Mercurial Mercurial > upstream > oracle > userland-gate / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/php-5_2/php-sapi/patches/65_php_19556437.patch
author Craig Mohrman <craig.mohrman@oracle.com>
Wed, 11 Feb 2015 10:30:02 -0800
branchs11u2-sru
changeset 3810 8421290d92e0
permissions -rw-r--r--
19838509 upgrade php to version 5.3.29 18857741 problem in UTILITY/PHP 18890894 problem in UTILITY/PHP 18890895 problem in UTILITY/PHP 19003253 problem in UTILITY/PHP 19167518 problem in UTILITY/PHP 19519142 problem in UTILITY/PHP 19556437 problem in UTILITY/PHP 19707971 problem in UTILITY/PHP 19796954 problem in UTILITY/PHP 20258327 problem in UTILITY/PHP 20488612 announce PHP 5.2 EOF in man page
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
3810
8421290d92e0 19838509 upgrade php to version 5.3.29
Craig Mohrman <craig.mohrman@oracle.com>
parents:
diff changeset 
     1
 
Fix for CVE-2014-5120
8421290d92e0 19838509 upgrade php to version 5.3.29
Craig Mohrman <craig.mohrman@oracle.com>
parents:
diff changeset 
     2
 
Based on code in php 5.3.29 from comments in:
8421290d92e0 19838509 upgrade php to version 5.3.29
Craig Mohrman <craig.mohrman@oracle.com>
parents:
diff changeset 
     3
 
https://bugs.php.net/bug.php?id=67730
8421290d92e0 19838509 upgrade php to version 5.3.29
Craig Mohrman <craig.mohrman@oracle.com>
parents:
diff changeset 
     4
 












8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




     5














8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




     6


--- php-5.2.17/ext/gd/gd_ctx.c_orig	2010-01-03 01:23:27.000000000 -0800













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




     7


+++ php-5.2.17/ext/gd/gd_ctx.c	2014-11-04 15:12:01.612256878 -0800













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




     8


@@ -90,7 +90,9 @@













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




     9


 	}













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    10


 













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    11


 	if (argc > 1 && (Z_TYPE_PP(file) != IS_NULL && ((argc == 2) || (argc > 2 && Z_STRLEN_PP(file))))) {













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    12


-













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    13


+		if (strlen(Z_STRVAL_PP(file)) != Z_STRLEN_PP(file)) {













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    14


+			RETURN_FALSE;













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    15


+		}













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    16


 		PHP_GD_CHECK_OPEN_BASEDIR(fn, "Invalid filename");













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    17


 













8421290d92e0
19838509 upgrade php to version 5.3.29



Craig Mohrman <craig.mohrman@oracle.com>


parents: 

diff
changeset




    18


 		fp = VCWD_FOPEN(fn, "wb");















upstream/oracle/userland-gate