Bug 182719

Summary: ImageCreateFromGif does not clean up its temporary file
Product: Red Hat Enterprise Linux 4 Reporter: Sander Steffann <steffann>
Component: phpAssignee: Joe Orton <jorton>
Status: CLOSED ERRATA QA Contact: David Lawrence <dkl>
Severity: high Docs Contact:
Priority: medium    
Version: 4.0CC: ferdi, martin
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
URL: http://cvs.php.net/viewcvs.cgi/php-src/ext/gd/gd.c?view=diff&r1=text&tr1=1.221.2.45&r2=text&tr2=1.221.2.46&diff_format=u
Whiteboard:
Fixed In Version: RHSA-2006-0276 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2006-04-25 14:28:33 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Sander Steffann 2006-02-24 09:36:34 UTC
Description of problem:


Version-Release number of selected component (if applicable):
 PHP 4.3.9

How reproducible:
 Use the function ImageCreateFromGif

Steps to Reproduce:
1. Create a PHP script that uses the function ImageCreateFromGif
  
Actual results:
 The tempfile created by ImageCreateFromGif still exists

Expected results:
 No tempfiles should remain

Additional info:
 This causes a full /tmp partition on webservers that use the
 ImageCreateFromGif function. This leads to server problems and can be used
 as a DoS attack on the webserver by a local user. This is especially important
 for webhosting providers like us, where there are many 'external' users who
 can upload PHP scripts.

 The bug has been fixed by the PHP developers on 2004/11/02, so I am very
 disappointed that Red Hat has nog included this (imho important) fix yet.
 The diff in on the supplied URL.

Comment 3 Red Hat Bugzilla 2006-04-25 14:28:33 UTC
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2006-0276.html


Comment 4 Joe Orton 2006-12-12 13:18:05 UTC
*** Bug 169771 has been marked as a duplicate of this bug. ***

Comment 5 Joe Orton 2006-12-14 15:41:46 UTC
*** Bug 189165 has been marked as a duplicate of this bug. ***