--- php4-4.4.4/ext/session/session.c	2006/12/26 16:53:47	1.417.2.8.2.22
+++ php4-4.4.4/ext/session/session.c	2006/12/31 22:25:55	1.417.2.8.2.23
@@ -471,7 +471,7 @@
 		zval **tmp;
 		namelen = *p & (~PS_BIN_UNDEF);

-		if (namelen > PS_BIN_MAX || (p + namelen) >= endptr) {
+		if (namelen < 0 || namelen > PS_BIN_MAX || (p + namelen) >= endptr) {
 			return FAILURE;
 		}