]> granicus.if.org Git - php/commit
projects / php / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: aea4116) | patch
Rework places in libmagic regarding previous CVE-2014-3538 fixes
authorAnatol Belski <ab@php.net>
Sun, 4 Nov 2018 12:11:28 +0000 (13:11 +0100)
committerAnatol Belski <ab@php.net>
Sun, 4 Nov 2018 12:11:28 +0000 (13:11 +0100)
commit7f5f46013b8a37bab6b378903aace5da9ce8dc5e
tree12238d8d4be505abba7b6074a03f6fddb466380btree | snapshot
parentaea411657ee20572f8268060a4afa73bc3795497commit | diff
Rework places in libmagic regarding previous CVE-2014-3538 fixes

CVE-2014-3538 was fixed upstream, but the old patch was still kept in
the PHP port. This patch causes performance regressions when PCRE JIT is
not enabled. This is fixed by applying the relevant original code from
the newer libmagic, which makes the old patch obsolete as the
CVE-2014-3538 tests still pass.
ext/fileinfo/libmagic/apprentice.c diff | blob | history
ext/fileinfo/libmagic/softmagic.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.