Commit 6e124d0df67 for php.net

commit 6e124d0df67ac9f438d76de71e7f49d58e518429
Merge: 06b8b75d2e2 c48a9f42d33
Author: Jakub Zelenka <bukka@php.net>
Date:   Tue Dec 16 15:30:54 2025 +0100

    Merge branch 'PHP-8.1' into PHP-8.2

    * PHP-8.1:
      Update NEWS with info about security issues
      Fix GHSA-www2-q4fc-65wf
      Fix GHSA-h96m-rvf9-jgm2
      Fix GHSA-8xr5-qppj-gvwj: PDO quoting result null deref
      Fix GH-20584: Information Leak of Memory

diff --cc NEWS
index 6a3046f7587,6ac638073fa..117481ff895
--- a/NEWS
+++ b/NEWS
@@@ -10,7 -10,19 +10,19 @@@ PH
    . Reset global pointers to prevent use-after-free in zend_jit_status().
      (Florian Engelhardt)

+ - PDO:
+   . Fixed GHSA-8xr5-qppj-gvwj (PDO quoting result null deref). (CVE-2025-14180)
+     (Jakub Zelenka)
+
+ - Standard:
+   . Fixed GHSA-www2-q4fc-65wf (Null byte termination in dns_get_record()).
+     (ndossche)
+   . Fixed GHSA-h96m-rvf9-jgm2 (Heap buffer overflow in array_merge()).
+     (CVE-2025-14178) (ndossche)
+   . Fixed GHSA-3237-qqm7-mfv7 (Information Leak of Memory in getimagesize).
+     (CVE-2025-14177) (ndossche)
+
 -03 Jul 2025, PHP 8.1.33
 +03 Jul 2025, PHP 8.2.29

  - PGSQL:
    . Fixed GHSA-hrwm-9436-5mv3 (pgsql extension does not check for errors during