From 8ae6a8f1d688e638494a559a634fd9568226977a Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Fri, 3 Jul 2026 09:17:02 +0200 Subject: [PATCH 1/5] Use PHP version for zip extension --- ext/zip/php_zip.c | 1 - ext/zip/php_zip.h | 3 ++- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/ext/zip/php_zip.c b/ext/zip/php_zip.c index 9bc801455ed6..4156a8deb861 100644 --- a/ext/zip/php_zip.c +++ b/ext/zip/php_zip.c @@ -3209,7 +3209,6 @@ static PHP_MINFO_FUNCTION(zip) php_info_print_table_start(); php_info_print_table_row(2, "Zip", "enabled"); - php_info_print_table_row(2, "Zip version", PHP_ZIP_VERSION); #ifdef HAVE_LIBZIP_VERSION if (strcmp(LIBZIP_VERSION, zip_libzip_version())) { php_info_print_table_row(2, "Libzip headers version", LIBZIP_VERSION); diff --git a/ext/zip/php_zip.h b/ext/zip/php_zip.h index 408c29708231..e734c4628f02 100644 --- a/ext/zip/php_zip.h +++ b/ext/zip/php_zip.h @@ -37,7 +37,8 @@ extern zend_module_entry zip_module_entry; /* Additional flags not from libzip */ #define ZIP_FL_OPEN_FILE_NOW (1u<<30) -#define PHP_ZIP_VERSION "1.22.8" +#include "php_version.h" +#define PHP_ZIP_VERSION PHP_VERSION #ifdef HAVE_LIBZIP_VERSION #define LIBZIP_VERSION_STR zip_libzip_version() From ee0f2b9e511185c79c6b062efe30eb47af0dbbb9 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Wed, 8 Jul 2026 08:57:05 +0200 Subject: [PATCH 2/5] [ci skip] add CVE ref --- NEWS | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/NEWS b/NEWS index 787589fc6dfc..12ae8c0fb23d 100644 --- a/NEWS +++ b/NEWS @@ -7,7 +7,7 @@ PHP NEWS - OpenSSL: . Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in - openssl_encrypt with AES-WRAP-PAD). (David Carlier) + openssl_encrypt with AES-WRAP-PAD). (CVE-2026-14355) (David Carlier) 07 May 2026, PHP 8.2.31 From 427089cd9423daecfbe478bc5cdacc394fec8eb7 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Wed, 8 Jul 2026 08:58:36 +0200 Subject: [PATCH 3/5] [ci skip] add CVE ref --- NEWS | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/NEWS b/NEWS index 348d062e83a4..3bebd2660a2a 100644 --- a/NEWS +++ b/NEWS @@ -11,7 +11,7 @@ PHP NEWS - OpenSSL: . Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in - openssl_encrypt with AES-WRAP-PAD). (David Carlier) + openssl_encrypt with AES-WRAP-PAD). (CVE-2026-14355) (David Carlier) 07 May 2026, PHP 8.3.31 From 5ec033c497e3d08c0718d0d16b595a40117faaa5 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Wed, 8 Jul 2026 09:00:43 +0200 Subject: [PATCH 4/5] [ci skip] add CVE ref --- NEWS | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/NEWS b/NEWS index 5f615701b4ab..cdd6a48a4874 100644 --- a/NEWS +++ b/NEWS @@ -137,7 +137,7 @@ PHP NEWS - OpenSSL: . Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in - openssl_encrypt with AES-WRAP-PAD). (David Carlier) + openssl_encrypt with AES-WRAP-PAD). (CVE-2026-14355) (David Carlier) - Phar: . Fixed a bypass of the magic ".phar" directory protection in @@ -311,7 +311,7 @@ PHP NEWS - Streams: . Fixed bug GH-21468 (Segfault in file_get_contents w/ a https URL - and a proxy set). (ndossche) + and a proxy set). (CVE-2026-12184) (ndossche) - XSL: . Fixed bug GH-21600 (Segfault on module shutdown). (David Carlier) From 735748f5d72cb835c46f785eee2fc32fe5a1dccf Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Wed, 8 Jul 2026 09:02:00 +0200 Subject: [PATCH 5/5] [ci skip] add CVE ref --- NEWS | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/NEWS b/NEWS index 2f00f144fbb8..e6178c04c988 100644 --- a/NEWS +++ b/NEWS @@ -140,7 +140,7 @@ PHP NEWS - OpenSSL: . Fixed bug GH-22187 (Memory corruption (zend_mm_heap corrupted) in - openssl_encrypt with AES-WRAP-PAD). (David Carlier) + openssl_encrypt with AES-WRAP-PAD). (CVE-2026-14355) (David Carlier) - Phar: . Fixed a bypass of the magic ".phar" directory protection in @@ -327,7 +327,7 @@ PHP NEWS - Streams: . Fixed bug GH-21468 (Segfault in file_get_contents w/ a https URL - and a proxy set). (ndossche) + and a proxy set). (CVE-2026-12184) (ndossche) - URI: . Fixed CVE-2026-42371 (uriparser before 1.0.1 has numeric truncation in