|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2013-02-02 15:57 UTC] pajoye@php.net
[2013-02-02 15:57 UTC] pajoye@php.net
-Status: Open
+Status: Not a bug
[2013-02-03 11:55 UTC] alex at hollerith dot net
|
|||||||||||||||||||||||||||
Copyright © 2001-2024 The PHP GroupAll rights reserved. |
Last updated: Sat Apr 20 16:01:29 2024 UTC |
Description: ------------ Potential overflow in this code: /* {{{ proto resource openssl_csr_sign(mixed csr, mixed x509, mixed priv_key, long days [, array config_args [, long serial]]) Signs a cert with another CERT */ PHP_FUNCTION(openssl_csr_sign) { zval ** zcert = NULL, **zcsr, **zpkey, *args = NULL; long num_days; ...... X509_gmtime_adj(X509_get_notAfter(new_cert), (long)60*60*24*num_days); ...... When "num_days" is big, say 36500 (for 100 years) this casting to "long" will overflow in 32-bit environments where usually "sizeof(long) = 4". This is relevant for applications like the pfsense Firewall system on embedded hardware like the Soekris6501, where only i386 versions can be installed.