Software 42684 Published by

The final version of PHP 7.0.23 is now available



What's new in PHP 7.0.23:

Core:
Fixed bug #74947 (Segfault in scanner on INF number).
Fixed bug #74954 (null deref and segfault in zend_generator_resume()).
Fixed bug #74725 (html_errors=1 breaks unhandled exceptions).

cURL:
Fixed bug #74125 (Fixed finding CURL on systems with multiarch support).

Date:
Fixed bug #75002 (Null Pointer Dereference in timelib_time_clone).

Intl:
Fixed bug #74993 (Wrong reflection on some locale_* functions).

Mbstring:
Fixed bug #71606 (Segmentation fault mb_strcut with HTML-ENTITIES encoding).
Fixed bug #62934 (mb_convert_kana() does not convert iteration marks).
Fixed bug #75001 (Wrong reflection on mb_eregi_replace).

MySQLi:
Fixed bug #74968 (PHP crashes when calling mysqli_result::fetch_object with an abstract class).

OCI8:
Expose oci_unregister_taf_callback() (Tianfang Yang)

phar:
Fixed bug #74991 (include_path has a 4096 char limit in some cases).

Reflection:
Fixed bug #74949 (null pointer dereference in _function_string).

Session:
Fixed bug #74833 (SID constant created with wrong module number).

SimpleXML:
Fixed bug #74950 (nullpointer deref in simplexml_element_getDocNamespaces).

SPL:
Fixed bug #75049 (spl_autoload_unregister can't handle spl_autoload_functions results).
Fixed bug #74669 (Unserialize ArrayIterator broken).
Fixed bug #75015 (Crash in recursive iterator destructors).

Standard:
Fixed bug #75075 (unpack with X* causes infinity loop).
Fixed bug #74103 (heap-use-after-free when unserializing invalid array size).
Fixed bug #75054 (A Denial of Service Vulnerability was found when performing deserialization).

WDDX:
Fixed bug #73793 (WDDX uses wrong decimal seperator).

XMLRPC:
Fixed bug #74975 (Incorrect xmlrpc serialization for classes with declared properties).

  PHP 7.0.23 released