summaryrefslogtreecommitdiff
path: root/lang/php5/patches/patch-ae
diff options
context:
space:
mode:
Diffstat (limited to 'lang/php5/patches/patch-ae')
-rw-r--r--lang/php5/patches/patch-ae14
1 files changed, 14 insertions, 0 deletions
diff --git a/lang/php5/patches/patch-ae b/lang/php5/patches/patch-ae
new file mode 100644
index 00000000000..80ef96cc0cf
--- /dev/null
+++ b/lang/php5/patches/patch-ae
@@ -0,0 +1,14 @@
+$NetBSD: patch-ae,v 1.1 2007/08/01 01:40:08 taca Exp $
+
+Fix for CVE-2007-3806.
+
+--- ext/standard/dir.c.orig 2007-02-25 02:16:23.000000000 +0900
++++ ext/standard/dir.c
+@@ -395,6 +395,7 @@ PHP_FUNCTION(glob)
+ }
+ #endif
+
++ memset(&globbuf, 0, sizeof(glob_t));
+ globbuf.gl_offs = 0;
+ if (0 != (ret = glob(pattern, flags & GLOB_FLAGMASK, NULL, &globbuf))) {
+ #ifdef GLOB_NOMATCH
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-30 01:30:32 +0000