ext/standard/image.c: Fix unsafe integer conversion

- Add checks for image dimensions (width/height/bits/channels) against
ZEND_LONG_MAX.
- Prevent sign-bit override when converting unsigned int to zend_long on 32-bit
platforms.
- Ensure consistent behavior across architectures for getimagesize() results.

Reported-by: Dmitriy Fedin <[email protected]>
Signed-off-by: Andrey Kovalev <[email protected]>

Author: Andrey Kovalev

ext/standard/image.c

@@ -1520,7 +1520,12 @@ static void php_getimagesize_from_stream(php_stream *stream, char *input, zval *
 			break;
 	}
 
-	if (result) {
+	if (result &&
+		result->width <= ZEND_LONG_MAX &&
+		result->height <= ZEND_LONG_MAX &&
+		result->bits <= ZEND_LONG_MAX &&
+		result->channels <= ZEND_LONG_MAX)
+	{
 		char temp[MAX_LENGTH_OF_LONG * 2 + sizeof("width=\"\" height=\"\"")];
 		array_init(return_value);
 		add_index_long(return_value, 0, result->width);