 |
 |
 |
 |
|
|
Date: 01/04/00
- Next message: Rolle, Ted: "RE: [PHP-DEV] Pager functions"
- Previous message: amy veselka: "Re: [PHP-DEV] includeing c (BLADE)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
From: sherin <email protected>
Operating system: Linux
PHP version: 3.0.13
PHP Bug Type: IMAP related
Bug description: Buffer overflow with rfc822_date
A buffer overflow occured in the function php3_imap_check in functions/imap.c while executing the following command:
rfc822_date (date);
The problem with this is that it is not checked if the returned date string is too long for the buffer. In my configuration i didn`t set up the timezone correct, so I got a somewhat large date string back.:
"Tue, 4 Jan 2000 15:42:40 +0000 (Local time zone must be set--see zic manual page)"
which was larger than the 50 chars allocated for the variable date could handle. I assume there are also other places where this problem occurs.
-- PHP Development Mailing List <http://www.php.net/> To unsubscribe, e-mail: php-dev-unsubscribe <email protected> For additional commands, e-mail: php-dev-help <email protected> To contact the list administrators, e-mail: php-list-admin <email protected>
- Next message: Rolle, Ted: "RE: [PHP-DEV] Pager functions"
- Previous message: amy veselka: "Re: [PHP-DEV] includeing c (BLADE)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]