Projects
home:rottame:vhosts-ng:php53
php5
php-5.3.3-CVE-2014-3587.patch
Log In
Username
Password
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File php-5.3.3-CVE-2014-3587.patch of Package php5
From 0641e56be1af003aa02c7c6b0184466540637233 Mon Sep 17 00:00:00 2001 From: Christos Zoulas <christos@zoulas.com> Date: Thu, 7 Aug 2014 09:38:35 +0000 Subject: [PATCH] Prevent wrap around (Remi Collet at redhat) --- src/cdf.c | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff -ur php-5.3.29.orig/ext/fileinfo/libmagic/cdf.c php-5.3.29/ext/fileinfo/libmagic/cdf.c --- php-5.3.29.orig/ext/fileinfo/libmagic/cdf.c 2014-08-13 21:22:50.000000000 +0200 +++ php-5.3.29/ext/fileinfo/libmagic/cdf.c 2015-02-23 16:58:18.531048818 +0100 @@ -820,6 +820,10 @@ q = (const uint8_t *)(const void *) ((const char *)(const void *)p + ofs - 2 * sizeof(uint32_t)); + if (q < p) { + DPRINTF(("Wrapped around %p < %p\n", q, p)); + goto out; + } if (q > e) { DPRINTF(("Ran of the end %p > %p\n", q, e)); goto out;
Locations
Projects
Search
Status Monitor
Help
Open Build Service
OBS Manuals
API Documentation
OBS Portal
Reporting a Bug
Contact
Mailing List
Forums
Chat (IRC)
Twitter
Open Build Service (OBS)
is an
openSUSE project
.