php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #51577 Uninitialized memory reference with oci_bind_array_by_name
Submitted: 2010-04-16 22:34 UTC Modified: 2010-04-16 22:41 UTC
From: sixd@php.net Assigned: sixd (profile)
Status: Closed Package: OCI8 related
PHP Version: 5.3SVN-2010-04-16 (SVN) OS: n/a
Private report: No CVE-ID: None
 [2010-04-16 22:34 UTC] sixd@php.net
Description:
------------
gcov.php.net shows all oci_bind_array_by_name tests giving a trace like:
==14231== Conditional jump or move depends on uninitialised value(s)
==14231==    at 0x8542271: php_oci_bind_pre_exec (oci8_statement.c:816)
==14231==    by 0x8AFE59E: zend_hash_apply_with_argument (zend_hash.c:697)
==14231==    by 0x853DD3F: php_oci_statement_execute (oci8_statement.c:456)
==14231==    by 0x8557E7E: zif_oci_execute (oci8_interface.c:1295)
==14231==    by 0x8B38E49: zend_do_fcall_common_helper_SPEC 
(zend_vm_execute.h:313)
==14231==    by 0x8B43391: ZEND_DO_FCALL_SPEC_CONST_HANDLER 
(zend_vm_execute.h:1603)
==14231==    by 0x8B378EE: execute (zend_vm_execute.h:104)
==14231==    by 0x8AE2869: zend_execute_scripts (zend.c:1194)
==14231==    by 0x8A10176: php_execute_script (main.c:2260)
==14231==    by 0x8CAE9E9: main (php_cli.c:1192)
==14231== 
==14231== Use of uninitialised value of size 4
==14231==    at 0x854227A: php_oci_bind_pre_exec (oci8_statement.c:816)
==14231==    by 0x8AFE59E: zend_hash_apply_with_argument (zend_hash.c:697)
==14231==    by 0x853DD3F: php_oci_statement_execute (oci8_statement.c:456)
==14231==    by 0x8557E7E: zif_oci_execute (oci8_interface.c:1295)
==14231==    by 0x8B38E49: zend_do_fcall_common_helper_SPEC 
(zend_vm_execute.h:313)
==14231==    by 0x8B43391: ZEND_DO_FCALL_SPEC_CONST_HANDLER 
(zend_vm_execute.h:1603)
==14231==    by 0x8B378EE: execute (zend_vm_execute.h:104)
==14231==    by 0x8AE2869: zend_execute_scripts (zend.c:1194)
==14231==    by 0x8A10176: php_execute_script (main.c:2260)
==14231==    by 0x8CAE9E9: main (php_cli.c:1192)
==14231== 

This is due to the oci_bind_by_name type check introduced 
http://svn.php.net/viewvc?view=revision&revision=289264
This problem is present in OCI8 1.4.0 and 1.4.1


Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2010-04-16 22:36 UTC] sixd@php.net
Automatic comment from SVN on behalf of sixd
Revision: http://svn.php.net/viewvc/?view=revision&revision=298086
Log: Fixed Bug #51577 (Uninitialized memory reference with oci_bind_array_by_name)
 [2010-04-16 22:41 UTC] sixd@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: sixd
 [2010-04-16 22:41 UTC] sixd@php.net
This bug has been fixed in SVN.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.
 
Thank you for the report, and for helping us make PHP better.

Fixed in OCI8 1.4.2 and PHP 5.3.3
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Tue Mar 19 10:01:30 2024 UTC