Overview

File php-CVE-2018-10546.patch of Package php5.openSUSE_Leap_42.3_Update

diff --git a/ext/iconv/iconv.c b/ext/iconv/iconv.c
index 69dd8c1..fca5331 100644
--- a/ext/iconv/iconv.c
+++ b/ext/iconv/iconv.c
@@ -2672,6 +2672,9 @@ static int php_iconv_stream_filter_append_bucket(
 								tcnt = 0;
 								break;
 							}
+						} else {
+						    php_error_docref(NULL, E_WARNING, "iconv stream filter (\"%s\"=>\"%s\"): invalid multibyte sequence", self->from_charset, self->to_charset);
+						    goto out_failure;
 						}
 						break;
openSUSE Build Service is sponsored by
Places