File: CVE-2016-temp-71391.patch

package info (click to toggle)
php5 5.3.3.1-7%2Bsqueeze29
  • links: PTS, VCS
  • area: main
  • in suites: squeeze-lts
  • size: 123,520 kB
  • ctags: 55,742
  • sloc: ansic: 633,963; php: 19,620; sh: 11,344; xml: 5,816; cpp: 2,400; yacc: 1,745; exp: 1,514; makefile: 1,019; pascal: 623; awk: 537; sql: 22
file content (14 lines) | stat: -rw-r--r-- 847 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
 
Index: php5-5.3.3.1/ext/phar/tar.c
===================================================================
--- php5-5.3.3.1.orig/ext/phar/tar.c	2016-02-24 14:56:55.000000000 +0100
+++ php5-5.3.3.1/ext/phar/tar.c	2016-02-24 15:23:49.000000000 +0100
@@ -867,6 +867,9 @@
 
 	if (entry->filename_len >= sizeof(".phar/.metadata") && !memcmp(entry->filename, ".phar/.metadata", sizeof(".phar/.metadata")-1)) {
 		if (entry->filename_len == sizeof(".phar/.metadata.bin")-1 && !memcmp(entry->filename, ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1)) {
+                        if (entry->phar->metadata == NULL) {
+                                return ZEND_HASH_APPLY_REMOVE;
+                        }
 			return phar_tar_setmetadata(entry->phar->metadata, entry, error TSRMLS_CC);
 		}
 		/* search for the file this metadata entry references */