security update in Fedora 27 for php

Status: stable 6 months ago

PHP version 7.1.13 (04 Jan 2018)


  • Fixed bug #75573 (Segmentation fault in 7.1.12 and 7.0.26). (Laruence)
  • Fixed bug #75384 (PHP seems incompatible with OneDrive files on demand). (Anatol)
  • Fixed bug #74862 (Unable to clone instance when private __clone defined). (Daniel Ciochiu)
  • Fixed bug #75074 (php-process crash when is_file() is used with strings longer 260 chars). (Anatol)

CLI Server:

  • Fixed bug #60471 (Random "Invalid request (unexpected EOF)" using a router script). (SammyK)
  • Fixed bug #73830 (Directory does not exist). (Anatol)


  • Fixed bug #64938 (libxml_disable_entity_loader setting is shared between requests). (Remi)


  • Fixed bug #75608 ("Narrowing occurred during type inference" error). (Laruence, Dmitry)
  • Fixed bug #75579 (Interned strings buffer overflow may cause crash). (Dmitry)
  • Fixed bug #75570 ("Narrowing occurred during type inference" error). (Dmitry)


  • Fixed bug #74183 (preg_last_error not returning error code after error). (Andrew Nester)


  • Fixed bug #74782 (remove file name from output to avoid XSS). (stas)


  • Fixed bug #75511 (fread not free unused buffer). (Laruence)
  • Fixed bug #75514 (mt_rand returns value outside [$min,$max]+ on 32-bit) (Remi)
  • Fixed bug #75535 (Inappropriately parsing HTTP response leads to PHP segment fault). (Nikita)
  • Fixed bug #75409 (accept EFAULT in addition to ENOSYS as indicator that getrandom() is missing). (sarciszewski)
  • Fixed bug #73124 (php_ini_scanned_files() not reporting correctly). (John Stevenson)
  • Fixed bug #75574 (putenv does not work properly if parameter contains non-ASCII unicode character). (Anatol)


  • Fixed bug #75540 (Segfault with libzip 1.3.1). (Remi)

Comments 8

This update has been submitted for testing by remi.

This update has been pushed to testing.

no regressions noted

karma: +1

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by remi.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines
Is the update generally functional?
Content Type
Test Gating Status
Tests not running
Submitted by
Update Type
stable threshold: 3
unstable threshold: -3
submitted 6 months ago
in testing 6 months ago
in stable 6 months ago

Automated Test Results

Test results and gating status may sometimes conflict as the gating status is retrieved periodically by Bodhi's backend server, while the test results presented here are retrieved upon page load. If your update is marked as gated while all the tests show green/passed, the next check of gating status should open the gate.