Author: Gabriel Caruso (carusogabriel)
Date: 2023-02-14T15:17:48+01:00
Commit:
https://github.com/php/web-php/commit/d0fb645d687552acc3b72e094fe69fd8e82dde46
Raw diff:
https://github.com/php/web-php/commit/d0fb645d687552acc3b72e094fe69fd8e82dde46.diff
Announce PHP 8.0.28
Changed paths:
A archive/entries/2023-02-14-1.xml
A releases/8_0_28.php
M ChangeLog-8.php
M archive/archive.xml
M include/releases.inc
M include/version.inc
Diff:
diff --git a/ChangeLog-8.php b/ChangeLog-8.php
index 6802f5cd0..66a802dcc 100644
--- a/ChangeLog-8.php
+++ b/ChangeLog-8.php
@@ -1609,6 +1609,23 @@
<a id="PHP_8_0"></a>
+<section class="version" id="8.0.28"><!-- {{{ 8.0.28 -->
+<h3>Version 8.0.28</h3>
+<b><?php release_date('14-Feb-2023'); ?></b>
+<ul><li>Core:
+<ul>
+ <li><?php bugfix(81744); ?> (Password_verify() always return true with some
hash).</li>
+ <li><?php bugfix(81746); ?> (1-byte array overrun in common path resolve
code).</li>
+</ul></li>
+<li>SAPI:
+<ul>
+ <li>Fixed bug GHSA-54hq-v5wp-fqgv (DOS vulnerability when parsing multipart
request body). (CVE-2023-0662)</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
+
+
<section class="version" id="8.0.27"><!-- {{{ 8.0.27 -->
<h3>Version 8.0.27</h3>
<b><?php release_date('05-Jan-2023'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
index a01907441..17804acd0 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>php-webmaster@lists.php.net</email>
</author>
+ <xi:include href="entries/2023-02-14-1.xml"/>
<xi:include href="entries/2023-02-02-2.xml"/>
<xi:include href="entries/2023-02-02-1.xml"/>
<xi:include href="entries/2023-01-05-3.xml"/>
diff --git a/archive/entries/2023-02-14-1.xml b/archive/entries/2023-02-14-1.xml
new file mode 100644
index 000000000..4a2512041
--- /dev/null
+++ b/archive/entries/2023-02-14-1.xml
@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 8.0.28 Released!</title>
+ <id>https://www.php.net/archive/2023.php#2023-02-14-1</id>
+ <published>2023-02-14T14:13:12+00:00</published>
+ <updated>2023-02-14T14:13:12+00:00</updated>
+ <link href="https://www.php.net/index.php#2023-02-14-1"; rel="alternate"
type="text/html"/>
+ <link href="https://www.php.net/archive/2023.php#2023-02-14-1"; rel="via"
type="text/html"/>
+ <category term="releases" label="New PHP release"/>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+<p>The PHP development team announces the immediate availability of PHP
8.0.28. This is a security release
+that addresses CVE-2023-0567, CVE-2023-0568, and CVE-2023-0662.
+</p>
+
+<p>All PHP 8.0 users are advised to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.0.28 please visit our <a
href="https://www.php.net/downloads.php";>downloads page</a>,
+Windows source and binaries can be found on <a
href="https://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a
href="https://www.php.net/ChangeLog-8.php#8.0.28";>ChangeLog</a>.
+</p> </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index fb241641a..98daf0f50 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -2,6 +2,43 @@
$OLDRELEASES = array (
8 =>
array (
+ '8.0.27' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/8_0_27.php',
+ ),
+ 'tags' =>
+ array (
+ 0 => 'security',
+ ),
+ 'date' => '05 Jan 2023',
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-8.0.27.tar.gz',
+ 'name' => 'PHP 8.0.27 (tar.gz)',
+ 'sha256' =>
'fe2376faaf91c28ead89a36e118c177f4a8c9a7280a189b97265da1af1f4d305',
+ 'date' => '05 Jan 2023',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-8.0.27.tar.bz2',
+ 'name' => 'PHP 8.0.27 (tar.bz2)',
+ 'sha256' =>
'5fd882b14377c158c1b55cc6ace91fb8c19b77c596d5831ad124fbbbc902dbc8',
+ 'date' => '05 Jan 2023',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-8.0.27.tar.xz',
+ 'name' => 'PHP 8.0.27 (tar.xz)',
+ 'sha256' =>
'f942cbfe2f7bacbb8039fb79bbec41c76ea779ac5c8157f21e1e0c1b28a5fc3a',
+ 'date' => '05 Jan 2023',
+ ),
+ ),
+ 'museum' => false,
+ ),
'8.1.14' =>
array (
'announcement' =>
diff --git a/include/version.inc b/include/version.inc
index 8166ca0c2..a89ed878f 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -44,13 +44,13 @@ $RELEASES = (function () {
/* PHP 8.0 Release */
$data['8.0'] = [
- 'version' => '8.0.27',
- 'date' => '05 Jan 2023',
+ 'version' => '8.0.28',
+ 'date' => '14 Feb 2023',
'tags' => ['security'], // Set to ['security'] for security releases.
'sha256' => [
- 'tar.gz' =>
'fe2376faaf91c28ead89a36e118c177f4a8c9a7280a189b97265da1af1f4d305',
- 'tar.bz2' =>
'5fd882b14377c158c1b55cc6ace91fb8c19b77c596d5831ad124fbbbc902dbc8',
- 'tar.xz' =>
'f942cbfe2f7bacbb8039fb79bbec41c76ea779ac5c8157f21e1e0c1b28a5fc3a',
+ 'tar.gz' =>
'7432184eae01e4e8e39f03f80e8ec0ca2c8bfebc56e9a7b983541ca8805df22f',
+ 'tar.bz2' =>
'9d5e74935c900e3b9c7b6bc740596b71933630eb9f63717c0c4923d8c788c62e',
+ 'tar.xz' =>
'5e07278a1f315a67d36a676c01343ca2d4da5ec5bdb15d018e4248b3012bc0cd',
]
];
diff --git a/releases/8_0_28.php b/releases/8_0_28.php
new file mode 100644
index 000000000..d65483b9e
--- /dev/null
+++ b/releases/8_0_28.php
@@ -0,0 +1,16 @@
+<?php
+$_SERVER['BASE_PAGE'] = 'releases/8_0_28.php';
+include_once __DIR__ . '/../include/prepend.inc';
+site_header('PHP 8.0.28 Release Announcement');
+?>
+<h1>PHP 8.0.28 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP
8.0.28. This is a security release.</p>
+
+<p>All PHP 8.0 users are encouraged to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.0.28 please visit our <a
href="https://www.php.net/downloads.php";>downloads page</a>,
+Windows source and binaries can be found on <a
href="https://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a
href="https://www.php.net/ChangeLog-8.php#8.0.28";>ChangeLog</a>.
+</p>
+<?php site_footer();
--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
