[Pkg-php-commits] r1060 - in php5/branches/etch/debian: . patches
Thijs Kinkhorst
thijs at alioth.debian.org
Fri May 9 07:24:12 UTC 2008
Author: thijs
Date: 2008-05-09 07:24:11 +0000 (Fri, 09 May 2008)
New Revision: 1060
Added:
php5/branches/etch/debian/patches/137-CVE-2007-3806.patch
Modified:
php5/branches/etch/debian/changelog
Log:
add simple patch for CVE-2007-3806: glob denial of service
Modified: php5/branches/etch/debian/changelog
===================================================================
--- php5/branches/etch/debian/changelog 2008-05-08 20:06:14 UTC (rev 1059)
+++ php5/branches/etch/debian/changelog 2008-05-09 07:24:11 UTC (rev 1060)
@@ -3,6 +3,7 @@
* NOT RELEASED YET
* NMU prepared for the security team by the package maintainer.
* The following security issues are addressed with this update:
+ - CVE-2007-3806: glob denial of service
- CVE-2008-1384: integer overflow in printf()
- CVE-2008-2050: possible stack buffer overflow in the FastCGI SAPI
- CVE-2008-2051: incomplete multibyte chars inside escapeshellcmd()
Added: php5/branches/etch/debian/patches/137-CVE-2007-3806.patch
===================================================================
--- php5/branches/etch/debian/patches/137-CVE-2007-3806.patch (rev 0)
+++ php5/branches/etch/debian/patches/137-CVE-2007-3806.patch 2008-05-09 07:24:11 UTC (rev 1060)
@@ -0,0 +1,11 @@
+diff -Nurad php5-5.2.3~/ext/standard/dir.c php5-5.2.3.new/ext/standard/dir.c
+--- php5-5.2.3~/ext/standard/dir.c 2007-09-28 23:37:59.000000000 +0200
++++ php5-5.2.3.new/ext/standard/dir.c 2007-09-28 23:59:48.000000000 +0200
+@@ -395,6 +395,7 @@
+ }
+ #endif
+
++ memset(&globbuf, 0, sizeof(glob_t));
+ globbuf.gl_offs = 0;
+ if (0 != (ret = glob(pattern, flags & GLOB_FLAGMASK, NULL, &globbuf))) {
+ #ifdef GLOB_NOMATCH
More information about the Pkg-php-commits
mailing list