iliaa Sun Oct 16 22:43:20 2005 EDT
Modified files: (Branch: PHP_5_1)
/php-src/ext/curl interface.c
Log:
MFH: Further URL validations in safe_mode/open_basedir configs.
http://cvs.php.net/diff.php/php-src/ext/curl/interface.c?r1=1.62.2.2&r2=1.62.2.3&ty=u
Index: php-src/ext/curl/interface.c
diff -u php-src/ext/curl/interface.c:1.62.2.2
php-src/ext/curl/interface.c:1.62.2.3
--- php-src/ext/curl/interface.c:1.62.2.2 Thu Oct 6 16:47:41 2005
+++ php-src/ext/curl/interface.c Sun Oct 16 22:43:20 2005
@@ -16,7 +16,7 @@
+----------------------------------------------------------------------+
*/
-/* $Id: interface.c,v 1.62.2.2 2005/10/06 20:47:41 iliaa Exp $ */
+/* $Id: interface.c,v 1.62.2.3 2005/10/17 02:43:20 iliaa Exp $ */
#define ZEND_INCLUDE_FULL_WINDOWS_HEADERS
@@ -75,7 +75,7 @@
RETURN_FALSE;
\
}
\
\
- if (php_check_open_basedir(tmp_url->path TSRMLS_CC) ||
\
+ if (tmp_url->query || php_check_open_basedir(tmp_url->path
TSRMLS_CC) ||
\
(PG(safe_mode) && !php_checkuid(tmp_url->path, "rb+",
CHECKUID_CHECK_MODE_PARAM)) \
) {
\
php_url_free(tmp_url);
\
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
