rpms / php55-php

Clone
Source Code
GIT

Blame SOURCES/php-5.5.6-CVE-2013-6712.patch

c7
  1.   e9ca132b9431febf65b3d6f309562d7167318697
  2.   SOURCES
  3.   php-5.5.6-CVE-2013-6712.patch
Blob History Raw
37fd76 
From 12fe4e90be7bfa2a763197079f68f5568a14e071 Mon Sep 17 00:00:00 2001
37fd76 
From: Remi Collet <remi@php.net>
37fd76 
Date: Wed, 27 Nov 2013 11:13:16 +0100
37fd76 
Subject: [PATCH] Fixed bug #66060 (Heap buffer over-read in DateInterval)
37fd76
37fd76 
---
37fd76 
 NEWS                                | 3 +++
37fd76 
 ext/date/lib/parse_iso_intervals.c  | 4 ++--
37fd76 
 ext/date/lib/parse_iso_intervals.re | 2 +-
37fd76 
 3 files changed, 6 insertions(+), 3 deletions(-)
37fd76
37fd76 
diff --git a/ext/date/lib/parse_iso_intervals.c b/ext/date/lib/parse_iso_intervals.c
37fd76 
index bd1ad05..480ea38 100644
37fd76 
--- a/ext/date/lib/parse_iso_intervals.c
37fd76 
+++ b/ext/date/lib/parse_iso_intervals.c
37fd76 
@@ -380,7 +380,7 @@ yy6:
37fd76 
 					break;
37fd76 
 			}
37fd76 
 			ptr++;
37fd76 
-		} while (*ptr);
37fd76 
+		} while (!s->errors->error_count && *ptr);
37fd76 
 		s->have_period = 1;
37fd76 
 		TIMELIB_DEINIT;
37fd76 
 		return TIMELIB_PERIOD;
37fd76 
diff --git a/ext/date/lib/parse_iso_intervals.re b/ext/date/lib/parse_iso_intervals.re
37fd76 
index 56aa34d..c5e9f67 100644
37fd76 
--- a/ext/date/lib/parse_iso_intervals.re
37fd76 
+++ b/ext/date/lib/parse_iso_intervals.re
37fd76 
@@ -348,7 +348,7 @@ isoweek          = year4 "-"? "W" weekofyear;
37fd76 
 					break;
37fd76 
 			}
37fd76 
 			ptr++;
37fd76 
-		} while (*ptr);
37fd76 
+		} while (!s->errors->error_count && *ptr);
37fd76 
 		s->have_period = 1;
37fd76 
 		TIMELIB_DEINIT;
37fd76 
 		return TIMELIB_PERIOD;
37fd76 
--
37fd76 
1.8.4.3
37fd76

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation