equal
deleted
inserted
replaced
1 CVE-2015-2348 |
|
2 Community BUG: |
|
3 https://bugs.php.net/bug.php?id=69207 |
|
4 Community CODE: |
|
5 http://git.php.net/?p=php-src.git;a=commit;h=1291d6bbee93b6109eb07e8f7916ff1b7fcc13e1 |
|
6 Below is the community patch. |
|
7 |
|
8 |
|
9 From 1291d6bbee93b6109eb07e8f7916ff1b7fcc13e1 Mon Sep 17 00:00:00 2001 |
|
10 From: Stanislav Malyshev <[email protected]> |
|
11 Date: Tue, 17 Mar 2015 12:47:58 -0700 |
|
12 Subject: [PATCH] Fix bug #69207 - move_uploaded_file allows nulls in path |
|
13 |
|
14 --- |
|
15 NEWS | 3 +++ |
|
16 ext/standard/basic_functions.c | 2 +- |
|
17 2 files changed, 4 insertions(+), 1 deletion(-) |
|
18 |
|
19 diff --git a/ext/standard/basic_functions.c b/ext/standard/basic_functions.c |
|
20 index 9a9df30..c3e2230 100644 |
|
21 --- a/ext/standard/basic_functions.c |
|
22 +++ b/ext/standard/basic_functions.c |
|
23 @@ -5775,7 +5775,7 @@ PHP_FUNCTION(move_uploaded_file) |
|
24 RETURN_FALSE; |
|
25 } |
|
26 |
|
27 - if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "ss", &path, &path_len, &new_path, &new_path_len) == FAILURE) { |
|
28 + if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "sp", &path, &path_len, &new_path, &new_path_len) == FAILURE) { |
|
29 return; |
|
30 } |
|
31 |
|
32 -- |
|
33 2.1.4 |
|
34 |
|