News Feed
Jobs Feed
Sections




News Archive
PHP Security Blog:
Chunk_split() Overflow not fixed at all...
by Chris Cornutt June 05, 2007 @ 07:41:00

In this new post to the PHP Security blog, Stefan Esser points out that an issue that was previously marked as corrected - a problem with the chunk_split function - hasn't completely been corrected.

This [bugfix] fixes the chunk_split() overflow (found by SEC-CONSULT) that was according to the PHP 5.2.3 release notes already fixed. The original fix was however not only broken but complete nonsense. If you can read C you will see that the integer overflow was not fixed in PHP 5.2.3 but simply moved into a separate line and an additional bogus if clause was added.

Stefan includes a simple four line code example to illustrate his point.

0 comments voice your opinion now!
chunksplit overflow bug chunksplit overflow bug


blog comments powered by Disqus

Similar Posts

Johannes Schluter's Blog: Easter - Don't just look for eggs but also for bugs

Zeev Suraski's Blog: PHP Security

Mike\'s Blog: PECL HTTP module - A nasty bug and a new example

Community News: PHP Sadness - "Things in PHP that Make Me Sad"

Secunia.com: PHP Integer Overflow Vulnerability and Security Bypass


 Community Events











Don't see your event here?
Let us know!

framework release composer community api unittest testing language series example code development podcast database introduction interview opinion zendframework2 functional phpunit

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework