archive/php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2025-08-15 13:38:49 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
php-src/sapi
History
Exact
Niels Dossche 0f21cbc57c Fix GH-10715: phpdbg heap buffer overflow -- by misuse of the option "--run" 
Fixes GH-10715

When a string starting with a NUL character is passed to
phpdbg_vprint(), the vasprintf() will return that 0 characters have been
printed. This causes msglen == 0. When phpdbg_process_print() is called
with a message of length 0, the -1 to check for '\n' will perform an out
of bounds read. Since nothing is printed anyway for msglen == 0, it
seems best to just skip the printing routine for this case.

Closes GH-10720.
2023-02-27 19:47:55 +00:00
..
apache2handler Fix GH-9949: Partial content on incomplete POST request 2022-12-13 15:21:42 +01:00
cgi Merge branch 'PHP-8.0' into PHP-8.1 2021-10-14 12:23:43 +02:00
cli Merge branch 'PHP-8.0' into PHP-8.1 2022-10-20 13:04:14 +02:00
embed Fixed some spaces used instead of tabs 2021-06-29 11:30:26 +02:00
fpm Merge branch 'PHP-8.0' into PHP-8.1 2023-02-14 14:14:03 +01:00
fuzzer Fix strict-prototypes warning 2021-08-30 10:43:21 +02:00
litespeed Merge branch 'PHP-8.0' into PHP-8.1 2022-11-20 19:30:25 -05:00
phpdbg Fix GH-10715: phpdbg heap buffer overflow -- by misuse of the option "--run" 2023-02-27 19:47:55 +00:00