File tree Expand file tree Collapse file tree 1 file changed +14
-4
lines changed Expand file tree Collapse file tree 1 file changed +14
-4
lines changed Original file line number Diff line number Diff line change 2525</ul></li>
2626<li>GD:
2727<ul>
28+ <li><?php bugfix (66387 ); ?> (Stack overflow with imagefilltoborder). (CVE-2015-8874)</li>
2829 <li><?php bugfix (72298 ); ?> (pass2_no_dither out-of-bounds access).</li>
2930 <li><?php bugfix (72337 ); ?> (invalid dimensions can lead to crash).</li>
3031 <li><?php bugfix (72339 ); ?> (Integer Overflow in _gd2GetHeader() resulting in heap overflow). (CVE-2016-5766)</li>
3132 <li><?php bugfix (72407 ); ?> (NULL Pointer Dereference at _gdScaleVert).</li>
33+ <li><?php bugfix (72446 ); ?> (Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow). (CVE-2016-5767)</li>
3234</ul></li>
3335<li>Intl:
3436<ul>
4244<ul>
4345 <li><?php bugfix (72455 ); ?> (Heap Overflow due to integer overflows). (CVE-2016-5769)</li>
4446</ul></li>
47+ <li>OpenSSL:
48+ <ul>
49+ <li><?php bugfix (72140 ); ?> (segfault after calling ERR_free_strings()).</li>
50+ </ul></li>
4551<li>PCRE:
4652<ul>
4753 <li><?php bugfix (72143 ); ?> (preg_replace uses int instead of size_t).</li>
5157 <li><?php bugfix (71573 ); ?> (Segfault (core dumped) if paramno beyond bound).</li>
5258 <li><?php bugfix (72294 ); ?> (Segmentation fault/invalid pointer in connection with pgsql_stmt_dtor).</li>
5359</ul></li>
60+ <li>Phar:
61+ <ul>
62+ <li><?php bugfix (72321 ); ?> (invalid free in phar_extract_file()).</li>
63+ </ul></li>
5464<li>Phpdbg:
5565<ul>
5666 <li><?php bugfix (72284 ); ?> (phpdbg fatal errors with coverage).</li>
6777 <li><?php bugfix (72229 ); ?> (Wrong reference when serialize/unserialize an object).</li>
6878 <li><?php bugfix (72300 ); ?> (ignore_user_abort(false) has no effect).</li>
6979</ul></li>
80+ <li>WDDX:
81+ <ul>
82+ <li><?php bugfix (72340 ); ?> (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)</li>
83+ </ul></li>
7084<li>XML:
7185<ul>
7286 <li><?php bugfix (72206 ); ?> (xml_parser_create/xml_parser_free leaks mem).</li>
7589<ul>
7690 <li><?php bugfix (72155 ); ?> (use-after-free caused by get_zval_xmlrpc_type).</li>
7791</ul></li>
78- <li>WDDX:
79- <ul>
80- <li><?php bugfix (72340 ); ?> (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)</li>
81- </ul></li>
8292<li>Zip:
8393<ul>
8494 <li><?php bugfix (72258 ); ?> (ZipArchive converts filenames to unrecoverable form).</li>
You can’t perform that action at this time.
0 commit comments