Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
devel:languages:php:php53
php5
php-5.3.3-CVE-2014-3587.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File php-5.3.3-CVE-2014-3587.patch of Package php5
From 0641e56be1af003aa02c7c6b0184466540637233 Mon Sep 17 00:00:00 2001 From: Christos Zoulas <christos@zoulas.com> Date: Thu, 7 Aug 2014 09:38:35 +0000 Subject: [PATCH] Prevent wrap around (Remi Collet at redhat) --- src/cdf.c | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff -ur php-5.3.29.orig/ext/fileinfo/libmagic/cdf.c php-5.3.29/ext/fileinfo/libmagic/cdf.c --- php-5.3.29.orig/ext/fileinfo/libmagic/cdf.c 2014-08-13 21:22:50.000000000 +0200 +++ php-5.3.29/ext/fileinfo/libmagic/cdf.c 2015-02-23 16:58:18.531048818 +0100 @@ -820,6 +820,10 @@ q = (const uint8_t *)(const void *) ((const char *)(const void *)p + ofs - 2 * sizeof(uint32_t)); + if (q < p) { + DPRINTF(("Wrapped around %p < %p\n", q, p)); + goto out; + } if (q > e) { DPRINTF(("Ran of the end %p > %p\n", q, e)); goto out;
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor