]> granicus.if.org Git - php/commit
projects / php / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 21562aa) | patch
Limit unserialization element count more aggressively
authorNikita Popov <nikita.ppv@gmail.com>
Fri, 15 Jan 2021 16:07:51 +0000 (17:07 +0100)
committerNikita Popov <nikita.ppv@gmail.com>
Fri, 15 Jan 2021 16:07:51 +0000 (17:07 +0100)
commit141c4be70a97ea9dd99b3a80543098c677d12c1e
treecfd79e53852dc4d1dbf9ec8bb58090911fd4e447tree | snapshot
parent21562aa98dd423a988770aee974377a77d980839commit | diff
Limit unserialization element count more aggressively

This is slightly more aggressive about rejecting obviously incorrect
element counts. Previously the number of elements was allowed to
match the number of characters. Now it is the number of characters
divided by two (this can actually be increased further to at least 4).

This doesn't really matter in the grand scheme of things (as it
just cuts maximum memory usage by half), but should fix
oss-fuzz #29356.
ext/standard/var_unserializer.re diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.