- CVE-2021-21703: fix error in php fpm shared memory organization leading to privilage escalation - CVE-2021-21707: fix handling of paths with percent encoded NULL byte - Fix bug #80672: Null Dereference in SoapClient. (CVE-2021-21702) - Fix bug #79699: PHP parses encoded cookie names so malicious `__Host-` cookies can be sent (CVE-2020-7070) - Fix bug #78875: Long variables cause OOM and temp files are not cleaned (CVE-2019-11048) - Fix bug #78876: Long variables in multipart/form-data cause OOM and temp files are not cleaned (CVE-2019-11048) - Fix bug #79465: OOB Read in urldecode() (CVE-2020-7067) - Fix bug #79282: Use-of-uninitialized-value in exif (CVE-2020-7064) - Fix bug #79329: get_headers silently truncates after a null byte (CVE-2020-7066) - Fix bug #79037: global buffer-overflow in `mbfl_filt_conv_big5_wchar` (CVE-2020-7060) - Fix bug #79082: Files added to tar with Phar::buildFromIterator have all-access permissions (CVE-2020-7063) - Fix bug #79099: OOB read in php_strip_tags_ex (CVE-2020-7059) - Fix bug #79221: Null Pointer Dereference in PHP Session Upload Progress (CVE-2020-7062) - Fixed bug #78878 (Buffer underflow in bc_shift_addsub). (CVE-2019-11046) - Fixed bug #78910 (Heap-buffer-overflow READ in exif). (CVE-2019-11047) - Fixed bug #78863 (DirectoryIterator class silently truncates after a nullbyte). (CVE-2019-11045) - Fix bug #78599 (env_path_info underflow can lead to RCE) (CVE-2019-11043) - Fixed CVE-2019-13224 - Fix bug #79797: Use of freed hash key in the phar_parse_zipfile function (CVE-2020-7068) - Fixed bug #78862 (link() silently truncates after a null byte on Windows). (CVE-2019-11044) - Fix bug #79601: Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV (CVE-2020-7069)