diff options
| -rw-r--r-- | NEWS | 2 | ||||
| -rw-r--r-- | ext/phar/phar_object.c | 2 |
2 files changed, 3 insertions, 1 deletions
@@ -34,6 +34,8 @@ PHP NEWS - Phar: . Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have all-access permissions). (CVE-2020-7063) (stas) + . Fixed bug #79171 (heap-buffer-overflow in phar_extract_file). + (CVE- 2020-7061) (cmb) . Fixed bug #76584 (PharFileInfo::decompress not working). (cmb) - Reflection: diff --git a/ext/phar/phar_object.c b/ext/phar/phar_object.c index 14b4a795d0..82c7c376ed 100644 --- a/ext/phar/phar_object.c +++ b/ext/phar/phar_object.c @@ -4153,7 +4153,7 @@ static int phar_extract_file(zend_bool overwrite, phar_entry_info *entry, char * if ('\\' == filename[cnt]) { filename[cnt] = '/'; } - } while (cnt++ <= filename_len); + } while (cnt++ < filename_len); } #endif |