File php-CVE-2018-10360.patch of Package php5.openSUSE_Leap_42.3_Update

Index: php-5.5.14/ext/fileinfo/libmagic/readelf.c
===================================================================
--- php-5.5.14.orig/ext/fileinfo/libmagic/readelf.c	2014-06-25 15:06:23.000000000 +0200
+++ php-5.5.14/ext/fileinfo/libmagic/readelf.c	2018-06-12 12:16:55.564688675 +0200
@@ -774,7 +774,8 @@ core:
 
 				cname = (unsigned char *)
 				    &nbuf[doff + prpsoffsets(i)];
-				for (cp = cname; *cp && isprint(*cp); cp++)
+				for (cp = cname; cp < nbuf + size && *cp
+				    && isprint(*cp); cp++)
 					continue;
 				/*
 				 * Linux apparently appends a space at the end