File php-5.1.2-CVE-2007-3007.patch of Package php

--- ext/standard/file.c.orig
+++ ext/standard/file.c
@@ -2314,6 +2314,14 @@ PHP_FUNCTION(real_path)
 	convert_to_string_ex(path);
 
 	if (VCWD_REALPATH(Z_STRVAL_PP(path), resolved_path_buff)) {
+		if (PG(safe_mode) && (!php_checkuid(resolved_path_buff, NULL, CHECKUID_CHECK_FILE_AND_DIR))) {
+			RETURN_FALSE;
+		}
+
+		if (php_check_open_basedir(resolved_path_buff TSRMLS_CC)) {
+			RETURN_FALSE;
+		}
+
 #ifdef ZTS
 		if (VCWD_ACCESS(resolved_path_buff, F_OK)) {
 			RETURN_FALSE;

Places

File php-5.1.2-CVE-2007-3007.patch of Package php

Places