PHP :: Bug #63123 :: Hash pointer should be reset at the end of function:php_taint_mark

Bug #63123	Hash pointer should be reset at the end of function:php_taint_mark_strings
Submitted:	2012-09-20 15:38 UTC	Modified:	2012-09-21 03:28 UTC
From:	274611049 at qq dot com	Assigned:	laruence (profile)
Status:	Closed	Package:	taint (PECL)
PHP Version:	5.3Git-2012-09-20 (Git)	OS:	Suse
Private report:	No	CVE-ID:	None

View Developer Edit

Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.

Password:

Status:
Package:
Bug Type:
Summary:
From:	274611049 at qq dot com
New email:
PHP Version:		OS:

New Comment:

[2012-09-20 15:38 UTC] 274611049 at qq dot com

Description:
------------
Hash pointer should be reset at the end of function : php_taint_mark_strings

Test script:
---------------
<?php 

$str = 'a,' . 'b';
taint($str);
$a = explode(',', $str);
while (list($key, $val) = each($a)) {
    echo $val;
}

?>

Expected result:
----------------
Warning: main(): Attempt to echo a string that might be tainted in /data/taint-
1.0.0/tests/012.php on line 7
a
Warning: main(): Attempt to echo a string that might be tainted in /data/taint-
1.0.0/tests/012.php on line 7
b

Actual result:
--------------
empty

Patches

63123 (last revision 2012-09-21 02:06 UTC by 274611049 at qq dot com)

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2012-09-21 03:27 UTC] laruence@php.net

Automatic comment from SVN on behalf of laruence
Revision: http://svn.php.net/viewvc/?view=revision&amp;revision=327719
Log: Fixed bug #63123 (Hash pointer should be reset at the end of function:php_taint_mark_strings)

[2012-09-21 03:28 UTC] laruence@php.net

The fix for this bug has been committed.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.

 For Windows:

http://windows.php.net/snapshots/
 
Thank you for the report, and for helping us make PHP better.

fixed, thanks :)

[2012-09-21 03:28 UTC] laruence@php.net

-Status: Open +Status: Closed -Assigned To: +Assigned To: laruence

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Tue Jan 14 06:01:31 2025 UTC