From b29bcc861833fe7aa16abea5b43cc54048004c23 Mon Sep 17 00:00:00 2001
From: Stefan Esser <sesser@php.net>
Date: Sun, 16 Dec 2001 14:47:18 +0000
Subject: [PATCH] fixed: bufferoverflow in sapi_add_header_ex triggerable by
 header("WWW-Authenticate: Basic foobar");

---
 main/SAPI.c | 1 +
 1 file changed, 1 insertion(+)

diff --git a/main/SAPI.c b/main/SAPI.c
index 7b226f112b..396927685e 100644
--- a/main/SAPI.c
+++ b/main/SAPI.c
@@ -504,6 +504,7 @@ SAPI_API int sapi_add_header_ex(char *header_line, uint header_line_len, zend_bo
 								efree(result);
 								conv_len = sprintf(conv_temp," realm=\"%ld\"",myuid);		
 								result = emalloc(ptr_len+conv_len+1);
+								result_len = ptr_len+conv_len;
 								memcpy(result, ptr, ptr_len);	
 								memcpy(result+ptr_len, conv_temp, conv_len);
 								*(result+ptr_len+conv_len) = '\0';
-- 
2.50.1