Author: Saki Takamachi (SakiTakamachi)
Date: 2025-03-13T23:49:55+09:00
Commit:
https://github.com/php/web-php/commit/ef7ea9dd84e65b9f03096cb5b7d253c13a8319c2
Raw diff:
https://github.com/php/web-php/commit/ef7ea9dd84e65b9f03096cb5b7d253c13a8319c2.diff
Announce PHP 8.4.5
Changed paths:
A archive/entries/2025-03-13-3.xml
A releases/8_4_5.php
M ChangeLog-8.php
M archive/archive.xml
M include/releases.inc
M include/version.inc
Diff:
diff --git a/ChangeLog-8.php b/ChangeLog-8.php
index cb5f9e159b..d7310180f8 100644
--- a/ChangeLog-8.php
+++ b/ChangeLog-8.php
@@ -9,6 +9,115 @@
<a id="PHP_8_4"></a>
+<section class="version" id="8.4.5"><!-- {{{ 8.4.5 -->
+<h3>Version 8.4.5</h3>
+<b><?php release_date('13-Mar-2025'); ?></b>
+<ul><li>BCMath:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17398); ?> (bcmul memory
leak).</li>
+</ul></li>
+<li>Core:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17623); ?> (Broken stack
overflow detection for variable compilation).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17618); ?>
(UnhandledMatchError does not take zend.exception_ignore_args=1 into
account).</li>
+ <li>Fix fallback paths in fast_long_{add,sub}_function.</li>
+ <li>Fixed bug OSS-Fuzz #391975641 (Crash when accessing property backing
value by reference).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17718); ?> (Calling static
methods on an interface that has `__callStatic` is allowed).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17713); ?>
(ReflectionProperty::getRawValue() and related methods may call hooks of
overridden properties).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17916); ?> (Final abstract
properties should error).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17866); ?> (zend_mm_heap
corrupted error after upgrading from 8.4.3 to 8.4.4).</li>
+ <li>Fixed <?php githubsecurityl('php/php-src', 'rwp7-7vc6-8477'); ?>
(Reference counting in php_request_shutdown causes Use-After-Free).
(CVE-2024-11235)</li>
+</ul></li>
+<li>DOM:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17609); ?> (Typo in error
message: Dom\NO_DEFAULT_NS instead of Dom\HTML_NO_DEFAULT_NS).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17802); ?>
(\Dom\HTMLDocument querySelector attribute name is case sensitive in HTML).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17847); ?> (xinclude
destroys live node).</li>
+ <li>Fix using Dom\Node with Dom\XPath callbacks.</li>
+</ul></li>
+<li>GD:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17703); ?> (imagescale with
both width and height negative values triggers only an Exception on width).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17772); ?>
(imagepalettetotruecolor crash with memory_limit=2M).</li>
+</ul></li>
+<li>FFI:
+<ul>
+ <li>Fix FFI Parsing of Pointer Declaration Lists.</li>
+</ul></li>
+<li>FPM:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17643); ?> (FPM with httpd
ProxyPass encoded PATH_INFO env).</li>
+</ul></li>
+<li>LDAP:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17704); ?> (ldap_search
fails when $attributes contains a non-packed array with numerical keys).</li>
+</ul></li>
+<li>LibXML:
+<ul>
+ <li>Fixed <?php githubsecurityl('php/php-src', 'wg4p-4hqh-c3g9'); ?>
(Reocurrence of #72714).</li>
+ <li>Fixed <?php githubsecurityl('php/php-src', 'p3x9-6h7p-cgfc'); ?> (libxml
streams use wrong `content-type` header when requesting a redirected resource).
(CVE-2025-1219)</li>
+</ul></li>
+<li>MBString:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17503); ?> (Undefined float
conversion in mb_convert_variables).</li>
+</ul></li>
+<li>Opcache:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17654); ?> (Multiple classes
using same trait causes function JIT crash).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17577); ?> (JIT packed type
guard crash).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17747); ?> (Exception on
reading property in register-based FETCH_OBJ_R breaks JIT).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17715); ?> (Null pointer
deref in observer API when calling cases() method on preloaded enum).</li>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17868); ?> (Cannot allocate
memory with tracing JIT on 8.4.4).</li>
+</ul></li>
+<li>PDO_SQLite:
+<ul>
+ <li>Fixed <?php githubissuel('php/php-src', 17837); ?> ()::getColumnMeta()
on unexecuted statement segfaults).</li>
+ <li>Fix cycle leak in sqlite3 setAuthorizer().</li>
+ <li>Fix memory leaks in pdo_sqlite callback registration.</li>
+</ul></li>
+<li>Phar:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17808); ?>: PharFileInfo
refcount bug.</li>
+</ul></li>
+<li>PHPDBG:
+<ul>
+ <li>Partially fixed bug <?php githubissuel('php/php-src', 17387); ?>
(Trivial crash in phpdbg lexer).</li>
+ <li>Fix memory leak in phpdbg calling registered function.</li>
+</ul></li>
+<li>Reflection:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 15902); ?> (Core dumped in
ext/reflection/php_reflection.c).</li>
+ <li>Fixed missing final and abstract flags when dumping properties.</li>
+</ul></li>
+<li>Standard:
+<ul>
+ <li><?php bugfix(72666); ?> (stat cache clearing inconsistent between
file:// paths and plain paths).</li>
+</ul></li>
+<li>Streams:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17650); ?> (realloc with
size 0 in user_filters.c).</li>
+ <li>Fix memory leak on overflow in _php_stream_scandir().</li>
+ <li>Fixed GHSA-hgf54-96fm-v528 (Stream HTTP wrapper header check might omit
basic auth header). (CVE-2025-1736)</li>
+ <li>Fixed <?php githubsecurityl('php/php-src', '52jp-hrpf-2jff'); ?> (Stream
HTTP wrapper truncate redirect location to 1024 bytes). (CVE-2025-1861)</li>
+ <li>Fixed <?php githubsecurityl('php/php-src', 'pcmh-g36c-qc44'); ?>
(Streams HTTP wrapper does not fail for headers without colon).
(CVE-2025-1734)</li>
+ <li>Fixed <?php githubsecurityl('php/php-src', 'v8xr-gpvj-cx9g'); ?> (Header
parser of `http` stream wrapper does not handle folded headers).
(CVE-2025-1217)</li>
+</ul></li>
+<li>Windows:
+<ul>
+ <li>Fixed phpize for Windows 11 (24H2).</li>
+ <li>Fixed <?php githubissuel('php/php-src', 17855); ?> (CURL_STATICLIB flag
set even if linked with shared lib).</li>
+</ul></li>
+<li>Zlib:
+<ul>
+ <li>Fixed bug <?php githubissuel('php/php-src', 17745); ?> (zlib extension
incorrectly handles object arguments).</li>
+ <li>Fix memory leak when encoding check fails.</li>
+ <li>Fix zlib support for large files.</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
+
+
<section class="version" id="8.4.4"><!-- {{{ 8.4.4 -->
<h3>Version 8.4.4</h3>
<b><?php release_date('13-Feb-2025'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
index 66ffd31cfb..e6a0c9bf24 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>php-webmaster@lists.php.net</email>
</author>
+ <xi:include href="entries/2025-03-13-3.xml"/>
<xi:include href="entries/2025-03-13-2.xml"/>
<xi:include href="entries/2025-03-13-1.xml"/>
<xi:include href="entries/2025-02-13-2.xml"/>
diff --git a/archive/entries/2025-03-13-3.xml b/archive/entries/2025-03-13-3.xml
new file mode 100644
index 0000000000..7e0345a3d1
--- /dev/null
+++ b/archive/entries/2025-03-13-3.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 8.4.5 Released!</title>
+ <id>https://www.php.net/archive/2025.php#2025-03-13-3</id>
+ <published>2025-03-13T14:47:07+00:00</published>
+ <updated>2025-03-13T14:47:07+00:00</updated>
+ <link href="https://www.php.net/index.php#2025-03-13-3"; rel="alternate"
type="text/html"/>
+ <link href="https://www.php.net/archive/2025.php#2025-03-13-3"; rel="via"
type="text/html"/>
+ <category term="releases" label="New PHP release"/>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";><p>The PHP development team
announces the immediate availability of PHP 8.4.5. This is a bug fix
release.</p>
+
+<p>All PHP 8.4 users are encouraged to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.4.5 please visit our <a
href="https://www.php.net/downloads.php";>downloads page</a>,
+Windows source and binaries can be found on <a
href="https://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a
href="https://www.php.net/ChangeLog-8.php#8.4.5";>ChangeLog</a>.
+</p> </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index 6c50018eb5..154f7afa62 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -2,6 +2,42 @@
$OLDRELEASES = array (
8 =>
array (
+ '8.4.4' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/8_4_4.php',
+ ),
+ 'tags' =>
+ array (
+ ),
+ 'date' => '13 Feb 2025',
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-8.4.4.tar.gz',
+ 'name' => 'PHP 8.4.4 (tar.gz)',
+ 'sha256' =>
'719551f50a81961f802aa9102bf4a1a0b5a315074330ab37bc8035a15f4be71b',
+ 'date' => '13 Feb 2025',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-8.4.4.tar.bz2',
+ 'name' => 'PHP 8.4.4 (tar.bz2)',
+ 'sha256' =>
'192a325fd3ca09b6c528dd6014ee07d803c3162514d4bb0d3e0981d00ac700ec',
+ 'date' => '13 Feb 2025',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-8.4.4.tar.xz',
+ 'name' => 'PHP 8.4.4 (tar.xz)',
+ 'sha256' =>
'05a6c9a2cc894dd8be719ecab221b311886d5e0c02cb6fac648dd9b3459681ac',
+ 'date' => '13 Feb 2025',
+ ),
+ ),
+ 'museum' => false,
+ ),
'8.3.17' =>
array (
'announcement' =>
diff --git a/include/version.inc b/include/version.inc
index a4d03829d9..2f5bb2b609 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -20,13 +20,13 @@ $RELEASES = (function () {
/* PHP 8.4 Release */
$data['8.4'] = [
- 'version' => '8.4.4',
- 'date' => '13 Feb 2025',
- 'tags' => [], // Set to ['security'] for security releases.
+ 'version' => '8.4.5',
+ 'date' => '13 Mar 2025',
+ 'tags' => ['security'], // Set to ['security'] for security releases.
'sha256' => [
- 'tar.gz' =>
'719551f50a81961f802aa9102bf4a1a0b5a315074330ab37bc8035a15f4be71b',
- 'tar.bz2' =>
'192a325fd3ca09b6c528dd6014ee07d803c3162514d4bb0d3e0981d00ac700ec',
- 'tar.xz' =>
'05a6c9a2cc894dd8be719ecab221b311886d5e0c02cb6fac648dd9b3459681ac',
+ 'tar.gz' =>
'f05530d350f1ffe279e097c2af7a8d78cab046ef99d91f6b3151b06f0ab05d05',
+ 'tar.bz2' =>
'9378c78887d0cd7462fc5c17f2de30c852f20f79d28795e2573fe3250d39436e',
+ 'tar.xz' =>
'0d3270bbce4d9ec617befce52458b763fd461d475f1fe2ed878bb8573faed327',
]
];
diff --git a/releases/8_4_5.php b/releases/8_4_5.php
new file mode 100644
index 0000000000..acdc023054
--- /dev/null
+++ b/releases/8_4_5.php
@@ -0,0 +1,16 @@
+<?php
+$_SERVER['BASE_PAGE'] = 'releases/8_4_5.php';
+include_once __DIR__ . '/../include/prepend.inc';
+site_header('PHP 8.4.5 Release Announcement');
+?>
+<h1>PHP 8.4.5 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP 8.4.5.
This is a bug fix release.</p>
+
+<p>All PHP 8.4 users are encouraged to upgrade to this version.</p>
+
+<p>For source downloads of PHP 8.4.5 please visit our <a
href="https://www.php.net/downloads.php";>downloads page</a>,
+Windows source and binaries can be found on <a
href="https://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a
href="https://www.php.net/ChangeLog-8.php#8.4.5";>ChangeLog</a>.
+</p>
+<?php site_footer();
