- stack buffer overflow patch to socket_connect()

Changed files:
    php-buff_ovf.patch -> 1.1

diff --git a/php-buff_ovf.patch b/php-buff_ovf.patch
new file mode 100644 (file)
index 0000000..0b9c006
--- /dev/null
+++ b/php-buff_ovf.patch
@@ -0,0 +1,16 @@
+diff -ur php-5.3.6-orig//ext/sockets/sockets.c php-5.3.6//ext/sockets/sockets.c
+--- php-5.3.6-orig//ext/sockets/sockets.c      2011-01-01 03:19:59.000000000 +0100
++++ php-5.3.6//ext/sockets/sockets.c   2011-05-24 07:09:54.592779164 +0200
+@@ -1333,6 +1333,11 @@
+                       break;
+ 
+               case AF_UNIX:
++                      if (addr_len >= sizeof(s_un.sun_path)) {
++                                      php_error_docref(NULL TSRMLS_CC, E_WARNING, "Path too long", php_sock->type);
++                                      RETURN_FALSE;
++                              }
++
+                       memset(&s_un, 0, sizeof(struct sockaddr_un));
+ 
+                       s_un.sun_family = AF_UNIX;
+Tylko w php-5.3.6//ext/sockets: sockets.c~