The release candidate for PHP version 8.4.11, designated as RC1, has been made available for testing purposes. This release addresses a variety of issues across numerous components, including Calendar, Core, DOM, LDAP, MbString, Opcache, OpenSSL, PCNTL, Phar, SOAP, SPL, Standard, Streams, and Zip. Key improvements include fixes for jewishtojd overflows, weakmaps bugs, memory leaks, and security vulnerabilities in OpenSSL, among others.
- Calendar: Resolved overflow issues related to the year argument in the jewishtojd function.
- Core: Addressed multiple bugs, including memory leaks, use-after-free errors with weakmaps, and undefined symbols on Windows ARM64.
- Curl: Fixed memory leaks and incorrect string releases in curl callbacks.
- DOM: Resolved undefined behavior caused by null bytes in XML comments.
- LDAP: Fixed assertions triggered by empty request OIDs.
- MbString: Corrected an integer overflow issue in mb_split.
- Opcache: Addressed several bugs related to function crashes and segmentation faults associated with JIT and preloading.
- OpenSSL: Fixed issues preventing the retrieval of client peer certificates.
- PCNTL: Resolved fatal errors during shutdown after forking operations.
- Phar: Fixed double free issues and crashes when using SplFileObject.
- SOAP: Addressed memory leaks and ensured HTTP sockets close correctly upon object destruction.
- SPL: Fixed crashes related to iterators in MultipleIterator.
- Standard: Resolved misleading errors in printf and pack overflow issues.
- Streams: Ensured proper return values on filter fatal errors.
- Zip: Fixed memory leaks when extracting paths that are too long.
This release aims to enhance stability and security, making it essential for developers to test and ensure their applications are compatible with the latest changes. As PHP continues to evolve, updates like these are crucial for maintaining performance and addressing vulnerabilities.
Notable Fixes in PHP 8.4.11 RC1:
- Calendar: Resolved overflow issues related to the year argument in the jewishtojd function.
- Core: Addressed multiple bugs, including memory leaks, use-after-free errors with weakmaps, and undefined symbols on Windows ARM64.
- Curl: Fixed memory leaks and incorrect string releases in curl callbacks.
- DOM: Resolved undefined behavior caused by null bytes in XML comments.
- LDAP: Fixed assertions triggered by empty request OIDs.
- MbString: Corrected an integer overflow issue in mb_split.
- Opcache: Addressed several bugs related to function crashes and segmentation faults associated with JIT and preloading.
- OpenSSL: Fixed issues preventing the retrieval of client peer certificates.
- PCNTL: Resolved fatal errors during shutdown after forking operations.
- Phar: Fixed double free issues and crashes when using SplFileObject.
- SOAP: Addressed memory leaks and ensured HTTP sockets close correctly upon object destruction.
- SPL: Fixed crashes related to iterators in MultipleIterator.
- Standard: Resolved misleading errors in printf and pack overflow issues.
- Streams: Ensured proper return values on filter fatal errors.
- Zip: Fixed memory leaks when extracting paths that are too long.
This release aims to enhance stability and security, making it essential for developers to test and ensure their applications are compatible with the latest changes. As PHP continues to evolve, updates like these are crucial for maintaining performance and addressing vulnerabilities.
Next Steps:
Developers are encouraged to download PHP 8.4.11 RC1 for testing and to report any issues they encounter. Continuous feedback during this testing phase is vital for the refinement of the final release. The ongoing commitment to improving PHP enhances its reliability, performance, and security in production environmentsPHP 8.4.11 RC1 released
The release candidate for PHP 8.4.11 has been released for testing and addresses multiple issues across several components, including Calendar, Core, DOM, LDAP, MbString, Opcache, OpenSSL, PCNTL, Phar, SOAP, SPL, Standard, and Zip. The updates fix problems with jewishtojd overflows, weakmaps bugs, OSS-Fuzz issues, re2c warnings, missing symbols, memory leaks, DOM problems, LDAP issues, mb_split errors, OPCL concerns, OpenSSL security holes, PCNTL troubles, Phar mistakes, SOAP challenges, SPL inconsistencies, standard problems, stream issues, and zip-related errors. The release resolves concerns related to jewishtojd overflows, core bugs, DOM, LDAP, MbString, OPCL, OpenSSL, PCNTL, Phar, SOAP, SPL, standard, stream, and Zip.
