Search
j0ke.net Open Build Service
>
Projects
>
internetx
:
php5
>
php-5.2.17
> php-5.2.14-CVE-2012-2688.patch
Sign Up
|
Log In
Username
Password
Cancel
Overview
Repositories
Revisions
Requests
Users
Advanced
Attributes
Meta
File php-5.2.14-CVE-2012-2688.patch of Package php-5.2.17
http://git.php.net/?p=php-src.git;a=commit;h=fc74503792b1ee92e4b813690890f3ed38fa3ad5 Index: main/streams/streams.c =================================================================== --- main/streams/streams.c.orig +++ main/streams/streams.c @@ -2274,6 +2274,11 @@ PHPAPI int _php_stream_scandir(char *dir if (vector_size == 0) { vector_size = 10; } else { + if(vector_size*2 < vector_size) { + /* overflow */ + efree(vector); + return FAILURE; + } vector_size *= 2; } vector = (char **) erealloc(vector, vector_size * sizeof(char *));