Home Verkennen Help
Inloggen
SoftwareDesign
/
csu3_am335x
8
0
Vork 0
Bestanden Issues 0 Pull-aanvragen 0 Wiki
Aftakking: master
Aftakkingen Labels
csu3_am335x
/
EVSE
/
GPL
/
php-8.1.12
/
ext
/
gd
/
tests
/
bug81739.phpt

bug81739.phpt 702 B
Permalink Geschiedenis Ruwe

123456789101112131415161718192021222324 
  1. --TEST--
    2. 

  2. Bug #81739 (OOB read due to insufficient validation in imageloadfont())
    3. 

  3. --SKIPIF--
    4. 

  4. <?php
    5. 

  5. if (!extension_loaded("gd")) die("skip gd extension not available");
    6. 

  6. ?>
    7. 

  7. --FILE--
    8. 

  8. <?php
    9. 

  9. $s = fopen(__DIR__ . "/font.font", "w");
    10. 

  10. // header without character data
    11. 

  11. fwrite($s, "\x01\x00\x00\x00\x20\x00\x00\x00\x08\x00\x00\x00\x08\x00\x00\x00");
    12. 

  12. fclose($s);
    13. 

  13. var_dump(imageloadfont(__DIR__ . "/font.font"));
    14. 

  14. ?>
    15. 

  15. --CLEAN--
    16. 

  16. <?php
    17. 

  17. @unlink(__DIR__ . "/font.font");
    18. 

  18. ?>
    19. 

  19. --EXPECTF--
    20. 

  20. Warning: imageloadfont(): %croduct of memory allocation multiplication would exceed INT_MAX, failing operation gracefully
    21. 

  21.  in %s on line %d
    22. 

  22. 

  23. Warning: imageloadfont(): Error reading font, invalid font header in %s on line %d
    24. 

  24. bool(false)
    25.