php/archived-php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2026-04-04 06:32:49 +02:00
Code Issues Packages Projects Releases Wiki Activity

Let's make this safer from maliciously crafted filename

Browse Source
This commit is contained in:
Xinchen Hui
2020-01-20 12:33:37 +08:00
parent dda2addab2
commit 2958cdc0b5
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ext/opcache/ZendAccelerator.c
View File

@@ -3216,7 +3216,7 @@ static size_t preload_try_strip_filename(zend_string *filename) {
if (ZSTR_LEN(filename) > sizeof(" eval()'d code")
&& *(ZSTR_VAL(filename) + ZSTR_LEN(filename) - sizeof(" eval()'d code")) == ':') {
const char *cfilename = ZSTR_VAL(filename);
size_t cfilenamelen = ZSTR_LEN(filename) - sizeof(" eval()'d code") - 2 /* :*/;
size_t cfilenamelen = ZSTR_LEN(filename) - sizeof(" eval()'d code") - 1 /*:*/;
while (cfilenamelen && cfilename[--cfilenamelen] != '(');
return cfilenamelen;
}