Author: Remi Collet (remicollet) Date: 2022-09-30T09:12:35+02:00 Commit: https://github.com/php/web-php/commit/e1aab133e05732fddae4cb8a2135344e1a64566f Raw diff: https://github.com/php/web-php/commit/e1aab133e05732fddae4cb8a2135344e1a64566f.diff
add missing CVEs Changed paths: M ChangeLog-8.php Diff: diff --git a/ChangeLog-8.php b/ChangeLog-8.php index f951e1231..6f890fd7b 100644 --- a/ChangeLog-8.php +++ b/ChangeLog-8.php @@ -914,7 +914,7 @@ <li>Fixed bug <?php githubissuel('php/php-src', 9323); ?> (Crash in ZEND_RETURN/GC/zend_call_function) (Tim Starling)</li> <li>Fixed bug <?php githubissuel('php/php-src', 9361); ?> (Segmentation fault on script exit #9379).</li> <li>Fixed bug <?php githubissuel('php/php-src', 9407); ?> (LSP error in eval'd code refers to wrong class for static type).</li> - <li>Fix #81727 (Don't mangle semantically meaningful HTTP var names).</li> + <li><?php bugfix(81727); ?>: Don't mangle HTTP variable names that clash with ones that have a specific semantic meaning. (CVE-2022-31629)</li> </ul></li> <li>DOM: <ul> @@ -935,7 +935,7 @@ </ul></li> <li>Phar: <ul> - <li>Fix #81726 (DOS when using quine gzip file).</li> + <li><?php bugfix(81726); ?>: phar wrapper: DOS when using quine gzip file. (CVE-2022-31628)</li> </ul></li> <li>PDO_PGSQL: <ul> -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php