From: Stanislav Malyshev <stas@php.net>
Date: Tue, 18 Sep 2007 20:21:04 +0000 (+0000)
Subject: limit dl() argument length (patch by Christian Hoffmann)
X-Git-Tag: RELEASE_2_0_0a1~1799
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=a8f965bf80632664b84fdf83cdb0a5abee9496d1;p=php

limit dl() argument length (patch by Christian Hoffmann)
---

diff --git a/ext/standard/dl.c b/ext/standard/dl.c
index 5de1780eac..4e4c8c2d3f 100644
--- a/ext/standard/dl.c
+++ b/ext/standard/dl.c
@@ -63,6 +63,11 @@ PHP_FUNCTION(dl)
 		return;
 	}
 
+	if (Z_STRLEN_PP(file) >= MAXPATHLEN) {
+		php_error_docref(NULL TSRMLS_CC, E_WARNING, "File name exceeds the maximum allowed length of %d characters", MAXPATHLEN);
+		RETURN_FALSE;
+	}
+
 	php_dl(filename, MODULE_TEMPORARY, return_value, 0 TSRMLS_CC);
 	EG(full_tables_cleanup) = 1;
 }