php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Return to Bug #75691
Patch patch_phar_tar_c.txt revision 2017-12-15 08:19 UTC by YangX92 at hotmail dot com

Patch patch_phar_tar_c.txt for PHAR related Bug #75691

Patch version 2017-12-15 08:19 UTC

Return to Bug #75691 | Download this patch
Patch Revisions:

Developer: YangX92@hotmail.com

 	tar_header *header = (tar_header *) buf;
 	uint32_t checksum = phar_tar_number(header->checksum, sizeof(header->checksum));
 	uint32_t ret;
-	char save[sizeof(header->checksum)], *bname;
+	char save[sizeof(header->checksum)+1], *bname;
 
 	/* assume that the first filename in a tar won't begin with <?php */
 	if (!strncmp(buf, "<?php", sizeof("<?php")-1)) {
 		return 0;
 	}
 
 	memcpy(save, header->checksum, sizeof(header->checksum));
+    save[sizeof(header->checksum)+1] = 0;
 	memset(header->checksum, ' ', sizeof(header->checksum));
 	ret = (checksum == phar_tar_checksum(buf, 512));
 	memcpy(header->checksum, save, sizeof(header->checksum));
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Fri Mar 29 12:01:27 2024 UTC