mirrors/php-src
0
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2024-11-24 10:24:11 +08:00
Code Issues Packages Projects Releases Wiki Activity
515c103a08
php-src/ext
History
Remi Collet af09d8b96a Fixed Bug #66815 imagecrop(): insufficient fix for NULL defer CVE-2013-7327 
This amends commit 8f4a537, which aimed to correct NULL dereference because of
missing check of gdImageCreateTrueColor() / gdImageCreate() return value.  That
commit checks for negative crop rectangle width and height, but
gdImageCreate*() can also return NULL when width * height overflows.  Hence
NULL deref is still possible, as gdImageSaveAlpha() and gdImagePaletteCopy()
is called before dst == NULL check.

This moves NULL check to happen right after gdImageCreate*().  It also removes
width and height check before gdImageCreate*(), as the same check is done by
image create functions (with an extra warning).

From thoger redhat com
2014-03-05 10:40:36 +01:00
..
bcmath Bump year 2014-01-03 11:06:16 +08:00
bz2 Bump year 2014-01-03 11:06:16 +08:00
calendar Bump year 2014-01-03 11:06:16 +08:00
com_dotnet Bump year 2014-01-03 11:06:16 +08:00
ctype Bump year 2014-01-03 11:06:16 +08:00
curl don't compare constants on run time 2014-02-28 19:38:32 +01:00
date Fixed ZTS and added fix to NEWS. 2014-02-11 11:27:01 +00:00
dba Bump year 2014-01-03 11:06:16 +08:00
dom Bump year 2014-01-03 11:06:16 +08:00
enchant Bump year 2014-01-03 11:06:16 +08:00
ereg Bump year 2014-01-03 11:06:16 +08:00
exif Bump year 2014-01-03 11:06:16 +08:00
fileinfo Merge branch 'PHP-5.4' into PHP-5.5 2014-03-04 20:36:08 +01:00
filter Bump year 2014-01-03 11:06:16 +08:00
ftp Bump year 2014-01-03 11:06:16 +08:00
gd Fixed Bug #66815 imagecrop(): insufficient fix for NULL defer CVE-2013-7327 2014-03-05 10:40:36 +01:00
gettext Bump year 2014-01-03 11:06:16 +08:00
gmp Bump year 2014-01-03 11:06:16 +08:00
hash Bump year 2014-01-03 11:06:16 +08:00
iconv Bump year 2014-01-03 11:06:16 +08:00
imap Bump year 2014-01-03 11:06:16 +08:00
interbase Bump year 2014-01-03 11:06:16 +08:00
intl added appropriate exception handling flag to ext\intl 2014-01-17 11:03:40 +01:00
json Merge branch 'PHP-5.4' into PHP-5.5 2014-02-17 10:36:13 +01:00
ldap Merge branch 'PHP-5.4' into PHP-5.5 2014-01-25 22:04:28 -08:00
libxml Merge branch 'PHP-5.4' into PHP-5.5 2014-01-21 17:14:32 +01:00
mbstring tests still failing, so xfail for now until fixed 2014-01-29 23:48:19 -08:00
mcrypt Bump year 2014-01-03 11:06:16 +08:00
mssql Bump year 2014-01-03 11:06:16 +08:00
mysql Bump year 2014-01-03 11:06:16 +08:00
mysqli Merge branch 'PHP-5.4' into PHP-5.5 2014-02-27 08:49:33 +01:00
mysqlnd Merge branch 'PHP-5.4' into PHP-5.5 2014-01-28 15:33:16 +02:00
oci8 Merge branch 'PHP-5.4' into PHP-5.5 2014-02-24 17:02:16 -08:00
odbc Bump year 2014-01-03 11:06:16 +08:00
opcache Added information about interned strings usage 2014-02-21 12:43:42 +04:00
openssl Merge branch 'PHP-5.4' into PHP-5.5 2014-02-19 04:01:08 -07:00
pcntl Bump year 2014-01-03 11:06:16 +08:00
pcre pcre tests go with 8.34 upgrade 2014-02-04 10:34:11 +01:00
pdo Merge branch 'PHP-5.4' into PHP-5.5 2014-01-28 13:33:44 +01:00
pdo_dblib Bump year 2014-01-03 11:06:16 +08:00
pdo_firebird Bump year 2014-01-03 11:06:16 +08:00
pdo_mysql Merge branch 'PHP-5.4' into PHP-5.5 2014-02-23 14:56:32 +01:00
pdo_oci Bump year 2014-01-03 11:06:16 +08:00
pdo_odbc Bump year 2014-01-03 11:06:16 +08:00
pdo_pgsql Merge branch 'PHP-5.4' into PHP-5.5 2014-01-25 23:26:29 -08:00
pdo_sqlite Bump year 2014-01-03 11:06:16 +08:00
pgsql Merge branch 'PHP-5.4' into PHP-5.5 2014-02-16 10:45:50 +09:00
phar Bump year 2014-01-03 11:06:16 +08:00
posix Bump year 2014-01-03 11:06:16 +08:00
pspell Bump year 2014-01-03 11:06:16 +08:00
readline fix test 2014-01-26 14:31:20 -08:00
recode Bump year 2014-01-03 11:06:16 +08:00
reflection Merge branch 'PHP-5.4' into PHP-5.5 2014-02-27 02:32:07 +01:00
session Merge branch 'PHP-5.4' into PHP-5.5 2014-01-30 14:16:05 +09:00
shmop Bump year 2014-01-03 11:06:16 +08:00
simplexml Bump year 2014-01-03 11:06:16 +08:00
skeleton fixed skeleton to produce the normalized ext version macros 2013-10-14 14:18:43 +02:00
snmp Bump year 2014-01-03 11:06:16 +08:00
soap Bump year 2014-01-03 11:06:16 +08:00
sockets Bump year 2014-01-03 11:06:16 +08:00
spl Merge branch 'PHP-5.4' into PHP-5.5 2014-02-27 02:32:07 +01:00
sqlite3 Bump year 2014-01-03 11:06:16 +08:00
standard Merge branch 'PHP-5.4' into PHP-5.5 2014-03-03 05:56:22 +08:00
sybase_ct Bump year 2014-01-03 11:06:16 +08:00
sysvmsg Bump year 2014-01-03 11:06:16 +08:00
sysvsem Bump year 2014-01-03 11:06:16 +08:00
sysvshm Bump year 2014-01-03 11:06:16 +08:00
tidy Bump year 2014-01-03 11:06:16 +08:00
tokenizer Merge branch 'PHP-5.4' into PHP-5.5 2014-02-14 15:30:00 +02:00
wddx Bump year 2014-01-03 11:06:16 +08:00
xml Bump year 2014-01-03 11:06:16 +08:00
xmlreader Bump year 2014-01-03 11:06:16 +08:00
xmlrpc Bump year 2014-01-03 11:06:16 +08:00
xmlwriter Bump year 2014-01-03 11:06:16 +08:00
xsl Bump year 2014-01-03 11:06:16 +08:00
zip Bump year 2014-01-03 11:06:16 +08:00
zlib Bump year 2014-01-03 11:06:16 +08:00
ext_skel
ext_skel_win32.php