File php-CVE-2015-2331.patch of Package php5.openSUSE_13.2_Update

From ef8fc4b53d92fbfcd8ef1abbd6f2f5fe2c4a11e5 Mon Sep 17 00:00:00 2001
From: Stanislav Malyshev <stas@php.net>
Date: Tue, 17 Mar 2015 21:59:56 -0700
Subject: [PATCH] Fix bug #69253 - ZIP Integer Overflow leads to writing past
 heap boundary

---
 NEWS                     | 4 ++++
 ext/zip/lib/zip_dirent.c | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

Index: ext/zip/lib/zip_dirent.c
===================================================================
--- ext/zip/lib/zip_dirent.c.orig	2015-03-24 16:13:34.802415031 +0100
+++ ext/zip/lib/zip_dirent.c	2015-03-24 16:17:06.898217755 +0100
@@ -110,7 +110,7 @@
 
     if (nentry == 0)
 	cd->entry = NULL;
-    else if ((cd->entry=(struct zip_entry *)malloc(sizeof(*(cd->entry))*(size_t)nentry)) == NULL) {
+    else if (nentry > ((size_t)-1)/sizeof(*(cd->entry)) || (cd->entry=(struct zip_entry *)malloc(sizeof(*(cd->entry))*(size_t)nentry)) == NULL) {
 	_zip_error_set(error, ZIP_ER_MEMORY, 0);
 	free(cd);
 	return NULL;