dio dio.c

Ilia Alshanetsky Mon, 30 Aug 2004 15:57:20 -0700

iliaa           Mon Aug 30 18:21:10 2004 EDT

  Modified files:              
    /php-src/ext/dio    dio.c 
  Log:
  Added missing input validation to dio_write().
  
  
http://cvs.php.net/diff.php/php-src/ext/dio/dio.c?r1=1.35&r2=1.36&ty=u
Index: php-src/ext/dio/dio.c
diff -u php-src/ext/dio/dio.c:1.35 php-src/ext/dio/dio.c:1.36
--- php-src/ext/dio/dio.c:1.35  Mon Aug 23 13:27:33 2004
+++ php-src/ext/dio/dio.c       Mon Aug 30 18:21:09 2004
@@ -249,6 +249,11 @@
                return;
        }
 
+       if (trunc_len <= 0 || trunc_len > data_len) {
+               php_error_docref(NULL TSRMLS_CC, E_WARNING, "length must be greater 
then zero and less then the length of specified string.");
+               RETURN_FALSE;
+       }
+
        ZEND_FETCH_RESOURCE(f, php_fd_t *, &r_fd, -1, le_fd_name, le_fd);
 
        res = write(f->fd, data, trunc_len ? trunc_len : data_len);


-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] cvs: php-src /ext/dio dio.c

Reply via email to