summaryrefslogtreecommitdiffstats
path: root/bug71798.patch
diff options
context:
space:
mode:
authorRemi Collet <fedora@famillecollet.com>2016-03-30 13:01:52 +0200
committerRemi Collet <fedora@famillecollet.com>2016-03-30 13:01:52 +0200
commite32b0987890b4f59525330009dca2b647e98e5f2 (patch)
tree61f12e6ae5993a2e20d72869063bcb51efd518ce /bug71798.patch
parentcbdcbc63a65d469b9ac4124cef8e443e0bf6d9cf (diff)
PHP 5.4.45-7 with security fix from 5.5.34
Diffstat (limited to 'bug71798.patch')
-rw-r--r--bug71798.patch26
1 files changed, 26 insertions, 0 deletions
diff --git a/bug71798.patch b/bug71798.patch
new file mode 100644
index 0000000..88c3a77
--- /dev/null
+++ b/bug71798.patch
@@ -0,0 +1,26 @@
+Backported from 5.5 for 5.4 by Remi Collet
+
+From 95433e8e339dbb6b5d5541473c1661db6ba2c451 Mon Sep 17 00:00:00 2001
+From: Stanislav Malyshev <stas@php.net>
+Date: Sun, 27 Mar 2016 14:22:19 -0700
+Subject: [PATCH] Fix bug #71798 - Integer Overflow in php_raw_url_encode
+
+---
+ ext/standard/url.c | 2 +-
+ main/php_version.h | 6 +++---
+ 2 files changed, 4 insertions(+), 4 deletions(-)
+
+diff --git a/ext/standard/url.c b/ext/standard/url.c
+index 2f56d31..27a216a 100644
+--- a/ext/standard/url.c
++++ b/ext/standard/url.c
+@@ -600,7 +600,7 @@ PHPAPI int php_url_decode(char *str, int len)
+ */
+ PHPAPI char *php_raw_url_encode(char const *s, int len, int *new_length)
+ {
+- register int x, y;
++ register size_t x, y;
+ unsigned char *str;
+
+ str = (unsigned char *) safe_emalloc(3, len, 1);
+