[PHP-CVS] cvs: php-src /ext/curl interface.c

Sun, 16 Oct 2005 19:42:40 -0700 

iliaa           Sun Oct 16 22:42:20 2005 EDT

  Modified files:              
    /php-src/ext/curl   interface.c 
  Log:
  Further URL validations in safe_mode/open_basedir configs.
  
  
http://cvs.php.net/diff.php/php-src/ext/curl/interface.c?r1=1.65&r2=1.66&ty=u
Index: php-src/ext/curl/interface.c
diff -u php-src/ext/curl/interface.c:1.65 php-src/ext/curl/interface.c:1.66
--- php-src/ext/curl/interface.c:1.65   Thu Oct  6 16:37:25 2005
+++ php-src/ext/curl/interface.c        Sun Oct 16 22:42:17 2005
@@ -16,7 +16,7 @@
    +----------------------------------------------------------------------+
 */
 
-/* $Id: interface.c,v 1.65 2005/10/06 20:37:25 iliaa Exp $ */
+/* $Id: interface.c,v 1.66 2005/10/17 02:42:17 iliaa Exp $ */
 
 #define ZEND_INCLUDE_FULL_WINDOWS_HEADERS
 
@@ -75,7 +75,7 @@
                        RETURN_FALSE;                                           
                                                                                
                \
                }                                                               
                                                                                
                                \
                                                                                
                                                                                
                                \
-               if (php_check_open_basedir(tmp_url->path TSRMLS_CC) ||          
                                                        \
+               if (tmp_url->query || php_check_open_basedir(tmp_url->path 
TSRMLS_CC) ||                                                                   
     \
                        (PG(safe_mode) && !php_checkuid(tmp_url->path, "rb+", 
CHECKUID_CHECK_MODE_PARAM))       \
                ) {                                                             
                                                                                
                        \
                        php_url_free(tmp_url);                                  
                                                                                
        \

-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to