File php-CVE-2016-5093.patch of Package php5.11538
--- a/ext/intl/locale/locale_methods.c +++ b/ext/intl/locale/locale_methods.c @@ -326,6 +326,7 @@ static char* get_icu_value_internal( const char* loc_name , char* tag_name, int* if( U_FAILURE( status ) ) { if( status == U_BUFFER_OVERFLOW_ERROR ) { status = U_ZERO_ERROR; + buflen++; /* add space for \0 */ continue; }