ext/gd: imagewebp/imageavif/imagepng stricter checks for quality/speed.

Author: devnexen

ext/gd/gd.c

@@ -4113,22 +4113,36 @@ static void _php_image_output_ctx(INTERNAL_FUNCTION_PARAMETERS, int image_type,
 #endif
 #ifdef HAVE_GD_WEBP
 		case PHP_GDIMG_TYPE_WEBP:
-			if (quality == -1) {
+			if (quality < -1) {
+				zend_argument_value_error(3, "must be at least -1");
+				RETURN_THROWS();
+			} else if (quality == -1) {
 				quality = 80;
 			}
 			gdImageWebpCtx(im, ctx, (int) quality);
 			break;
 #endif
 #ifdef HAVE_GD_AVIF
 		case PHP_GDIMG_TYPE_AVIF:
-			if (speed == -1) {
+			if (quality < -1 || quality > 100) {
+				zend_argument_value_error(3, "must be between -1 and 100");
+				RETURN_THROWS();
+			}
+			if (speed < -1 || speed > 10) {
+				zend_argument_value_error(4, "must be between -1 and 10");
+				RETURN_THROWS();
+			} else if (speed == -1) {
 				speed = 6;
 			}
 			gdImageAvifCtx(im, ctx, (int) quality, (int) speed);
 			break;
 #endif
 #ifdef HAVE_GD_PNG
 		case PHP_GDIMG_TYPE_PNG:
+			if (quality < -1 || quality > 9) {
+				zend_argument_value_error(3, "must be between -1 and 9");
+				RETURN_THROWS();
+			}
 #ifdef HAVE_GD_BUNDLED
 			gdImagePngCtxEx(im, ctx, (int) quality, (int) basefilter);
 #else