Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
SUSE:SLE-15:Update
php7.18238
php7-CVE-2020-7069.patch
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File php7-CVE-2020-7069.patch of Package php7.18238
Index: php-7.4.6/ext/openssl/openssl.c =================================================================== --- php-7.4.6.orig/ext/openssl/openssl.c 2020-10-09 11:20:13.026340926 +0200 +++ php-7.4.6/ext/openssl/openssl.c 2020-10-09 11:21:59.122963252 +0200 @@ -6522,11 +6522,6 @@ static int php_openssl_validate_iv(char { char *iv_new; - /* Best case scenario, user behaved */ - if (*piv_len == iv_required_len) { - return SUCCESS; - } - if (mode->is_aead) { if (EVP_CIPHER_CTX_ctrl(cipher_ctx, mode->aead_ivlen_flag, *piv_len, NULL) != 1) { php_error_docref(NULL, E_WARNING, "Setting of IV length for AEAD mode failed"); @@ -6535,6 +6530,11 @@ static int php_openssl_validate_iv(char return SUCCESS; } + /* Best case scenario, user behaved */ + if (*piv_len == iv_required_len) { + return SUCCESS; + } + iv_new = ecalloc(1, iv_required_len + 1); if (*piv_len == 0) {
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor