[PHP-CVS] cvs: php-src /ext/standard dl.c

Tue, 18 Sep 2007 13:21:15 -0700 

stas            Tue Sep 18 20:21:04 2007 UTC

  Modified files:              
    /php-src/ext/standard       dl.c 
  Log:
  limit dl() argument length (patch by Christian Hoffmann)
  
  
http://cvs.php.net/viewvc.cgi/php-src/ext/standard/dl.c?r1=1.116&r2=1.117&diff_format=u
Index: php-src/ext/standard/dl.c
diff -u php-src/ext/standard/dl.c:1.116 php-src/ext/standard/dl.c:1.117
--- php-src/ext/standard/dl.c:1.116     Thu Sep 13 07:41:59 2007
+++ php-src/ext/standard/dl.c   Tue Sep 18 20:21:04 2007
@@ -18,7 +18,7 @@
    +----------------------------------------------------------------------+
 */
 
-/* $Id: dl.c,v 1.116 2007/09/13 07:41:59 jani Exp $ */
+/* $Id: dl.c,v 1.117 2007/09/18 20:21:04 stas Exp $ */
 
 #include "php.h"
 #include "dl.h"
@@ -63,6 +63,11 @@
                return;
        }
 
+       if (Z_STRLEN_PP(file) >= MAXPATHLEN) {
+               php_error_docref(NULL TSRMLS_CC, E_WARNING, "File name exceeds 
the maximum allowed length of %d characters", MAXPATHLEN);
+               RETURN_FALSE;
+       }
+
        php_dl(filename, MODULE_TEMPORARY, return_value, 0 TSRMLS_CC);
        EG(full_tables_cleanup) = 1;
 }

-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to