Mirrors
/
php
mirror of https://github.com/php/php-src
3
0
Fork 0
Code Releases Activity
Browse Source

Fixed possible integer overflow in str_repeat().

migration/unlabaled-1.3.2
Ilia Alshanetsky 23 years ago
parent
dcf0c70950
commit
aab9718253
1 changed files with 4 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      ext/standard/string.c

4
ext/standard/string.c
View File

@ -3787,6 +3787,10 @@ PHP_FUNCTION(str_repeat)
/* Initialize the result string */
result_len = Z_STRLEN_PP(input_str) * Z_LVAL_PP(mult);
if (result_len < 1 || result_len > 2147483647) {
php_error_docref(NULL TSRMLS_CC, E_WARNING, "You may not create strings longer then 2147483647 bytes");
RETURN_FALSE;
}
result = (char *)emalloc(result_len + 1);
/* Heavy optimization for situations where input string is 1 byte long */

Write Preview
Loading…
Cancel
Save