File: php5-CVE-2011-3267.patch

package info (click to toggle)
php5 5.3.3.1-7%2Bsqueeze29
  • links: PTS, VCS
  • area: main
  • in suites: squeeze-lts
  • size: 123,520 kB
  • ctags: 55,742
  • sloc: ansic: 633,963; php: 19,620; sh: 11,344; xml: 5,816; cpp: 2,400; yacc: 1,745; exp: 1,514; makefile: 1,019; pascal: 623; awk: 537; sql: 22
file content (23 lines) | stat: -rw-r--r-- 639 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
 
Subject: Fixed crash in error_log() (strlen(NULL))
Origin: http://svn.php.net/viewvc?view=revision&revision=312417

r312417 | felipe | 2011-06-23 14:48:15 -0700 (Thu, 23 Jun 2011) | 1 line
- Fixed crash in error_log() (strlen(NULL)) reported by: shm, Maksymilian Arciemowicz

CVE-2011-3267

---
 ext/standard/basic_functions.c |    2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/ext/standard/basic_functions.c
+++ b/ext/standard/basic_functions.c
@@ -4671,7 +4671,7 @@ PHP_FUNCTION(error_log)
 		opt_err = erropt;
 	}
 
-	if (opt_err == 3) {
+	if (opt_err == 3 && opt) {
 		if (strlen(opt) != opt_len) {
 			RETURN_FALSE;
 		}