PHP 5.4.5 Announced

PHP 5.4.5 Release
PHP 5.4.5 and 5.3.15 released. 2012-07-19 the previous version of the 2012-06-15 5.4.4/5.3.14 fixed more than 30 bugs and several security vulnerabilities. After 1 RC.

This release fixes through bugs and includes a fix for a security related overflow issue in the stream implementation.



Download: Http://www.php.net/get/php-5.4.5.tar.bz2/from/cn.php.net/mirror


Complete improvements:

Version 5.4.5

19-july-2012

Core

Fixed bug #62443 (Crypt sha256/512 segfaults with malformed Salt)

Fixed bug #62432 (reflectionmethod random corrupt memory on high concurrent)

Fixed bug #62373 (serialize () generates wrong reference to the object).

Fixed bug #62357 (Compile failure: (S) Arguments missing for built-in function __memcmp)

Fixed bug #61998 (Using traits with method aliases appears to result in crash during execution)

Fixed bug #51094 (Parse_ini_file () with Ini_scanner_raw cuts a value that includes a semi-colon)

Fixed potential overflow in _php_stream_scandir (cve-2012-2688)

Exif

Fixed information leak in ext Exi

Fpm

Fixed bug #62205 (php-fpm segfaults (null passed to STRSTR)

Fixed bug #62160 (Add process.priority to set Nice (2) priorities)

Fixed bug #62153 (when using UNIX sockets, multiples FPM instances)

Fixed bug #62033 (php-fpm exits with status 0 on some failures to start)

Fixed bug #61839 (unable to cross-compile PHP with--ENABLE-FPM)

Fixed bug #61835 (PHP-FPM is not allowed to run as root)

Fixed bug #61295 (PHP-FPM should not-fail with commented ' user '

Fixed bug #61218 (FPM drops connection while receiving some binary values in FastCGI requests)

Fixed bug #61045 (fpm don ' t send error log to fastcgi clients). (FAT) for non-root start)

Fixed bug #61026 (FPM pools can listen on the same address). (FAT) can be launched without errors)

Iconv

Fixed bug #55042 (erealloc in iconv.c unsafe)

Intl

Fixed bug #62083 (grapheme_extract () memory leaks)

Fixed bug #62081 (Intldateformatter constructor leaks memory when called twice)

Fixed bug #62070 (Collator::getsortkey () returns garbage)

Fixed bug #62017 (datefmt_create with incorrectly encoded timezone leaks pattern)

Fixed bug #60785 (memory leak in Intldateformatter constructor)

ResourceBundle Constructor now accepts NULL for the first and the arguments

Json

Fixed bug #61359 (Json_encode () calls too many Reallocs)

Libxml

Fixed bug #62266 (Custom extension segfaults during xmlparsefile with FPM SAPI)

Phar

Fixed bug #62227 (Invalid Phar Stream path causes crash)

Readline

Fixed bug #62186 (ReadLine fails to compile-void function should not return a value)

Reflection

Fixed bug #62384 (attempting to invoke a Closure more than once causes segfault)

Fixed bug #62202 (Reflectionparameter::getdefaultvalue () memory leaks with constant)

Sockets

Fixed bug #62025 (__ss_family was changed on AIX 5.3)

Spl

Fixed bug #62433 (inconsistent behavior of recursivedirectoryiterator to dot files)

Fixed bug #62262 (Recursivearrayiterator does not implement countable)

XML Writer

Fixed bug #62064 (memory leak in the XML Writer module)

Zip

Upgraded Libzip to 0.10.

Version 5.3.15

19-july-2012

Zend Engine

Fixed bug #51094 (Parse_ini_file () with Ini_scanner_raw cuts a value that includes a semi-colon)

Com

Fixed bug #62146 com_dotnet cannot be built shared

Core

Fixed potential overflow in _php_stream_scandir, cve-2012-2688

Fixed bug #62432 (reflectionmethod random corrupt memory on high concurrent)

