File: CVE-2016-temp-71039.patch

package info (click to toggle)
php5 5.3.3.1-7%2Bsqueeze29
  • links: PTS, VCS
  • area: main
  • in suites: squeeze-lts
  • size: 123,520 kB
  • ctags: 55,742
  • sloc: ansic: 633,963; php: 19,620; sh: 11,344; xml: 5,816; cpp: 2,400; yacc: 1,745; exp: 1,514; makefile: 1,019; pascal: 623; awk: 537; sql: 22
file content (26 lines) | stat: -rw-r--r-- 903 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
 
Index: php5-5.3.3.1/ext/standard/exec.c
===================================================================
--- php5-5.3.3.1.orig/ext/standard/exec.c	2010-03-12 11:28:59.000000000 +0100
+++ php5-5.3.3.1/ext/standard/exec.c	2016-02-24 14:11:14.000000000 +0100
@@ -442,6 +442,10 @@
 	}
 
 	if (command_len) {
+                if (command_len != strlen(command)) {
+                        php_error_docref(NULL, E_ERROR, "Input string contains NULL bytes");
+                        return;
+                }
 		cmd = php_escape_shell_cmd(command);
 		RETVAL_STRING(cmd, 0);
 	} else {
@@ -463,6 +467,10 @@
 	}
 
 	if (argument) {
+               if (argument_len != strlen(argument)) {
+                        php_error_docref(NULL, E_ERROR, "Input string contains NULL bytes");
+                        return;
+                }
 		cmd = php_escape_shell_arg(argument);
 		RETVAL_STRING(cmd, 0);
 	}