diff options
author | Yasuo Ohgaki <yohgaki@php.net> | 2013-08-11 06:43:01 +0900 |
---|---|---|
committer | Yasuo Ohgaki <yohgaki@php.net> | 2013-08-11 06:43:01 +0900 |
commit | 0ad81ac18a72c0bc2d9dae180950f47a09994e35 (patch) | |
tree | 6b5b0ff549c8b5726557d407f2f6c709256eb435 | |
parent | e9b128c1bfb64e50c5e361959a1a7ccd176d1324 (diff) | |
download | php-git-0ad81ac18a72c0bc2d9dae180950f47a09994e35.tar.gz |
Fixed possible buffer overflow under Windows. Note: Not a security fix.
-rw-r--r-- | ext/session/session.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ext/session/session.c b/ext/session/session.c index 05e7aa63f9..dba3952563 100644 --- a/ext/session/session.c +++ b/ext/session/session.c @@ -341,7 +341,7 @@ PHPAPI char *php_session_create_id(PS_CREATE_SID_ARGS) /* {{{ */ unsigned char rbuf[2048]; size_t toread = PS(entropy_length); - if (php_win32_get_random_bytes(rbuf, (size_t) toread) == SUCCESS){ + if (php_win32_get_random_bytes(rbuf, MIN(toread, sizeof(rbuf))) == SUCCESS){ switch (PS(hash_func)) { case PS_HASH_FUNC_MD5: |