Overview

File php-CVE-2015-8879.patch of Package php5.openSUSE_13.2_Update

Index: php-5.6.1/ext/odbc/php_odbc.c
===================================================================
--- php-5.6.1.orig/ext/odbc/php_odbc.c	2014-10-01 11:17:38.000000000 +0200
+++ php-5.6.1/ext/odbc/php_odbc.c	2016-05-24 13:24:44.765429548 +0200
@@ -998,6 +998,17 @@ int odbc_bindcols(odbc_result *result TS
 			default:
 				rc = SQLColAttributes(result->stmt, (SQLUSMALLINT)(i+1), colfieldid,
 								NULL, 0, NULL, &displaysize);
+
+#if defined(ODBCVER) && (ODBCVER >= 0x0300)
+				/* Workaround for drivers that report NVARCHAR(MAX) columns as SQL_WVARCHAR with size 0 (bug #69975) */
+				if (result->values[i].coltype == SQL_WVARCHAR && displaysize == 0) {
+					result->values[i].coltype = SQL_WLONGVARCHAR;
+					result->values[i].value = NULL;
+					break;
+                                }
+#endif
+
+
 				/* Workaround for Oracle ODBC Driver bug (#50162) when fetching TIMESTAMP column */
 				if (result->values[i].coltype == SQL_TIMESTAMP) {
 					displaysize += 3;
openSUSE Build Service is sponsored by
Places