From: Stefan Esser <sesser@php.net>
Date: Sun, 16 Dec 2001 14:47:18 +0000 (+0000)
Subject: fixed: bufferoverflow in sapi_add_header_ex triggerable by header("WWW-Authenticate... 
X-Git-Tag: PRE_ISSET_PATCH~524
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=b29bcc861833fe7aa16abea5b43cc54048004c23;p=php

fixed: bufferoverflow in sapi_add_header_ex triggerable by header("WWW-Authenticate: Basic foobar");
---

diff --git a/main/SAPI.c b/main/SAPI.c
index 7b226f112b..396927685e 100644
--- a/main/SAPI.c
+++ b/main/SAPI.c
@@ -504,6 +504,7 @@ SAPI_API int sapi_add_header_ex(char *header_line, uint header_line_len, zend_bo
 								efree(result);
 								conv_len = sprintf(conv_temp," realm=\"%ld\"",myuid);		
 								result = emalloc(ptr_len+conv_len+1);
+								result_len = ptr_len+conv_len;
 								memcpy(result, ptr, ptr_len);	
 								memcpy(result+ptr_len, conv_temp, conv_len);
 								*(result+ptr_len+conv_len) = '\0';