tony2001 Wed Apr 4 19:52:26 2007 UTC
Modified files: (Branch: PHP_4_4)
/php-src NEWS
/php-src/ext/session session.c
Log:
MFH: fix #40998 (long session array keys are truncated)
http://cvs.php.net/viewvc.cgi/php-src/NEWS?r1=1.1247.2.920.2.218&r2=1.1247.2.920.2.219&diff_format=u
Index: php-src/NEWS
diff -u php-src/NEWS:1.1247.2.920.2.218 php-src/NEWS:1.1247.2.920.2.219
--- php-src/NEWS:1.1247.2.920.2.218 Tue Mar 27 00:14:16 2007
+++ php-src/NEWS Wed Apr 4 19:52:25 2007
@@ -13,6 +13,7 @@
- Fixed CVE-2007-1001, GD wbmp used with invalid image size (Pierre)
- Fixed CVE-2007-0455, Buffer overflow in gdImageStringFTEx (used by imagettf
function) (Kees Cook, Pierre)
+- Fixed bug #40998 (long session array keys are truncated). (Tony)
- Fixed bug #40915 (addcslashes unexpected behavior with binary input). (Tony)
- Fixed bug #40831 (cURL extension doesn't clean up the buffer of reused
handle). (Tony)
http://cvs.php.net/viewvc.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.16&r2=1.336.2.53.2.17&diff_format=u
Index: php-src/ext/session/session.c
diff -u php-src/ext/session/session.c:1.336.2.53.2.16
php-src/ext/session/session.c:1.336.2.53.2.17
--- php-src/ext/session/session.c:1.336.2.53.2.16 Sun Mar 25 14:33:53 2007
+++ php-src/ext/session/session.c Wed Apr 4 19:52:26 2007
@@ -17,7 +17,7 @@
+----------------------------------------------------------------------+
*/
-/* $Id: session.c,v 1.336.2.53.2.16 2007/03/25 14:33:53 iliaa Exp $ */
+/* $Id: session.c,v 1.336.2.53.2.17 2007/04/04 19:52:26 tony2001 Exp $ */
#ifdef HAVE_CONFIG_H
#include "config.h"
@@ -480,7 +480,7 @@
PHP_VAR_SERIALIZE_INIT(var_hash);
PS_ENCODE_LOOP(
- smart_str_appendl(&buf, key, (unsigned char)
key_length);
+ smart_str_appendl(&buf, key, key_length);
if (memchr(key, PS_DELIMITER, key_length)) {
PHP_VAR_SERIALIZE_DESTROY(var_hash);
smart_str_free(&buf);
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
