From 5fcb963f094b994162cfa66128f681a3375b521c Mon Sep 17 00:00:00 2001
From: Zeev Suraski <zeev@php.net>
Date: Wed, 17 May 2000 15:50:30 +0000
Subject: [PATCH] Fix crash if %> is encountered in HTML while ASP-tags are
 disabled

---
 Zend/zend-scanner.l | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Zend/zend-scanner.l b/Zend/zend-scanner.l
index b7d0e1fba9..44b80b9dfe 100644
--- a/Zend/zend-scanner.l
+++ b/Zend/zend-scanner.l
@@ -1316,14 +1316,15 @@ ESCAPED_AND_WHITESPACE [\n\t\r #'.:;,()|^&+-/*=%!~<>?@]+
 
 
 <ST_IN_SCRIPTING>"%>"([\n]|"\r\n")? {
-	zendlval->value.str.val = yytext; /* no copying - intentional */
 	zendlval->value.str.len = yyleng;
 	zendlval->type = IS_STRING;
 	HANDLE_NEWLINES(yytext,yyleng);
 	if (CG(asp_tags)) {
 		BEGIN(INITIAL);
+		zendlval->value.str.val = yytext; /* no copying - intentional */
 		return T_CLOSE_TAG;  /* implicit ';' at php-end tag */
 	} else {
+	        zendlval->value.str.val = (char *) estrndup(yytext, yyleng);
 		return T_INLINE_HTML;
 	}
 }
-- 
2.50.1