PHP :: Bug #51577 :: Uninitialized memory reference with oci_bind_array_by

Bug #51577	Uninitialized memory reference with oci_bind_array_by_name
Submitted:	2010-04-16 22:34 UTC	Modified:	2010-04-16 22:41 UTC
From:	sixd@php.net	Assigned:	sixd (profile)
Status:	Closed	Package:	OCI8 related
PHP Version:	5.3SVN-2010-04-16 (SVN)	OS:	n/a
Private report:	No	CVE-ID:	None

View Developer Edit

[2010-04-16 22:34 UTC] sixd@php.net

Description:
------------
gcov.php.net shows all oci_bind_array_by_name tests giving a trace like:
==14231== Conditional jump or move depends on uninitialised value(s)
==14231==    at 0x8542271: php_oci_bind_pre_exec (oci8_statement.c:816)
==14231==    by 0x8AFE59E: zend_hash_apply_with_argument (zend_hash.c:697)
==14231==    by 0x853DD3F: php_oci_statement_execute (oci8_statement.c:456)
==14231==    by 0x8557E7E: zif_oci_execute (oci8_interface.c:1295)
==14231==    by 0x8B38E49: zend_do_fcall_common_helper_SPEC 
(zend_vm_execute.h:313)
==14231==    by 0x8B43391: ZEND_DO_FCALL_SPEC_CONST_HANDLER 
(zend_vm_execute.h:1603)
==14231==    by 0x8B378EE: execute (zend_vm_execute.h:104)
==14231==    by 0x8AE2869: zend_execute_scripts (zend.c:1194)
==14231==    by 0x8A10176: php_execute_script (main.c:2260)
==14231==    by 0x8CAE9E9: main (php_cli.c:1192)
==14231== 
==14231== Use of uninitialised value of size 4
==14231==    at 0x854227A: php_oci_bind_pre_exec (oci8_statement.c:816)
==14231==    by 0x8AFE59E: zend_hash_apply_with_argument (zend_hash.c:697)
==14231==    by 0x853DD3F: php_oci_statement_execute (oci8_statement.c:456)
==14231==    by 0x8557E7E: zif_oci_execute (oci8_interface.c:1295)
==14231==    by 0x8B38E49: zend_do_fcall_common_helper_SPEC 
(zend_vm_execute.h:313)
==14231==    by 0x8B43391: ZEND_DO_FCALL_SPEC_CONST_HANDLER 
(zend_vm_execute.h:1603)
==14231==    by 0x8B378EE: execute (zend_vm_execute.h:104)
==14231==    by 0x8AE2869: zend_execute_scripts (zend.c:1194)
==14231==    by 0x8A10176: php_execute_script (main.c:2260)
==14231==    by 0x8CAE9E9: main (php_cli.c:1192)
==14231== 

This is due to the oci_bind_by_name type check introduced 
http://svn.php.net/viewvc?view=revision&revision=289264
This problem is present in OCI8 1.4.0 and 1.4.1

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2010-04-16 22:36 UTC] sixd@php.net

Automatic comment from SVN on behalf of sixd
Revision: http://svn.php.net/viewvc/?view=revision&amp;revision=298086
Log: Fixed Bug #51577 (Uninitialized memory reference with oci_bind_array_by_name)

[2010-04-16 22:41 UTC] sixd@php.net

-Status: Open +Status: Closed -Assigned To: +Assigned To: sixd

[2010-04-16 22:41 UTC] sixd@php.net

This bug has been fixed in SVN.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.
 
Thank you for the report, and for helping us make PHP better.

Fixed in OCI8 1.4.2 and PHP 5.3.3

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Sat Feb 22 16:01:29 2025 UTC