PHP 5.4.36/5.6.4 发布

PHP 发布了两个更新版本，分别是 PHP 5.4

PHP 发布了两个更新版本，分别是 PHP 5.4.36 和 5.6.4 .

其中 5.6.4 改进内容包括：

• Core:
  • Fixed bug #68091 (Some Zend headers lack appropriate extern "C" blocks).
  • Fixed bug #68104 (Segfault while pre-evaluating a disabled function).
  • Fixed bug #68185 ("Inconsistent insteadof definition."- incorrectly triggered).
  • Fixed bug #68355 (Inconsistency in example php.ini comments).
  • Fixed bug #68370 ("unset($this)" can make the program crash).
  • Fixed bug #68422 (Incorrect argument reflection info for array_multisort()).
  • Fixed bug #68545 (NULL pointer dereference in unserialize.c).
  • Fixed bug #68446 (Array constant not accepted for array parameter default).
  • Fixed bug #68594 (Use after free vulnerability in unserialize()).
• Date:
  • Fixed day_of_week function as it could sometimes return negative values internally.
• FPM:
  • Fixed bug #68381 (fpm_unix_init_main ignores log_level).
  • Fixed bug #68420 (listen=9000 listens to ipv6 localhost instead of all addresses).
  • Fixed bug #68421 (access.format='%R' doesn't log ipv6 address).
  • Fixed bug #68423 (PHP-FPM will no longer load all pools).
  • Fixed bug #68428 (listen.allowed_clients is IPv4 only).
  • Fixed bug #68452 (php-fpm man page is oudated).
  • Fixed request #68458 (Change pm.start_servers default warning to notice).
  • Fixed bug #68463 (listen.allowed_clients can silently result in no allowed access).
  • Fixed request #68391 (php-fpm conf files loading order).
  • Fixed bug #68478 (access.log don't use prefix).
• Mcrypt:
  • Fixed possible read after end of buffer and use after free.
• GMP:
  • Fixed bug #68419 (build error with gmp 4.1).
• PDO_pgsql:
  • Fixed bug #67462 (PDO_PGSQL::beginTransaction() wrongly throws exception when not in transaction) (Matteo)
  • Fixed bug #68351 (PDO::PARAM_BOOL and ATTR_EMULATE_PREPARES misbehaving) (Matteo)
• Session:
  • Fixed bug #68331 (Session custom storage callable functions not being called) (Yasuo Ohgaki)
• SOAP:
  • Fixed bug #68361 (Segmentation fault on SoapClient::__getTypes).
• zlib:
  • Fixed bug #53829 (Compiling PHP with large file support will replace function gzopen by gzopen64) (Sascha Kettler, Matteo)

而 PHP 5.4.36 改进内容包括：

Core:

• Upgraded crypt_blowfish to version 1.3.
• Fixed bug #68545 (NULL pointer dereference in unserialize.c).
• Fixed bug #68594 (Use after free vulnerability in unserialize()) (CVE-2014-8142).