Fix bug #77370 - check that we do not read past buffer end when parsing multibytes

2025-08-18 23:18:56 +02:00 · 2018-12-29 19:51:24 -08:00 · 2018-12-29 19:51:24 -08:00 · 20407d06ca
commit 20407d06ca
parent a918020c03
2 changed files with 22 additions and 0 deletions
--- a/ext/mbstring/tests/bug77370.phpt
+++ b/ext/mbstring/tests/bug77370.phpt
@ -0,0 +1,13 @@
+--TEST--
+Bug #77370 (Buffer overflow on mb regex functions - fetch_token)
+--SKIPIF--
+<?php extension_loaded('mbstring') or die('skip mbstring not available'); ?>
+--FILE--
+<?php
+var_dump(mb_split("   \xfd",""));
+?>
+--EXPECT--
+array(1) {
+  [0]=>
+  string(0) ""
+}