php/archived-php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2026-04-11 01:53:36 +02:00
Code Issues Packages Projects Releases Wiki Activity

Prevent exploit in [tmp_name] as well

Browse Source
This commit is contained in:
Zeev Suraski
2000-09-04 22:05:00 +00:00
parent 60825fab88
commit 5dca99232e
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
main/rfc1867.c
View File

@@ -358,6 +358,7 @@ static void php_mime_split(char *buf, int cnt, char *boundary, zval *array_ptr)
sprintf(lbuf, "%s[tmp_name]", namebuf);
}
register_http_post_files_variable(lbuf, fn, http_post_files ELS_CC PLS_CC);
add_protected_variable(lbuf PLS_CC);
{
zval file_size;