-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2025-af13988938 2025-11-29 16:43:28.332690+00:00 --------------------------------------------------------------------------------
Name : php Product : Fedora 43 Version : 8.4.15 Release : 2.fc43 URL : http://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. -------------------------------------------------------------------------------- Update Information: Regression fix from upstream MySQLnd: Fixed bug GH-20528 (Regression breaks mysql connexion using an IPv6 address enclosed in square brackets). (Remi) PHP version 8.4.15 (20 Nov 2025) Core: Fixed bug GH-19934 (CGI with auto_globals_jit=0 causes uouv). (ilutov) Fixed bug GH-20073 (Assertion failure in WeakMap offset operations on reference). (nielsdos) Fixed bug GH-20085 (Assertion failure when combining lazy object get_properties exception with foreach loop). (nielsdos) Fixed bug GH-19844 (Don't bail when closing resources on shutdown). (ilutov) Fixed bug GH-20177 (Accessing overridden private property in get_object_vars() triggers assertion error). (ilutov) Fixed bug GH-20270 (Broken parent hook call with named arguments). (ilutov) Fixed bug GH-20183 (Stale EG(opline_before_exception) pointer through eval). (ilutov) DOM: Partially fixed bug GH-16317 (DOM classes do not allow __debugInfo() overrides to work). (nielsdos) Fixed bug GH-20281 (\Dom\Document::getElementById() is inconsistent after nodes are removed). (nielsdos) Exif: Fix possible memory leak when tag is empty. (nielsdos) FPM: Fixed bug GH-19974 (fpm_status_export_to_zval segfault for parallel execution). (Jakub Zelenka, txuna) FTP: Fixed bug GH-20240 (FTP with SSL: ftp_fput(): Connection timed out on successful writes). (nielsdos) GD: Fixed bug GH-20070 (Return type violation in imagefilter when an invalid filter is provided). (Girgias) Intl: Fix memory leak on error in locale_filter_matches(). (nielsdos) LibXML: Fix not thread safe schema/relaxng calls. (SpencerMalone, nielsdos) MySQLnd: Fixed bug GH-8978 (SSL certificate verification fails (port doubled)). (nielsdos) Fixed bug GH-20122 (getColumnMeta() for JSON-column in MySQL). (nielsdos) Opcache: Fixed bug GH-20081 (access to uninitialized vars in preload_load()). (Arnaud) Fixed bug GH-20121 (JIT broken in ZTS builds on MacOS 15). (Arnaud, Shivam Mathur) Fixed bug GH-19875 (JIT 1205 segfault on large file compiled in subprocess). (Arnaud) Fixed bug GH-20012 (heap buffer overflow in jit). (Arnaud) Partially fixed bug GH-17733 (Avoid calling wrong function when reusing file caches across differing environments). (ilutov) PgSql: Fix memory leak when first string conversion fails. (nielsdos) Fix segfaults when attempting to fetch row into a non-instantiable class name. (Girgias, nielsdos) Phar: Fix memory leak of argument in webPhar. (nielsdos) Fix memory leak when setAlias() fails. (nielsdos) Fix a bunch of memory leaks in phar_parse_zipfile() error handling. (nielsdos) Fix file descriptor/memory leak when opening central fp fails. (nielsdos) Fix memleak+UAF when opening temp stream in buildFromDirectory() fails. (nielsdos) Fix potential buffer length truncation due to usage of type int instead of type size_t. (Girgias) Fix memory leak when openssl polyfill returns garbage. (nielsdos) Fix file descriptor leak in phar_zip_flush() on failure. (nielsdos) Fix memory leak when opening temp file fails while trying to open gzip- compressed archive. (nielsdos) Fixed bug GH-20302 (Freeing a phar alias may invalidate PharFileInfo objects). (nielsdos) Random: Fix Randomizer::__serialize() w.r.t. INDIRECTs. (nielsdos) Reflection: Fixed bug GH-20217 (ReflectionClass::isIterable() incorrectly returns true for classes with property hooks). (alexandre-daubois) SimpleXML: Partially fixed bug GH-16317 (SimpleXML does not allow __debugInfo() overrides to work). (nielsdos) Streams: Fixed bug GH-19798: XP_SOCKET XP_SSL (Socket stream modules): Incorrect condition for Win32/Win64. (Jakub Zelenka) Tidy: Fixed GH-19021 (improved tidyOptGetCategory detection). (arjendekorte, David Carlier, Peter Kokot) Fix UAF in tidy when tidySetErrorBuffer() fails. (nielsdos) XMLReader: Fix arginfo/zpp violations when LIBXML_SCHEMAS_ENABLED is not available. (nielsdos) -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 21 2025 Remi Collet <[email protected]> - 8.4.15-2 - Fix GH-20528 regression breaks mysql connexion using an IPv6 address enclosed in square brackets (upstream patch) * Wed Nov 19 2025 Remi Collet <[email protected]> - 8.4.15-1 - Update to 8.4.15 - http://www.php.net/releases/8_4_15.php -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-af13988938' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
