Imported Upstream version 5.2.0upstream/5.2.0

author: Mark A. Hershberger <mah@debian.(none)> 2009-03-25 00:36:21 -0400
committer: Mark A. Hershberger <mah@debian.(none)> 2009-03-25 00:36:21 -0400
commit: d29a4fd2dd3b5d4cf6e80b602544d7b71d794e76 (patch)
tree: b38e2e5c6974b9a15f103e5cf884cba9fff90ef4 /ext/standard/tests/strings/bug38322.phpt
parent: a88a88d0986a4a32288c102cdbfebd78d7e91d99 (diff)
download: php-upstream/5.2.0.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/ext/standard/tests/strings/bug38322.phpt b/ext/standard/tests/strings/bug38322.phpt
new file mode 100644
index 000000000..37f5a93f6
--- /dev/null
+++ b/ext/standard/tests/strings/bug38322.phpt
@@ -0,0 +1,13 @@
+--TEST--
+Bug #38322 (reading past array in sscanf() leads to segfault/arbitary code execution)
+--FILE--
+<?php
+
+$str = "a b c d e";
+var_dump(sscanf("a ",'%1$s',$str));
+
+echo "Done\n";
+?>
+--EXPECTF--	
+int(1)
+Done
author	Mark A. Hershberger <mah@debian.(none)>	2009-03-25 00:36:21 -0400
committer	Mark A. Hershberger <mah@debian.(none)>	2009-03-25 00:36:21 -0400
commit	d29a4fd2dd3b5d4cf6e80b602544d7b71d794e76 (patch)
tree	b38e2e5c6974b9a15f103e5cf884cba9fff90ef4 /ext/standard/tests/strings/bug38322.phpt
parent	a88a88d0986a4a32288c102cdbfebd78d7e91d99 (diff)
download	php-upstream/5.2.0.tar.gz