The PHP development team would like to announce the immediate availability of PHP 5.3.7. This release focuses on improving the stability of the PHP 5.3.x branch with over 90 bug fixes, some of which are security related.
Security Enhancements and Fixes in PHP 5.3.7:
Updated crypt_blowfish to 1.2. (CVE-2011-2483)
Fixed crash in error_log(). Reported by Mateusz Kocielski
Fixed buffer overflow on overlog salt in crypt().
Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload filename). Reported by Krzysztof Kotowicz. (CVE-2011-2202)
Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
Fixed bug #54238 (use-after-free in substr_replace()). (CVE-2011-1148)
Key enhancements in PHP 5.3.7 include:
Upgraded bundled Sqlite3 to version 220.127.116.11
Upgraded bundled PCRE to version 8.12
Fixed bug #54910 (Crash when calling call_user_func with unknown function name)
Fixed bug #54585 (track_errors causes segfault)
Fixed bug #54262 (Crash when assigning value to a dimension in a non-array)
Fixed a crash inside dtor for error handling
Fixed bug #55339 (Segfault with allow_call_time_pass_reference = Off)
Fixed bug #54935 php_win_err can lead to crash
Fixed bug #54332 (Crash in zend_mm_check_ptr // Heap corruption)
Fixed bug #54305 (Crash in gc_remove_zval_from_buffer)
Fixed bug #54580 (get_browser() segmentation fault when browscap ini directive is set through php_admin_value)
Fixed bug #54529 (SAPI crashes on apache_config.c:197)
Fixed bug #54283 (new DatePeriod(NULL) causes crash).