iliaa Mon Aug 30 18:21:13 2004 EDT
Modified files: (Branch: PHP_5_0)
/php-src/ext/dio dio.c
Log:
MFH: Added missing input validation to dio_write().
http://cvs.php.net/diff.php/php-src/ext/dio/dio.c?r1=1.34.2.1&r2=1.34.2.2&ty=u
Index: php-src/ext/dio/dio.c
diff -u php-src/ext/dio/dio.c:1.34.2.1 php-src/ext/dio/dio.c:1.34.2.2
--- php-src/ext/dio/dio.c:1.34.2.1 Mon Aug 23 13:27:46 2004
+++ php-src/ext/dio/dio.c Mon Aug 30 18:21:13 2004
@@ -249,6 +249,11 @@
return;
}
+ if (trunc_len <= 0 || trunc_len > data_len) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, "length must be greater
then zero and less then the length of specified string.");
+ RETURN_FALSE;
+ }
+
ZEND_FETCH_RESOURCE(f, php_fd_t *, &r_fd, -1, le_fd_name, le_fd);
res = write(f->fd, data, trunc_len ? trunc_len : data_len);
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
