/[smeserver]/rpms/php/sme8/php-5.3.3-CVE-2011-4153.patch
ViewVC logotype

Contents of /rpms/php/sme8/php-5.3.3-CVE-2011-4153.patch

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph


Revision 1.1.2.1 - (show annotations) (download)
Fri Jun 29 14:45:08 2012 UTC (12 years, 4 months ago) by slords
Branch: redhat-upstream
CVS Tags: php-5_3_3-13_el5_9_1, php-5_3_3-13_el6
Changes since 1.1: +29 -0 lines
Upstream import

1
2 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-4153
3
4 http://svn.php.net/viewvc?view=revision&revision=319442
5
6 --- php-5.3.3/ext/standard/syslog.c.cve4153
7 +++ php-5.3.3/ext/standard/syslog.c
8 @@ -234,6 +234,9 @@ PHP_FUNCTION(openlog)
9 free(BG(syslog_device));
10 }
11 BG(syslog_device) = zend_strndup(ident, ident_len);
12 + if(BG(syslog_device) == NULL) {
13 + RETURN_FALSE;
14 + }
15 openlog(BG(syslog_device), option, facility);
16 RETURN_TRUE;
17 }
18 --- php-5.3.3/Zend/zend_builtin_functions.c.cve4153
19 +++ php-5.3.3/Zend/zend_builtin_functions.c
20 @@ -683,6 +683,9 @@ repeat:
21 }
22 c.flags = case_sensitive; /* non persistent */
23 c.name = zend_strndup(name, name_len);
24 + if (c.name == NULL) {
25 + RETURN_FALSE;
26 + }
27 c.name_len = name_len+1;
28 c.module_number = PHP_USER_CONSTANT;
29 if (zend_register_constant(&c TSRMLS_CC) == SUCCESS) {

admin@koozali.org
ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed