li>Random:
+<ul>
+  <li>Fix reference type confusion and leak in user random engine.</li>
+</ul></li>
+<li>Readline:
+<ul>
+  <li>Fix memory leak when calloc() fails in php_readline_completion_cb().</li>
+</ul></li>
+<li>SimpleXML:
+<ul>
+  <li>Fixed bug <?php githubissuel('php/php-src', 18597); ?> (Heap-buffer-overflow in zend_alloc.c when assigning string with UTF-8 bytes).</li>
+</ul></li>
+<li>SOAP:
+<ul>
+  <li>Fix memory leaks in php_http.c when call_user_function() fails.</li>
+  <li>Fixed <?php githubsecurityl('php/php-src', '453j-q27h-5p8x'); ?> (NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix). (CVE-2025-6491)</li>
+</ul></li>
+<li>Standard:
+<ul>
+  <li>Fixed <?php githubsecurityl('php/php-src', '3cr5-j632-f35r'); ?> (Null byte termination in hostnames). (CVE-2025-1220)</li>
+</ul></li>
+<li>Tidy:
+<ul>
+  <li>Fix memory leak in tidy output handler on error.</li>
+  <li>Fix tidyOptIsReadonly deprecation, using tidyOptGetCategory.</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
+
+
 <section class="version" id="8.4.8"><!-- {{{ 8.4.8 -->
 <h3>Version 8.4.8</h3>
 <b><?php release_date('05-Jun-2025'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
@@ -9,6 +9,7 @@
     <uri>http://php.net/contact</uri>
     <email>php-webmaster@lists.php.net</email>
   </author>
+  <xi:include href="entries/2025-07-03-1.xml"/>
   <xi:include href="entries/2025-06-11-1.xml"/>
   <xi:include href="entries/2025-06-09-1.xml"/>
   <xi:include href="entries/2025-06-06-1.xml"/>
diff --git a/archive/entries/2025-07-03-1.xml b/archive/entries/2025-07-03-1.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom">
+  <title>PHP 8.4.10 Released!</title>
+  <id>https://www.php.net/archive/2025.php#2025-07-03-1</id>
+  <published>2025-07-03T11:44:39+00:00</published>
+  <updated>2025-07-03T11:44:39+00:00</updated>
+  <link href="https://www.php.net/index.php#2025-07-03-1" rel="alternate" type="text/html"/>
+  <link href="https://www.php.net/archive/2025.php#2025-07-03-1" rel="via" type="text/html"/>
+  <category term="releases" label="New PHP release"/>
+  <category term="frontpage" label="PHP.net frontpage news"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml"><p>The PHP development team announces the immediate availability of PHP 8.4.10. This is a security release.</p>
+
+<p>All PHP 8.4 users are encouraged to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.4.10 please visit our <a href="https://www.php.net/downloads.php">downloads page</a>,
+Windows source and binaries can be found on <a href="https://windows.php.net/download/">windows.php.net/download/</a>.
+The list of changes is recorded in the <a href="https://www.php.net/ChangeLog-8.php#8.4.10">ChangeLog</a>.
+</p>    </div>
+  </content>
+</entry>
diff --git a/include/release-qa.php b/include/release-qa.php
@@ -88,10 +88,10 @@
         'active'  => true,
         'release' => [
             'type'       => 'RC',
-            'number'     => 1,
-            'sha256_bz2' => 'c7bc457604ffd4b66e9fa0918cd728d698566067293d0f8829bfc78bf2a8c6de',
-            'sha256_gz'  => '68cc7a69841d5ed09886d6be686de55ca09859c0fb8f033fbcec744d13e44dba',
-            'sha256_xz'  => '70412eb0b59c280e88bba0bae41386bb657ef17ea87aa09384593fcb99ecd001',
+            'number'     => 0,
+            'sha256_bz2' => '',
+            'sha256_gz'  => '',
+            'sha256_xz'  => '',
             'date'       => '19 Jun 2025',
             'baseurl'    => 'https://downloads.php.net/~saki/',
         ],
diff --git a/include/releases.inc b/include/releases.inc
@@ -2,6 +2,42 @@
 $OLDRELEASES = array (
   8 => 
   array (
+    '8.4.8' => 
+    array (
+      'announcement' => 
+      array (
+        'English' => '/releases/8_4_8.php',
+      ),
+      'tags' => 
+      array (
+      ),
+      'date' => '5 Jun 2025',
+      'source' => 
+      array (
+        0 => 
+        array (
+          'filename' => 'php-8.4.8.tar.gz',
+          'name' => 'PHP 8.4.8 (tar.gz)',
+          'sha256' => '26d5ae014925b7dee3a61ec02422795f008fbb3a36f9355edaee2d9d78b89b07',
+          'date' => '5 Jun 2025',
+        ),
+        1 => 
+        array (
+          'filename' => 'php-8.4.8.tar.bz2',
+          'name' => 'PHP 8.4.8 (tar.bz2)',
+          'sha256' => '36569c64dd1499e570c436603b641eee7cde4af576af786597d0ee711b3a3a8a',
+          'date' => '5 Jun 2025',
+        ),
+        2 => 
+        array (
+          'filename' => 'php-8.4.8.tar.xz',
+          'name' => 'PHP 8.4.8 (tar.xz)',
+          'sha256' => 'aa6a4d330b47eacd83e351658ba8c47747a1e4356456219cfb6d75e7838da091',
+          'date' => '5 Jun 2025',
+        ),
+      ),
+      'museum' => false,
+    ),
     '8.3.21' => 
     array (
       'announcement' => 
diff --git a/include/version.inc b/include/version.inc
@@ -20,13 +20,13 @@ $RELEASES = (function () {
 
     /* PHP 8.4 Release */
     $data['8.4'] = [
-        'version' => '8.4.8',
-        'date' => '5 Jun 2025',
-        'tags' => [], // Set to ['security'] for security releases.
+        'version' => '8.4.10',
+        'date' => '3 Jul 2025',
+        'tags' => ['security'], // Set to ['security'] for security releases.
         'sha256' => [
-            'tar.gz' => '26d5ae014925b7dee3a61ec02422795f008fbb3a36f9355edaee2d9d78b89b07',
-            'tar.bz2' => '36569c64dd1499e570c436603b641eee7cde4af576af786597d0ee711b3a3a8a',
-            'tar.xz' => 'aa6a4d330b47eacd83e351658ba8c47747a1e4356456219cfb6d75e7838da091',
+            'tar.gz' => 'bd25c40ece60d1b3c879c11f517d335b8d6a872174c32ebb088b9494d8bb2cf2',
+            'tar.bz2' => '8815d10659cde5f03be4d169205d62b7b29ed0edc7cdd84b6384cda0310c3108',
+            'tar.xz' => '14983a9ef8800e6bc2d920739fd386054402f7976ca9cd7f711509496f0d2632',
         ]
     ];
 
diff --git a/releases/8_4_10.php b/releases/8_4_10.php
@@ -0,0 +1,16 @@
+<?php
+$_SERVER['BASE_PAGE'] = 'releases/8_4_10.php';
+include_once __DIR__ . '/../include/prepend.inc';
+site_header('PHP 8.4.10 Release Announcement');
+?>
+<h1>PHP 8.4.10 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP 8.4.10. This is a security release.</p>
+
+<p>All PHP 8.4 users are encouraged to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.4.10 please visit our <a href="https://www.php.net/downloads.php">downloads page</a>,
+Windows source and binaries can be found on <a href="https://windows.php.net/download/">windows.php.net/download/</a>.
+The list of changes is recorded in the <a href="https://www.php.net/ChangeLog-8.php#8.4.10">ChangeLog</a>.
+</p>
+<?php site_footer();
