The PHP team has officially released the first release candidate for PHP version 8.3.29, now available for testing by developers and users. This release includes a significant update where the boost.context files have been synchronized to version 1.86.0. This update ensures that developers can expect consistent features and improvements when utilizing advanced context-handling libraries.
Security enhancements were a priority in this release, addressing several critical issues. Notable fixes include resolution of problems identified in GitHub issues GH-20435, which pertains to the handling of SensitiveParameter and named arguments, and GH-20286, which relates to a use-after-destroy bug occurring during stream closure. Additionally, the Bz2 extension has been fortified to prevent crashes associated with stream filters. Other updates include improved handling of static constructors for date classes that are non-instantiable.
The release also introduces fixes to the DOM component, ensuring that C14NFile() correctly processes inputs without NUL byte checks. A significant bug affecting Fibers, referenced as GH-20483, has been addressed, alleviating concerns regarding stack overflow when the fiber.stack_size parameter is too small.
Furthermore, various bug fixes have been implemented across multiple other components, including FTP, GD, Intl, LibXML, MbString, MySQLnd, Opcache, SPL, Tidy, XML, and Zip, enhancing overall stability and performance.
In summary, the PHP 8.3.29 RC1 release is a crucial step in refining the language, focusing on enhancing security, fixing existing bugs, and ensuring compatibility with updated libraries. Developers are encouraged to test this release candidate and provide feedback to contribute to the final version.
Release details can be found at the official PHP GitHub repository under the tag for php-8.3.29RC1
Security enhancements were a priority in this release, addressing several critical issues. Notable fixes include resolution of problems identified in GitHub issues GH-20435, which pertains to the handling of SensitiveParameter and named arguments, and GH-20286, which relates to a use-after-destroy bug occurring during stream closure. Additionally, the Bz2 extension has been fortified to prevent crashes associated with stream filters. Other updates include improved handling of static constructors for date classes that are non-instantiable.
The release also introduces fixes to the DOM component, ensuring that C14NFile() correctly processes inputs without NUL byte checks. A significant bug affecting Fibers, referenced as GH-20483, has been addressed, alleviating concerns regarding stack overflow when the fiber.stack_size parameter is too small.
Furthermore, various bug fixes have been implemented across multiple other components, including FTP, GD, Intl, LibXML, MbString, MySQLnd, Opcache, SPL, Tidy, XML, and Zip, enhancing overall stability and performance.
In summary, the PHP 8.3.29 RC1 release is a crucial step in refining the language, focusing on enhancing security, fixing existing bugs, and ensuring compatibility with updated libraries. Developers are encouraged to test this release candidate and provide feedback to contribute to the final version.
Release details can be found at the official PHP GitHub repository under the tag for php-8.3.29RC1
PHP 8.3.29 RC1 released
The PHP team has released the first release candidate for PHP 8.3.29, which is now available for testing. One key update involves syncing boost.context files to version 1.86.0, ensuring consistent features and improvements across context-handling libraries. The release also addresses several security issues, including bugs in the core and Bz2, as well as a potential crash related to stream filters. Additionally, various bug fixes have been applied to other areas of PHP, such as DOM, Fibers, FTP, and more.
