php/archived-php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2026-04-29 19:23:22 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
fpm_kqueue_simpl
archived-php-src/ext/standard/tests/serialize/bug74111.phpt
T
Tim Düsterhus 013e0f98ac Merge branch 'PHP-8.2' 
* PHP-8.2:
  unserialize: Strictly check for `:{` at object start (#10214)
2023-01-12 19:57:22 +01:00

11 lines
261 B
PHP
Raw Permalink Blame History

--TEST--
Bug #74111: Heap buffer overread (READ: 1) finish_nested_data from unserialize
--FILE--
<?php
$s = 'O:8:"stdClass":00000000';
var_dump(unserialize($s));
?>
--EXPECTF--
Warning: unserialize(): Error at offset 23 of 23 bytes in %s on line %d
bool(false)
Reference in New Issue View Git Blame Copy Permalink