From: Stefan Esser <sesser@php.net>
Date: Mon, 28 Feb 2005 16:22:39 +0000 (+0000)
Subject: Drop invalid arrays
X-Git-Tag: RELEASE_0_3~131
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=b7476a5bd6f7032a1333ef1a56a2e945c64adab5;p=php

Drop invalid arrays
---

diff --git a/ext/standard/var_unserializer.re b/ext/standard/var_unserializer.re
index 613dd32c6f..a774946d91 100644
--- a/ext/standard/var_unserializer.re
+++ b/ext/standard/var_unserializer.re
@@ -477,6 +477,10 @@ PHPAPI int php_var_unserialize(UNSERIALIZE_PARAMETER)
 "a:" uiv ":" "{" {
 	int elements = parse_iv(start + 2);
 
+	if (elements < 0) {
+		return 0;
+	}
+
 	*p = YYCURSOR;
 
 	INIT_PZVAL(*rval);