From: Antony Dovgal Date: Thu, 27 Jan 2005 01:14:43 +0000 (+0000) Subject: MFB: fix segfault when invalid field offset is passed to mysqli_fetch_field_direct() X-Git-Tag: RELEASE_0_2~141 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=9d9e4379afd0b76893121f83dd4a87437dfa7647;p=php MFB: fix segfault when invalid field offset is passed to mysqli_fetch_field_direct() --- diff --git a/ext/mysqli/mysqli_api.c b/ext/mysqli/mysqli_api.c index e958434f31..8082291d38 100644 --- a/ext/mysqli/mysqli_api.c +++ b/ext/mysqli/mysqli_api.c @@ -752,6 +752,11 @@ PHP_FUNCTION(mysqli_fetch_field_direct) } MYSQLI_FETCH_RESOURCE(result, MYSQL_RES *, &mysql_result, "mysqli_result"); + + if (offset < 0 || offset >= mysql_num_fields(result)) { + php_error_docref(NULL TSRMLS_CC, E_WARNING, "Field offset is invalid for resultset"); + RETURN_FALSE; + } if (!(field = mysql_fetch_field_direct(result,offset))) { RETURN_FALSE;