From d8da372fd0aa22d503b4204f4485b2d5c8ce75bd Mon Sep 17 00:00:00 2001
From: Raphael Geissert <geissert@php.net>
Date: Sat, 13 Mar 2010 18:40:29 +0000
Subject: Fix CVE-2010-0397: null pointer dereference when processing invalid
 XML-RPC requests (bug #51288)

---
 ext/xmlrpc/tests/bug51288.phpt | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 ext/xmlrpc/tests/bug51288.phpt

(limited to 'ext/xmlrpc/tests')

diff --git a/ext/xmlrpc/tests/bug51288.phpt b/ext/xmlrpc/tests/bug51288.phpt
new file mode 100644
index 0000000000..d9bdef822e
--- /dev/null
+++ b/ext/xmlrpc/tests/bug51288.phpt
@@ -0,0 +1,14 @@
+--TEST--
+Bug #51288 (CVE-2010-0397, NULL pointer deref when no <methodName> in request)
+--FILE--
+<?php
+$method = NULL;
+$req = '<?xml version="1.0"?><methodCall></methodCall>';
+var_dump(xmlrpc_decode_request($req, $method));
+var_dump($method);
+echo "Done\n";
+?>
+--EXPECT--
+NULL
+NULL
+Done
-- 
cgit v1.2.1