Skip to content

Commit 346fc95

Browse files
edorianedorian
committed
Update NEWS
1 parent d469621 commit 346fc95

File tree

1 file changed

+9
-2
lines changed

1 file changed

+9
-2
lines changed

NEWS

Lines changed: 9 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
PHP NEWS
22
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
3-
?? ??? ????, PHP 8.5.1
3+
18 Dec 2025, PHP 8.5.1
44

55
- Core:
66
. Sync all boost.context files with release 1.86.0. (mvorisek)
@@ -51,6 +51,8 @@ PHP NEWS
5151
- PDO:
5252
. Fixed bug GH-20553 (PDO::FETCH_CLASSTYPE ignores $constructorArgs in
5353
PHP 8.5.0). (Girgias)
54+
. Fixed GHSA-8xr5-qppj-gvwj (PDO quoting result null deref). (CVE-2025-14180)
55+
(Jakub Zelenka)
5456

5557
- Phar:
5658
. Fixed bug GH-20442 (Phar does not respect case-insensitiveness of
@@ -70,7 +72,12 @@ PHP NEWS
7072
. Fix memory leak in array_diff() with custom type checks. (ndossche)
7173
. Fixed bug GH-20583 (Stack overflow in http_build_query
7274
via deep structures). (ndossche)
73-
. Fixed bug GH-20584 (Information Leak of Memory). (ndossche)
75+
. Fixed GHSA-www2-q4fc-65wf (Null byte termination in dns_get_record()).
76+
(ndossche)
77+
. Fixed GHSA-h96m-rvf9-jgm2 (Heap buffer overflow in array_merge()).
78+
(CVE-2025-14178) (ndossche)
79+
. Fixed GHSA-3237-qqm7-mfv7 (Information Leak of Memory in getimagesize).
80+
(CVE-2025-14177) (ndossche)
7481

7582
- URI:
7683
. Fixed bug GH-20366 (ext/uri incorrectly throws ValueError when encountering

0 commit comments

Comments
 (0)