File: 116-CVE-2007-0988.patch

package info (click to toggle)

php5 5.2.0%2Bdfsg-8%2Betch16

links: PTS
area: main
in suites: etch
size: 58,940 kB
ctags: 45,388
sloc: ansic: 533,605; sh: 17,835; php: 11,336; cpp: 4,289; xml: 3,809; yacc: 2,446; lex: 2,174; makefile: 1,150; tcl: 1,128; awk: 693; perl: 71; sql: 22; pascal: 15

file content (23 lines) | stat: -rw-r--r-- 609 bytes

parent folder | download | duplicates (2)

diff -Nurp orig/Zend/zend_hash.c new/Zend/zend_hash.c
--- orig/Zend/zend_hash.c	2007-02-21 09:22:11.000000000 +0100
+++ new/Zend/zend_hash.c	2007-02-21 09:22:48.000000000 +0100
@@ -141,11 +141,16 @@ ZEND_API int _zend_hash_init(HashTable *
 
 	SET_INCONSISTENT(HT_OK);
 
-	while ((1U << i) < nSize) {
-		i++;
+	if (nSize >= 0x80000000) {
+		/* prevent overflow */
+		ht->nTableSize = 0x80000000;
+	} else {
+		while ((1U << i) < nSize) {
+			i++;
+		}
+		ht->nTableSize = 1 << i;
 	}
 
-	ht->nTableSize = 1 << i;
 	ht->nTableMask = ht->nTableSize - 1;
 	ht->pDestructor = pDestructor;
 	ht->arBuckets = NULL;