Christoph M. Becker 9164dc11e2 Fix #72714: _xml_startElementHandler() segmentation fault ... The issue is caused by an integer overflow when the `long` passed as XML_OPTION_SKIP_TAGSTART is assigned to `xml_parser::toffset` which is declared as `int`. We can simply work around this issue, by clipping resulting negative values to 0 (and raising a notice in this case), because the reasonable range for this value is certainly catered to by positive `int`s. However, there still remains the issue that `xml_parser::toffset` is later added to `char *`s, which can cause OOB reads, so we make sure that the upper bound never exceeds the strlen(). We eschew optimizing `SKIP_TAGSTART` wrt. to the potentially duplicate strlen() call, because that code path is unexpected anyway.		2016-08-20 01:58:08 +02:00
..
tests	Fix #72714: _xml_startElementHandler() segmentation fault	2016-08-20 01:58:08 +02:00
compat.c	Happy new year (Update copyright to 2016)	2016-01-01 19:21:47 +02:00
config.m4	Fix long-standing visual pain point: the misalignment of './configure help' text.	2013-08-06 11:06:09 -07:00
config.w32	- add phpize support for windows, need a nmake install for now (nmake devel-pkg version is coming), works exactly the same as on unix, or should :)	2010-12-13 18:43:10 +00:00
CREDITS
expat_compat.h	Happy new year (Update copyright to 2016)	2016-01-01 19:21:47 +02:00
package.xml	Typo	2007-03-14 09:58:14 +00:00
php_xml.h	Happy new year (Update copyright to 2016)	2016-01-01 19:21:47 +02:00
xml.c	Fix #72714: _xml_startElementHandler() segmentation fault	2016-08-20 01:58:08 +02:00
xml.mak	revert change #298288: Remove old dsp/dsw/makefile files	2010-04-28 14:41:51 +00:00