[PHP-CVS] cvs: php-src(PHP_5_3) /tests/security magic_quotes_gpc.phpt

sesser Thu Dec 11 13:05:52 2008 UTC Added files: (Branch: PHP_5_3) /php-src/tests/security magic_quotes_gpc.phpt Log: Added test for magic_quotes_gpc http://cvs.php.net/viewvc.cgi/php-src/tests/security/magic_quotes_gpc.phpt?view=markuprev=1.1

[PHP-CVS] cvs: php-src(PHP_5_2) /tests/security magic_quotes_gpc.phpt

sesser Thu Dec 11 13:06:29 2008 UTC Added files: (Branch: PHP_5_2) /php-src/tests/security magic_quotes_gpc.phpt Log: Added test for magic_quotes_gpc http://cvs.php.net/viewvc.cgi/php-src/tests/security/magic_quotes_gpc.phpt?view=markuprev=1.1

[PHP-CVS] cvs: php-src /ext/session session.c

sesser Sat Jun 16 07:47:46 2007 UTC Modified files: /php-src/ext/sessionsession.c Log: Fix attribute injection security bug correctly by URL encoding session name and session value. (in future maybe encode path/domain, too) Remove backward

[PHP-CVS] cvs: php-src(PHP_5_2) /ext/session session.c

sesser Sat Jun 16 07:48:07 2007 UTC Modified files: (Branch: PHP_5_2) /php-src/ext/sessionsession.c Log: MFH http://cvs.php.net/viewvc.cgi/php-src/ext/session/session.c?r1=1.417.2.8.2.36r2=1.417.2.8.2.37diff_format=u Index:

[PHP-CVS] cvs: php-src(PHP_4_4) /ext/session session.c

sesser Sat Jun 16 07:48:23 2007 UTC Modified files: (Branch: PHP_4_4) /php-src/ext/sessionsession.c Log: MFH http://cvs.php.net/viewvc.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.19r2=1.336.2.53.2.20diff_format=u Index:

Re: [PHP-CVS] cvs: php-src /ext/session session.c

cookies they contain nearly all of these chars. Stefan Esser Stefan Esser wrote: sesserSat Jun 16 07:47:46 2007 UTC Modified files: /php-src/ext/sessionsession.c Log: Fix attribute injection security bug correctly by URL encoding session name and session

Re: [PHP-CVS] cvs: php-src(PHP_5_2) / NEWS /ext/filter filter.c /ext/filter/tests bug39763.phpt

to do. c) Support Cookies correctly... Stefan Esser -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] cvs: php-src(PHP_4_4) /ext/standard var_unserializer.re

sesser Fri Oct 27 08:33:55 2006 UTC Modified files: (Branch: PHP_4_4) /php-src/ext/standard var_unserializer.re Log: Do not allow more than 65500 references

[PHP-CVS] cvs: php-src(PHP_4_4) /ext/standard var_unserializer.c

sesser Fri Oct 27 08:35:25 2006 UTC Modified files: (Branch: PHP_4_4) /php-src/ext/standard var_unserializer.c Log: Manual commit without invoking re2c

[PHP-CVS] cvs: php-src(PHP_5_2) /main rfc1867.c

sesser Fri Sep 29 10:05:34 2006 UTC Modified files: (Branch: PHP_5_2) /php-src/main rfc1867.c Log: If one name is disallowed don't drop all files http://cvs.php.net/viewvc.cgi/php-src/main/rfc1867.c?r1=1.173.2.1.2.4r2=1.173.2.1.2.5diff_format=u Index:

[PHP-CVS] cvs: php-src(PHP_5_2) /main rfc1867.c

sesser Tue Sep 19 11:34:19 2006 UTC Modified files: (Branch: PHP_5_2) /php-src/main rfc1867.c Log: Delete empty temporary files if file upload hook forbids the upload

Re: [PHP-CVS] cvs: php-src(PHP_5_2) /ext/standard string.c

Your imagination is just fabulous. so please think twice before optimizing means be careful and do not try to optimize this code, even though it looks like it can be optimized by moving the emalloc() call to the beginning of the function. Please try to understand what I've really said before

Re: [PHP-CVS] cvs: php-src(PHP_5_2) /ext/standard string.c

It actually doesn't matter what you meant. I'll take this as sorry, but you really need to learn to say it yourself. Antony, you are unbelievable. Do you think you are funny? Do you think it is funny to have overflows all over the code because people like you are commiting this crap code

Re: [PHP-CVS] cvs: php-src(PHP_5_2) /ext/standard string.c

First of all, change your attitude NOW. I'm not your son and you're not my father to tell me what to do and how. And next time when your groundless attack fails, be so smart to apologize. Groundless attack? Ohh... Okay that obviously means, you cannot see the overflow. Okay I will fix it

[PHP-CVS] Re: [PHP-DEV] Re: [PHP-CVS] cvs: php-src(PHP_5_2) / NEWS /main rfc1867.c rfc1867.h

Antony, grow up. Stefan -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

Re: [PHP-CVS] cvs: php-src(PHP_5_2) / NEWS /main rfc1867.c rfc1867.h

Andrei Zmievski schrieb: How about patch for HEAD? HEAD is lightyears away from beeing stable. Until PHP 5.2.0 is released the fileupload hook will be tested by myself (because of the extensions I write) and when I am 100% sure that it is stable I will commit it against HEAD. I don't want to

Re: [PHP-CVS] cvs: php-src(PHP_5_2) / NEWS /main rfc1867.c rfc1867.h

Hello, well the policy is you commit to HEAD first so that HEAD and base do not get out of synch. For PDO we already have the situation and it will mos Yeah we all know how well commiting to HEAD and then merging the same untested code to the branches work. We have seen this commit policy in

Re: [PHP-CVS] Re: cvs: php-src(PHP_5_2) /ext/bz2 bz2_filter.c

Hi, I don't know what you're running but here size_t is unsigned int. It's probably unsigned long on 64bit boxen, so what's this fix about? The question is: what are you running? size_t usually is unsigned long. Stefan -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit:

[PHP-CVS] cvs: php-src / acinclude.m4

sesser Fri Jun 16 08:00:24 2006 UTC Modified files: /php-srcacinclude.m4 Log: Fixed that configure bails out on wrong flex version. Now a wrong flex version will issue a warning and when flex is needed during the make process the make process will die

[PHP-CVS] cvs: php-src(PHP_5_2) / acinclude.m4

sesser Fri Jun 16 08:01:03 2006 UTC Modified files: (Branch: PHP_5_2) /php-srcacinclude.m4 Log: MFH: Only care about wrong flex version, when needed. http://cvs.php.net/viewcvs.cgi/php-src/acinclude.m4?r1=1.332.2.14.2.1r2=1.332.2.14.2.2diff_format=u

[PHP-CVS] cvs: php-src / README.UPDATING_TO_PHP6

sesser Wed Mar 22 08:21:01 2006 UTC Modified files: /php-srcREADME.UPDATING_TO_PHP6 Log: Fix the bullshit register_globals emulation 1) S is not _SESSION but _SERVER 2) EXTR_OVERWRITE is evil

Re: [PHP-CVS] cvs: php-src / README.UPDATING_TO_PHP6

even work, because the author obviously had no clue. S is not _SESSION, but _SERVER. And infact the emulation did not handle _GET variables at all. Stefan Esser -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] cvs: php-src /ext/mysqli mysqli_api.c mysqli_nonapi.c mysqli_report.c

sesser Fri Dec 23 18:43:03 2005 EDT Modified files: /php-src/ext/mysqli mysqli_api.c mysqli_nonapi.c mysqli_report.c Log: MFB: format string fixes http://cvs.php.net/viewcvs.cgi/php-src/ext/mysqli/mysqli_api.c?r1=1.123r2=1.124diff_format=u Index:

Re: [PHP-CVS] cvs: php-src / NEWS /main php_variables.c

case PARSE_COOKIE: - separator = ;\0; + /* The , and space are needed for instances when there are multiple Cookie: headers */ + separator = ;, \0; break; } This patch breaks

Re: [PHP-CVS] cvs: php-src / NEWS /main php_variables.c

no encoding it is specified, it is not a must. Stefan Esser -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard ftp_fopen_wrapper.c

sesser Mon Jun 27 04:16:44 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard ftp_fopen_wrapper.c Log: MFH: also check password http://cvs.php.net/diff.php/php-src/ext/standard/ftp_fopen_wrapper.c?r1=1.74.2.6r2=1.74.2.7ty=u Index:

[PHP-CVS] cvs: php-src(PHP_4_4) /ext/standard ftp_fopen_wrapper.c

sesser Mon Jun 27 04:27:24 2005 EDT Modified files: (Branch: PHP_4_4) /php-src/ext/standard ftp_fopen_wrapper.c Log: MFH: Also check FTP password http://cvs.php.net/diff.php/php-src/ext/standard/ftp_fopen_wrapper.c?r1=1.38.2.8r2=1.38.2.8.2.1ty=u

Re: [PHP-CVS] cvs: php-src /ext/bz2 bz2.c

-- -- Stefan Esser [EMAIL PROTECTED] Hardened-PHP Project http://www.hardened-php.net/ GPG-Keygpg --keyserver pgp.mit.edu --recv-key 0x15ABDA78

Re: [PHP-CVS] cvs: php-src /ext/standard basic_functions.c math.c php_math.h /ext/standard/tests/math math_std_dev.phpt

() tests --FILE-- ?php $a=array(4, 1, 7); $dev=math_std_dev($a); var_dump(sprintf(%2.9f, $dev)); ? --EXPECT-- string(11) 2.449489743 -- -- Stefan Esser [EMAIL PROTECTED] Hardened-PHP

Re: [PHP-CVS] cvs: php-src /main php_variables.c

Jani Taskinen wrote: sniper Sat Apr 23 16:33:35 2005 EDT Modified files: /php-src/main php_variables.c Log: - Fixed bug #32111 (Cookies can also be separated by colon) Could you please revert that patch, or implement the RFC correctly? Now PHP handles cookies in a

[PHP-CVS] cvs: php-src /ext/exif exif.c

sesser Wed Mar 2 13:21:46 2005 EDT Modified files: /php-src/ext/exif exif.c Log: Fixed possible bufferoverflow http://cvs.php.net/diff.php/php-src/ext/exif/exif.c?r1=1.169r2=1.170ty=u Index: php-src/ext/exif/exif.c diff -u

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/exif exif.c

sesser Wed Mar 2 13:22:41 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/exif exif.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/exif/exif.c?r1=1.162.2.6r2=1.162.2.7ty=u Index: php-src/ext/exif/exif.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/exif exif.c

sesser Wed Mar 2 13:23:49 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/exif exif.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/exif/exif.c?r1=1.118.2.33r2=1.118.2.34ty=u Index: php-src/ext/exif/exif.c diff -u

[PHP-CVS] cvs: php-src /ext/standard image.c

sesser Tue Mar 1 08:53:03 2005 EDT Modified files: /php-src/ext/standard image.c Log: Handle last or broken JP2 boxes correctly. http://cvs.php.net/diff.php/php-src/ext/standard/image.c?r1=1.109r2=1.110ty=u Index: php-src/ext/standard/image.c diff

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard image.c

sesser Tue Mar 1 08:53:19 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard image.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/image.c?r1=1.98.2.6r2=1.98.2.7ty=u Index: php-src/ext/standard/image.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard image.c

sesser Tue Mar 1 08:53:35 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard image.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/image.c?r1=1.72.2.16r2=1.72.2.17ty=u Index: php-src/ext/standard/image.c diff -u

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.re

sesser Mon Feb 28 11:22:39 2005 EDT Modified files: /php-src/ext/standard var_unserializer.re Log: Drop invalid arrays http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.re?r1=1.45r2=1.46ty=u Index:

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.re

sesser Mon Feb 28 11:32:50 2005 EDT Modified files: /php-src/ext/standard var_unserializer.re Log: This way around for correct error messages http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.re?r1=1.46r2=1.47ty=u Index:

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard var_unserializer.re

sesser Mon Feb 28 11:33:09 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard var_unserializer.re Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.re?r1=1.27.2.10r2=1.27.2.11ty=u Index:

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard var_unserializer.re

sesser Mon Feb 28 11:33:23 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard var_unserializer.re Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.re?r1=1.11.4.14r2=1.11.4.15ty=u Index:

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.c var_unserializer.re

sesser Wed Feb 23 13:26:40 2005 EDT Modified files: /php-src/ext/standard var_unserializer.c var_unserializer.re Log: Correcting bounds check before someone uses this code

[PHP-CVS] cvs: php-src /ext/session session.c

sesser Fri Jan 21 11:03:48 2005 EDT Modified files: /php-src/ext/sessionsession.c Log: Correctly initialize ZVAL http://cvs.php.net/diff.php/php-src/ext/session/session.c?r1=1.405r2=1.406ty=u Index: php-src/ext/session/session.c diff -u

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/session session.c

sesser Fri Jan 21 11:04:25 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/sessionsession.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/session/session.c?r1=1.391.2.7r2=1.391.2.8ty=u Index: php-src/ext/session/session.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/session session.c

sesser Fri Jan 21 11:04:54 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/sessionsession.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/session/session.c?r1=1.336.2.48r2=1.336.2.49ty=u Index: php-src/ext/session/session.c diff -u

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.c var_unserializer.re

sesser Mon Jan 17 06:45:09 2005 EDT Modified files: /php-src/ext/standard var_unserializer.c var_unserializer.re Log: Fix compiler warning. http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.48r2=1.49ty=u Index:

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard var_unserializer.c var_unserializer.re

sesser Mon Jan 17 06:46:12 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: Fix compiler warning.

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard var_unserializer.c var_unserializer.re

sesser Mon Jan 17 07:28:11 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: MFH: 64bit fixes http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.18.4.16r2=1.18.4.17ty=u

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard var_unserializer.c var_unserializer.re

sesser Mon Jan 17 07:13:35 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: MFH: 64bit fix + compiler warning fix

[PHP-CVS] cvs: php-src /ext/standard php_var.h var_unserializer.c var_unserializer.re

sesser Sat Jan 15 13:18:09 2005 EDT Modified files: /php-src/ext/standard php_var.h var_unserializer.c var_unserializer.re Log: Restore unserialize() speed

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard php_var.h var_unserializer.c var_unserializer.re

sesser Sat Jan 15 13:44:30 2005 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard php_var.h var_unserializer.c var_unserializer.re Log: MFH

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard php_var.h var_unserializer.c var_unserializer.re

sesser Sat Jan 15 13:49:26 2005 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard php_var.h var_unserializer.c var_unserializer.re Log: MFH

Re: [PHP-CVS] cvs: php-src /ext/standard var_unserializer.c var_unserializer.re

Marcus Boerger wrote: Hello Stefan, reading the patch twice and checking the code again. Why not simply replace the index type 'iv' with 'uiv' ? R: iv ; - R: uiv ; r: iv ; - r: uiv ; Because that would not fix anything. Both functions do not check for integer overflows when generating the

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.c var_unserializer.re

sesser Fri Dec 3 11:02:48 2004 EDT Modified files: /php-src/ext/standard var_unserializer.c var_unserializer.re Log: Handle already existing elements correctly http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.45r2=1.46ty=u

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard var_unserializer.c var_unserializer.re

sesser Fri Dec 3 11:04:10 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.38.2.2r2=1.38.2.3ty=u Index:

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard var_unserializer.c var_unserializer.re

sesser Fri Dec 3 11:09:20 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: fix compile http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.18.4.13r2=1.18.4.14ty=u Index:

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard var_unserializer.c var_unserializer.re

sesser Fri Dec 3 11:10:29 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: fix compile http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.38.2.3r2=1.38.2.4ty=u Index:

[PHP-CVS] cvs: php-src /main safe_mode.c

sesser Wed Dec 1 17:37:33 2004 EDT Modified files: /php-src/main safe_mode.c Log: Do not silently truncate http://cvs.php.net/diff.php/php-src/main/safe_mode.c?r1=1.60r2=1.61ty=u Index: php-src/main/safe_mode.c diff -u

[PHP-CVS] cvs: php-src(PHP_5_0) /main safe_mode.c

sesser Wed Dec 1 17:37:47 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/main safe_mode.c Log: MFH http://cvs.php.net/diff.php/php-src/main/safe_mode.c?r1=1.58r2=1.58.2.1ty=u Index: php-src/main/safe_mode.c diff -u php-src/main/safe_mode.c:1.58

[PHP-CVS] cvs: php-src(PHP_4_3) /main safe_mode.c

sesser Wed Dec 1 17:37:59 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main safe_mode.c Log: MFH http://cvs.php.net/diff.php/php-src/main/safe_mode.c?r1=1.51.2.4r2=1.51.2.5ty=u Index: php-src/main/safe_mode.c diff -u

[PHP-CVS] cvs: php-src /ext/standard var_unserializer.c var_unserializer.re

sesser Wed Dec 1 17:42:00 2004 EDT Modified files: /php-src/ext/standard var_unserializer.c var_unserializer.re Log: Beware of negative indices http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.44r2=1.45ty=u Index:

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard var_unserializer.c var_unserializer.re

sesser Wed Dec 1 17:42:26 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard var_unserializer.c var_unserializer.re Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/var_unserializer.c?r1=1.18.4.11r2=1.18.4.12ty=u Index:

[PHP-CVS] cvs: php-src /ext/standard pack.c /main php.h

sesser Sun Nov 28 07:44:28 2004 EDT Modified files: /php-src/ext/standard pack.c /php-src/main php.h Log: Fixed: removed possible integer over-/underflows http://cvs.php.net/diff.php/php-src/ext/standard/pack.c?r1=1.53r2=1.54ty=u Index:

[PHP-CVS] cvs: php-src(PHP_5_0) /ext/standard pack.c /main php.h

sesser Sun Nov 28 07:44:42 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/ext/standard pack.c /php-src/main php.h Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/pack.c?r1=1.52r2=1.52.2.1ty=u Index: php-src/ext/standard/pack.c

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard pack.c /main php.h

sesser Sun Nov 28 07:44:56 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard pack.c /php-src/main php.h Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/pack.c?r1=1.40.2.5r2=1.40.2.6ty=u Index:

[PHP-CVS] cvs: php-src /main SAPI.c

sesser Sun Nov 28 08:32:29 2004 EDT Modified files: /php-src/main SAPI.c Log: Fixed: Correctly Initialize fields http://cvs.php.net/diff.php/php-src/main/SAPI.c?r1=1.191r2=1.192ty=u Index: php-src/main/SAPI.c diff -u php-src/main/SAPI.c:1.191

[PHP-CVS] cvs: php-src(PHP_5_0) /main SAPI.c

sesser Sun Nov 28 08:34:01 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/main SAPI.c Log: MFH http://cvs.php.net/diff.php/php-src/main/SAPI.c?r1=1.187.2.1r2=1.187.2.2ty=u Index: php-src/main/SAPI.c diff -u php-src/main/SAPI.c:1.187.2.1

[PHP-CVS] cvs: php-src /main rfc1867.c

sesser Sat Nov 20 13:49:37 2004 EDT Modified files: /php-src/main rfc1867.c Log: Fixed: strip quotes from filename http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.164r2=1.165ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_5_0) /main rfc1867.c

sesser Sat Nov 20 15:16:28 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.159.2.5r2=1.159.2.6ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Sat Nov 20 15:16:44 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.27r2=1.122.2.28ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src /main rfc1867.c

sesser Mon Sep 13 12:00:23 2004 EDT Modified files: /php-src/main rfc1867.c Log: only allow valid arrays at this point http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.162r2=1.163ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_5_0) /main rfc1867.c

sesser Mon Sep 13 12:00:37 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.159.2.3r2=1.159.2.4ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Mon Sep 13 12:00:50 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.25r2=1.122.2.26ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src /main rfc1867.c

sesser Sun Sep 12 06:45:15 2004 EDT Modified files: /php-src/main rfc1867.c Log: New Rule: Never try to repair potential malicious user input http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.161r2=1.162ty=u Index: php-src/main/rfc1867.c diff

[PHP-CVS] cvs: php-src(PHP_5_0) /main rfc1867.c

sesser Sun Sep 12 06:46:27 2004 EDT Modified files: (Branch: PHP_5_0) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.159.2.2r2=1.159.2.3ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Sun Sep 12 06:46:49 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.24r2=1.122.2.25ty=u Index: php-src/main/rfc1867.c diff -u

Re: [PHP-CVS] cvs: php-src(PHP_4_3) /ext/gd gd.dsp

Hi, from config.m4 you also need to drop: AC_DEFINE(HAVE_GD_GIF_CREATE, 1, []) why should he drop that line? Otherwise the build system does not know that bundled GD has GIF create support. Stefan -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] cvs: php-src /ext/gd gd.dsp

sesser Thu Jul 22 18:42:35 2004 EDT Modified files: /php-src/ext/gd gd.dsp Log: Fix .dsp http://cvs.php.net/diff.php/php-src/ext/gd/gd.dsp?r1=1.17r2=1.18ty=u Index: php-src/ext/gd/gd.dsp diff -u php-src/ext/gd/gd.dsp:1.17 php-src/ext/gd/gd.dsp:1.18

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/mssql php_mssql.c /ext/session session.c /ext/sybase php_sybase_db.c /ext/sybase_ct php_sybase_ct.c /ext/w32api w32api.c /main main.c rfc1867.c /sapi/apache mod_php4.c

sesser Wed Jul 21 12:25:28 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/mssql php_mssql.c /php-src/ext/sessionsession.c /php-src/ext/sybase php_sybase_db.c /php-src/ext/sybase_ct php_sybase_ct.c /php-src/ext/w32api w32api.c

[PHP-CVS] cvs: php-src /sapi/apache mod_php5.c

sesser Wed Jul 14 05:43:26 2004 EDT Modified files: /php-src/sapi/apachemod_php5.c Log: Security Fix broken! Destroyed Basic auth. Blame: me 4.3.x not affected http://cvs.php.net/diff.php/php-src/sapi/apache/mod_php5.c?r1=1.9r2=1.10ty=u Index:

[PHP-CVS] cvs: php-src /sapi/apache_hooks mod_php5.c

sesser Wed Jul 14 05:55:25 2004 EDT Modified files: /php-src/sapi/apache_hooks mod_php5.c Log: same bug. http://cvs.php.net/diff.php/php-src/sapi/apache_hooks/mod_php5.c?r1=1.3r2=1.4ty=u Index: php-src/sapi/apache_hooks/mod_php5.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3_7) /ext/standard/tests/strings strip_tags.phpt

sesser Wed Jul 14 07:24:12 2004 EDT Modified files: (Branch: PHP_4_3_7) /php-src/ext/standard/tests/strings strip_tags.phpt Log: Add CAN-2004-0595 regression test. (modified from Joe Ortons version)

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard/tests/strings strip_tags.phpt

sesser Wed Jul 14 07:32:47 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard/tests/strings strip_tags.phpt Log: Ups... CAN-2004-0595 regression test went into wrong branch...

[PHP-CVS] cvs: php-src /main php_variables.c

sesser Sun Jul 11 16:13:39 2004 EDT Modified files: /php-src/main php_variables.c Log: Fixed: PARSE_TYPE parameter to input_filter Fixed: input_filter should also be able to filter empty variables by name

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard string.c

sesser Sat Jun 26 03:44:13 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard string.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/string.c?r1=1.333.2.41r2=1.333.2.42ty=u Index: php-src/ext/standard/string.c diff -u

[PHP-CVS] cvs: php-src / NEWS

sesser Sat Jun 26 03:46:08 2004 EDT Modified files: /php-srcNEWS Log: strip_tags() news http://cvs.php.net/diff.php/php-src/NEWS?r1=1.1745r2=1.1746ty=u Index: php-src/NEWS diff -u php-src/NEWS:1.1745 php-src/NEWS:1.1746 --- php-src/NEWS:1.1745 Sat

[PHP-CVS] cvs: php-src(PHP_4_3) / NEWS

sesser Sat Jun 26 03:47:30 2004 EDT Modified files: (Branch: PHP_4_3) /php-srcNEWS Log: MFH http://cvs.php.net/diff.php/php-src/NEWS?r1=1.1247.2.688r2=1.1247.2.689ty=u Index: php-src/NEWS diff -u php-src/NEWS:1.1247.2.688 php-src/NEWS:1.1247.2.689 ---

[PHP-CVS] cvs: php-src /ext/mbstring mb_gpc.c

sesser Sat Jun 26 03:57:37 2004 EDT Modified files: /php-src/ext/mbstring mb_gpc.c Log: Fixed input_filter functions need emalloc()ed values. http://cvs.php.net/diff.php/php-src/ext/mbstring/mb_gpc.c?r1=1.10r2=1.11ty=u Index:

[PHP-CVS] cvs: php-src /main php_variables.c

sesser Sat Jun 26 04:09:29 2004 EDT Modified files: /php-src/main php_variables.c Log: As long we pass values by reference this is needed. Ugly! http://cvs.php.net/diff.php/php-src/main/php_variables.c?r1=1.77r2=1.78ty=u Index:

[PHP-CVS] cvs: php-src / README.input_filter

sesser Thu Jun 24 04:49:00 2004 EDT Modified files: /php-srcREADME.input_filter Log: Fixed zend_parse_parameters arguments... http://cvs.php.net/diff.php/php-src/README.input_filter?r1=1.6r2=1.7ty=u Index: php-src/README.input_filter diff -u

[PHP-CVS] cvs: php-src /ext/standard url.c

sesser Fri May 28 07:33:24 2004 EDT Modified files: /php-src/ext/standard url.c Log: Fixed off-by-one in php_parse_url. http://cvs.php.net/diff.php/php-src/ext/standard/url.c?r1=1.79r2=1.80ty=u Index: php-src/ext/standard/url.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /ext/standard url.c

sesser Fri May 28 07:33:43 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/ext/standard url.c Log: MFH http://cvs.php.net/diff.php/php-src/ext/standard/url.c?r1=1.58.2.14r2=1.58.2.15ty=u Index: php-src/ext/standard/url.c diff -u

[PHP-CVS] cvs: php-src /main SAPI.c

sesser Tue May 25 18:12:40 2004 EDT Modified files: /php-src/main SAPI.c Log: break is better http://cvs.php.net/diff.php/php-src/main/SAPI.c?r1=1.184r2=1.185ty=u Index: php-src/main/SAPI.c diff -u php-src/main/SAPI.c:1.184

[PHP-CVS] cvs: php-src(PHP_4_3) /main SAPI.c

sesser Tue May 25 18:13:11 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main SAPI.c Log: MFH http://cvs.php.net/diff.php/php-src/main/SAPI.c?r1=1.155.2.18r2=1.155.2.19ty=u Index: php-src/main/SAPI.c diff -u php-src/main/SAPI.c:1.155.2.18

[PHP-CVS] cvs: php-src /main rfc1867.c

sesser Sun May 23 06:00:59 2004 EDT Modified files: /php-src/main rfc1867.c Log: This is more correct. http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.157r2=1.158ty=u Index: php-src/main/rfc1867.c diff -u php-src/main/rfc1867.c:1.157

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Sun May 23 06:15:24 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH. http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.20r2=1.122.2.21ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Sun May 2 06:17:36 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.17r2=1.122.2.18ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src /ext/soap php_http.c

sesser Thu Apr 8 10:58:04 2004 EDT Modified files: /php-src/ext/soap php_http.c Log: Fixed: possible remote overflow and possible efree(NULL) crash http://cvs.php.net/diff.php/php-src/ext/soap/php_http.c?r1=1.49r2=1.50ty=u Index:

[PHP-CVS] cvs: php-src /main rfc1867.c

sesser Thu Feb 12 13:27:34 2004 EDT Modified files: /php-src/main rfc1867.c Log: better write into the correct buffer http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.150r2=1.151ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src(PHP_4_3) /main rfc1867.c

sesser Thu Feb 12 13:36:58 2004 EDT Modified files: (Branch: PHP_4_3) /php-src/main rfc1867.c Log: MFH http://cvs.php.net/diff.php/php-src/main/rfc1867.c?r1=1.122.2.16r2=1.122.2.17ty=u Index: php-src/main/rfc1867.c diff -u

[PHP-CVS] cvs: php-src /main SAPI.c

sesser Sat Nov 22 16:10:48 2003 EDT Modified files: /php-src/main SAPI.c Log: On error do not leave content_type_dup unitialised. Index: php-src/main/SAPI.c diff -u php-src/main/SAPI.c:1.179 php-src/main/SAPI.c:1.180 --- php-src/main/SAPI.c:1.179

  1   2   >