Check for invalid serialized objects and return an error condition instead of just...

author Tim Starling <tstarling@users.mediawiki.org>

Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)

committer Tim Starling <tstarling@users.mediawiki.org>

Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)
author Tim Starling <tstarling@users.mediawiki.org>
Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)
committer Tim Starling <tstarling@users.mediawiki.org>
Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)
diff --git a/includes/Revision.php b/includes/Revision.php

index c289bf7..e9083a7 100644 (file)
--- a/includes/Revision.php
+++ b/includes/Revision.php
@@ -530,6 +530,11 @@ class Revision {
                         if( in_array( 'object', $flags ) ) {
                                 # Generic compressed storage
                                 $obj = unserialize( $text );
+                               if ( !is_object( $obj ) ) {
+                                       // Invalid object
+                                       wfProfileOut( $fname );
+                                       return false;
+                               }
                                 $text = $obj->getText();
                         }
author	Tim Starling <tstarling@users.mediawiki.org>
	Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)
committer	Tim Starling <tstarling@users.mediawiki.org>
	Mon, 24 Apr 2006 03:29:27 +0000 (03:29 +0000)