From: Ilia Alshanetsky <iliaa@php.net>
Date: Wed, 1 Jun 2005 22:28:03 +0000 (+0000)
Subject: Fixed bug #33210 (relax jpeg recursive loop protection).
X-Git-Tag: php-5.0.1b1~114
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=fd396287d0c6c1f0f8f8919fabc108f2174d20c3;p=php

Fixed bug #33210 (relax jpeg recursive loop protection).
---

diff --git a/ext/standard/image.c b/ext/standard/image.c
index da4ca7c7fa..5e6b2371a4 100644
--- a/ext/standard/image.c
+++ b/ext/standard/image.c
@@ -398,7 +398,7 @@ static unsigned int php_next_marker(php_stream * stream, int last_marker, int co
 				last_marker = M_PSEUDO; /* stop skipping non 0xff for M_COM */
 			}
 		}
-		if (++a > 10)
+		if (++a > 25)
 		{
 			/* who knows the maxim amount of 0xff? though 7 */
 			/* but found other implementations              */