1 files changed, 4 insertions, 4 deletions
diff --git a/ex_imp.c b/ex_imp.c
index 2ea2b99..6256f35 100644
--- a/ex_imp.c
+++ b/ex_imp.c
@@ -74,7 +74,7 @@ static int php_valid_var_name(char *var_name, int len) /* {{{ */
                }
        }
-        if (php_varname_check(var_name, len, 1 TSRMLS_CC) == FAILURE) {
+        if (suhosin_is_protected_varname(var_name, len)) {
                return 0;
        }
        
@@ -459,7 +459,7 @@ static int copy_request_variable(void *pDest TSRMLS_DC, int num_args, va_list ar
                zval_dtor(&num);
        }
-        if (php_varname_check(Z_STRVAL(new_key), Z_STRLEN(new_key), 0 TSRMLS_CC) == FAILURE) {
+        if (php_varname_check(Z_STRVAL(new_key), Z_STRLEN(new_key), 1 TSRMLS_CC) == FAILURE || suhosin_is_protected_varname(Z_STRVAL(new_key), Z_STRLEN(new_key))) {
                zval_dtor(&new_key);
                return 0;
        }
@@ -506,8 +506,8 @@ static int copy_request_variable(void *pDest, int num_args, va_list args, zend_h
                new_key_len++;
        }
-        if (php_varname_check(new_key, new_key_len-1, 0 TSRMLS_CC) == FAILURE) {
+        if (php_varname_check(new_key, new_key_len-1, 1 TSRMLS_CC) == FAILURE || suhosin_is_protected_varname(new_key, new_key_len-1)) {
-                zval_dtor(&new_key);
+                efree(new_key);
                return 0;
        }

diff --git a/ex_imp.c b/ex_imp.c index 2ea2b99..6256f35 100644 --- a/ex_imp.c +++ b/ex_imp.c
@@ -74,7 +74,7 @@ static int php_valid_var_name(char var_name, int len) / {{{ */
74	}	74	}
75	}	75	}
76		76
77	if (php_varname_check(var_name, len, 1 TSRMLS_CC) == FAILURE) {	77	if (suhosin_is_protected_varname(var_name, len)) {
78	return 0;	78	return 0;
79	}	79	}
80		80
@@ -459,7 +459,7 @@ static int copy_request_variable(void *pDest TSRMLS_DC, int num_args, va_list ar
459	zval_dtor(&num);	459	zval_dtor(&num);
460	}	460	}
461		461
462	if (php_varname_check(Z_STRVAL(new_key), Z_STRLEN(new_key), 0 TSRMLS_CC) == FAILURE) {	462	if (php_varname_check(Z_STRVAL(new_key), Z_STRLEN(new_key), 1 TSRMLS_CC) == FAILURE \|\| suhosin_is_protected_varname(Z_STRVAL(new_key), Z_STRLEN(new_key))) {
463	zval_dtor(&new_key);	463	zval_dtor(&new_key);
464	return 0;	464	return 0;
465	}	465	}
@@ -506,8 +506,8 @@ static int copy_request_variable(void *pDest, int num_args, va_list args, zend_h
506	new_key_len++;	506	new_key_len++;
507	}	507	}
508		508
509	if (php_varname_check(new_key, new_key_len-1, 0 TSRMLS_CC) == FAILURE) {	509	if (php_varname_check(new_key, new_key_len-1, 1 TSRMLS_CC) == FAILURE \|\| suhosin_is_protected_varname(new_key, new_key_len-1)) {
510	zval_dtor(&new_key);	510	efree(new_key);
511	return 0;	511	return 0;
512	}	512	}
513		513