File php-CVE-2016-3185.patch of Package php5.openSUSE_Leap_42.1_Update

X-Git-Url: https://72.52.91.13:4430/?p=php-src.git;a=blobdiff_plain;f=ext%2Fsoap%2Fphp_http.c;h=a2d0b6207d7db7ef54a6aa175915846498ae75d7;hp=2baa0fa3ff74e2940be80f4519cc46c06a255123;hb=eaf4e77190d402ea014207e9a7d5da1a4f3727ba;hpb=57b997ebf99e0eb9a073e0dafd2ab100bd4a112d

Index: ext/soap/php_http.c
===================================================================
--- ext/soap/php_http.c.orig	2016-03-29 16:01:00.830589968 +0200
+++ ext/soap/php_http.c	2016-03-29 16:01:00.954589966 +0200
@@ -831,8 +831,10 @@
 						    Z_TYPE_PP(value) == IS_STRING) {
 						  zval **tmp;
 						  if ((zend_hash_index_find(Z_ARRVAL_PP(data), 1, (void**)&tmp) == FAILURE ||
+						       Z_TYPE_PP(tmp) != IS_STRING ||
 						       strncmp(phpurl->path?phpurl->path:"/",Z_STRVAL_PP(tmp),Z_STRLEN_PP(tmp)) == 0) &&
 						      (zend_hash_index_find(Z_ARRVAL_PP(data), 2, (void**)&tmp) == FAILURE ||
+						       Z_TYPE_PP(tmp) != IS_STRING ||
 						       in_domain(phpurl->host,Z_STRVAL_PP(tmp))) &&
 						      (use_ssl || zend_hash_index_find(Z_ARRVAL_PP(data), 3, (void**)&tmp) == FAILURE)) {
 								smart_str_appendl(&soap_headers, key, strlen(key));

Places

File php-CVE-2016-3185.patch of Package php5.openSUSE_Leap_42.1_Update

Places