[packages/php.git] / php-5.2.17-CVE-2011-2202.patch

diff -up php-5.2.17/main/rfc1867.c.orig php-5.2.17/main/rfc1867.c
--- php-5.2.17/main/rfc1867.c.orig	2011-08-19 08:33:09.000000000 +0700
+++ php-5.2.17/main/rfc1867.c	2011-08-19 08:34:29.000000000 +0700
@@ -1215,7 +1215,7 @@ filedone:
 #endif
 
 			if (!is_anonymous) {
-				if (s && s > filename) {
+				if (s && s >= filename) {
 					safe_php_register_variable(lbuf, s+1, strlen(s+1), NULL, 0 TSRMLS_CC);
 				} else {
 					safe_php_register_variable(lbuf, filename, strlen(filename), NULL, 0 TSRMLS_CC);
@@ -1228,7 +1228,7 @@ filedone:
 			} else {
 				snprintf(lbuf, llen, "%s[name]", param);
 			}
-			if (s && s > filename) {
+			if (s && s >= filename) {
 				register_http_post_files_variable(lbuf, s+1, http_post_files, 0 TSRMLS_CC);
 			} else {
 				register_http_post_files_variable(lbuf, filename, http_post_files, 0 TSRMLS_CC);
Commit	Line	Data
fb98beff ER	1	diff -up php-5.2.17/main/rfc1867.c.orig php-5.2.17/main/rfc1867.c
	2	--- php-5.2.17/main/rfc1867.c.orig 2011-08-19 08:33:09.000000000 +0700
	3	+++ php-5.2.17/main/rfc1867.c 2011-08-19 08:34:29.000000000 +0700
	4	@@ -1215,7 +1215,7 @@ filedone:
	5	#endif
	6
	7	if (!is_anonymous) {
	8	- if (s && s > filename) {
	9	+ if (s && s >= filename) {
	10	safe_php_register_variable(lbuf, s+1, strlen(s+1), NULL, 0 TSRMLS_CC);
	11	} else {
	12	safe_php_register_variable(lbuf, filename, strlen(filename), NULL, 0 TSRMLS_CC);
	13	@@ -1228,7 +1228,7 @@ filedone:
	14	} else {
	15	snprintf(lbuf, llen, "%s[name]", param);
	16	}
	17	- if (s && s > filename) {
	18	+ if (s && s >= filename) {
	19	register_http_post_files_variable(lbuf, s+1, http_post_files, 0 TSRMLS_CC);
	20	} else {
	21	register_http_post_files_variable(lbuf, filename, http_post_files, 0 TSRMLS_CC);