PHP 5.4.45-7 with security fix from 5.5.34

author: Remi Collet <fedora@famillecollet.com> 2016-03-30 13:01:52 +0200
committer: Remi Collet <fedora@famillecollet.com> 2016-03-30 13:01:52 +0200
commit: e32b0987890b4f59525330009dca2b647e98e5f2 (patch)
tree: 61f12e6ae5993a2e20d72869063bcb51efd518ce /bug71798.patch
parent: cbdcbc63a65d469b9ac4124cef8e443e0bf6d9cf (diff)
1 files changed, 26 insertions, 0 deletions
diff --git a/bug71798.patch b/bug71798.patch
new file mode 100644
index 0000000..88c3a77
--- /dev/null
+++ b/bug71798.patch
@@ -0,0 +1,26 @@
+Backported from 5.5 for 5.4 by Remi Collet
+
+From 95433e8e339dbb6b5d5541473c1661db6ba2c451 Mon Sep 17 00:00:00 2001
+From: Stanislav Malyshev <stas@php.net>
+Date: Sun, 27 Mar 2016 14:22:19 -0700
+Subject: [PATCH] Fix bug #71798 - Integer Overflow in php_raw_url_encode
+
+---
+ ext/standard/url.c | 2 +-
+ main/php_version.h | 6 +++---
+ 2 files changed, 4 insertions(+), 4 deletions(-)
+
+diff --git a/ext/standard/url.c b/ext/standard/url.c
+index 2f56d31..27a216a 100644
+--- a/ext/standard/url.c
++++ b/ext/standard/url.c
+@@ -600,7 +600,7 @@ PHPAPI int php_url_decode(char *str, int len)
+  */
+ PHPAPI char *php_raw_url_encode(char const *s, int len, int *new_length)
+ {
+-	register int x, y;
++	register size_t x, y;
+ 	unsigned char *str;
+ 
+ 	str = (unsigned char *) safe_emalloc(3, len, 1);
+
author	Remi Collet <fedora@famillecollet.com>	2016-03-30 13:01:52 +0200
committer	Remi Collet <fedora@famillecollet.com>	2016-03-30 13:01:52 +0200
commit	e32b0987890b4f59525330009dca2b647e98e5f2 (patch)
tree	61f12e6ae5993a2e20d72869063bcb51efd518ce /bug71798.patch
parent	cbdcbc63a65d469b9ac4124cef8e443e0bf6d9cf (diff)