summaryrefslogtreecommitdiff
path: root/sapi/apache_hooks/mod_php5.c
diff options
context:
space:
mode:
authorAndrey Hristov <andrey@php.net>2010-04-20 20:02:32 (GMT)
committerAndrey Hristov <andrey@php.net>2010-04-20 20:02:32 (GMT)
commit6dec27d58b4df79447b92a0cbff1a021945bfbac (patch)
tree441a56c2db0c447e7ed60ac3848e2b50e1fdf5a6 /sapi/apache_hooks/mod_php5.c
parent10a9f48eeeb20fae3eef5d5b1b35d1bcf0bd1942 (diff)
downloadphp-6dec27d58b4df79447b92a0cbff1a021945bfbac.tar.gz
Hardening the reads of mysqlnd.
All packets but the row data packet are read into preallocated buffer, either on the stack or on the heap (cmd_buffer). The size of the buffer is always checked to skip buffer overruns. Only up to the size of the buffer is stored into the buffer but packet->header.size has the size of all data sent. In this case network layer bails. This patch hardenes the reads, so if packets are malformed and shorter than they should be there will be no further reads in the buffer. In short, detection of malformed packets.
Diffstat (limited to 'sapi/apache_hooks/mod_php5.c')
0 files changed, 0 insertions, 0 deletions