Patch applied to both PHP_5_2 and HEAD. Thanks! --Jani
On Sat, 2007-07-21 at 21:57 +0200, Mattias Bengtsson wrote: > As stated in the manual for str_pad() "If the value of pad_length is > negative or less than the length of the input string, no padding takes > place.". > > By using a very low negative value it is possible to bypass the check. > > Please see attachment. > > Cheers, Mattias Bengtsson > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php -- PHP Internals - PHP Runtime Development Mailing List To unsubscribe, visit: http://www.php.net/unsub.php
