[Pkg-php-commits] [php/debian-lenny] Fix an integer overflow on the curl_read callback (Closes: #529278)
Raphael Geissert
geissert at debian.org
Mon Feb 22 22:27:13 UTC 2010
---
debian/patches/curl_read-overflow.patch | 13 +++++++++++++
debian/patches/series | 1 +
2 files changed, 14 insertions(+), 0 deletions(-)
create mode 100644 debian/patches/curl_read-overflow.patch
diff --git a/debian/patches/curl_read-overflow.patch b/debian/patches/curl_read-overflow.patch
new file mode 100644
index 0000000..ac9dd28
--- /dev/null
+++ b/debian/patches/curl_read-overflow.patch
@@ -0,0 +1,13 @@
+Index: php/ext/curl/interface.c
+===================================================================
+--- php.orig/ext/curl/interface.c
++++ php/ext/curl/interface.c
+@@ -786,7 +786,7 @@ static size_t curl_read(char *data, size
+ {
+ php_curl *ch = (php_curl *) ctx;
+ php_curl_read *t = ch->handlers->read;
+- int length = -1;
++ int length = 0;
+
+ switch (t->method) {
+ case PHP_CURL_DIRECT:
diff --git a/debian/patches/series b/debian/patches/series
index 1f45667..1bf427d 100644
--- a/debian/patches/series
+++ b/debian/patches/series
@@ -60,3 +60,4 @@ CVE-2009-2626.patch
CVE-2009-3292.patch
CVE-2009-3291.patch
max_file_uploads.patch
+curl_read-overflow.patch
--
1.6.3.3
More information about the Pkg-php-commits
mailing list