Changes in MySQL 8.0.25 (2021-05-11, General Availability)

 

• Packaging Notes

• Bugs Fixed

Packaging Notes

• Binary packages that include curl rather than linking to the system curl library have been upgraded to use curl 7.76.0.

Bugs Fixed

• On Fedora 34, builds from source failed due to an undefined reference to symbol crc32_z@@ZLIB_1.2.9. (Bug #32702860)

• For a prepared, implicitly grouped SELECT statement in which the WHERE clause was determined always to be false, the result of some aggregate functions could sometimes be picked up from the previous execution of the statement. (Bug #103192, Bug #32717969)

PHP 7.4.21 Released!

The PHP development team announces the immediate availability of PHP 7.4.21. This is a security release.

All PHP 7.4 users are encouraged to upgrade to this version.

For source downloads of PHP 7.4.21 please visit our downloads page, Windows source and binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

• Core:
  • Fixed bug #81068 (Double free in realpath_cache_clean()).
  • Fixed bug #76359 (open_basedir bypass through adding "..").
  • Fixed bug #81090 (Typed property performance degradation with .= operator).
  • Fixed bug #81070 (Integer underflow in memory limit comparison).
  • Fixed bug #81122 (SSRF bypass in FILTER_VALIDATE_URL). (CVE-2021-21705)
• Bzip2:
  • Fixed bug #81092 (fflush before stream_filter_remove corrupts stream).
• OpenSSL:
  • Fixed bug #76694 (native Windows cert verification uses CN as sever name).
• PDO_Firebird:
  • Fixed bug #76448 (Stack buffer overflow in firebird_info_cb). (CVE-2021-21704)
  • Fixed bug #76449 (SIGSEGV in firebird_handle_doer). (CVE-2021-21704)
  • Fixed bug #76450 (SIGSEGV in firebird_stmt_execute). (CVE-2021-21704)
  • Fixed bug #76452 (Crash while parsing blob data in firebird_fetch_blob). (CVE-2021-21704)
• Standard:
  • Fixed bug #81048 (phpinfo(INFO_VARIABLES) "Array to string conversion").

Read more