PHP :: Bug #31031 :: GD segfault in wrong library

Bug #31031	GD segfault in wrong library
Submitted:	2004-12-09 03:30 UTC	Modified:	2004-12-09 23:32 UTC
From:	jan at horde dot org	Assigned:
Status:	Not a bug	Package:	GD related
PHP Version:	4.3.9	OS:	Linux
Private report:	No	CVE-ID:	None

View Developer Edit

[2004-12-09 03:30 UTC] jan at horde dot org

Description:
------------
I get this backtrace:

Program received signal SIGSEGV, Segmentation fault.
0x403e7be5 in gdImageDestroy () from /usr/lib/libgd.so.4
(gdb) bt
#0  0x403e7be5 in gdImageDestroy () from /usr/lib/libgd.so.4
#1  0x4070d991 in php_free_gd_image (rsrc=0x8779434)
    at /root/working-set/php-4.3.9/ext/gd/gd.c:310
#2  0x4084496d in list_entry_destructor (ptr=0x8779434)
    at /root/working-set/php-4.3.9/Zend/zend_list.c:177
#3  0x408435b9 in zend_hash_apply_deleter (ht=0x40a23d00, p=0x87790e4)
    at /root/working-set/php-4.3.9/Zend/zend_hash.c:611
#4  0x4084372a in zend_hash_graceful_reverse_destroy (ht=0x40a23d00)
    at /root/working-set/php-4.3.9/Zend/zend_hash.c:677
#5  0x40844adf in zend_destroy_rsrc_list (ht=0x40a23d00)
    at /root/working-set/php-4.3.9/Zend/zend_list.c:233
#6  0x40834e4d in shutdown_executor ()
    at /root/working-set/php-4.3.9/Zend/zend_execute_API.c:213
#7  0x4083e4fa in zend_deactivate ()
    at /root/working-set/php-4.3.9/Zend/zend.c:667
#8  0x40810d2f in php_request_shutdown (dummy=0x0)
    at /root/working-set/php-4.3.9/main/main.c:996
#9  0x40857ef3 in apache_php_module_main (r=0x8160c4c, display_source_mode=0)
    at /root/working-set/php-4.3.9/sapi/apache/sapi_apache.c:60
#10 0x40858b7f in send_php (r=0x8160c4c, display_source_mode=0, filename=0x0)
    at /root/working-set/php-4.3.9/sapi/apache/mod_php4.c:621
#11 0x40858be5 in send_parsed_php (r=0x8160c4c)
    at /root/working-set/php-4.3.9/sapi/apache/mod_php4.c:636
#12 0x08096d19 in ap_invoke_handler ()
#13 0x080adabf in process_request_internal ()
#14 0x080adb32 in ap_process_request ()
#15 0x080a4016 in child_main ()
#16 0x080a41f5 in make_child ()
#17 0x080a4376 in startup_children ()
#18 0x080a4a1d in standalone_main ()
#19 0x080a52ac in main ()
#20 0x401b37ee in __libc_start_main () from /lib/libc.so.6

when I try to call imageCreateTrueColor for a large image on a certain system. The strange thing is that it segfaults in /usr/lib/libgd.so.4, though the PHP version was build with the bundled GD library, and that's what the phpinfo page shows too.

Patches

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2004-12-09 08:10 UTC] derick@php.net

What does ldd /path/to/mod_php4.so show?

[2004-12-09 11:57 UTC] jan at horde dot org

fra1:~/working-set/php-4.3.9 # ldd /usr/local/apache/libexec/libphp4.so
        libcrypt.so.1 => /lib/libcrypt.so.1 (0x40387000)
        libc-client.so => /usr/lib/libc-client.so (0x403b4000)
        libssl.so.0.9.6 => /usr/lib/libssl.so.0.9.6 (0x40464000)
        libcrypto.so.0.9.6 => /usr/lib/libcrypto.so.0.9.6 (0x40492000)
        libexpat.so.0 => /usr/lib/libexpat.so.0 (0x4055b000)
        libmysqlclient.so.10 => /usr/lib/libmysqlclient.so.10 (0x4057e000)
        libmcrypt.so.4 => /usr/local/lib/libmcrypt.so.4 (0x405b0000)
        libltdl.so.3 => /usr/lib/libltdl.so.3 (0x405e6000)
        libpam.so.0 => /lib/libpam.so.0 (0x405ed000)
        libfreetype.so.6 => /usr/lib/libfreetype.so.6 (0x405f6000)
        libpng.so.2 => /usr/lib/libpng.so.2 (0x4062a000)
        libz.so.1 => /lib/libz.so.1 (0x4065c000)
        libjpeg.so.62 => /usr/lib/libjpeg.so.62 (0x4066b000)
        libresolv.so.2 => /lib/libresolv.so.2 (0x4068b000)
        libm.so.6 => /lib/libm.so.6 (0x4069d000)
        libdl.so.2 => /lib/libdl.so.2 (0x406bf000)
        libnsl.so.1 => /lib/libnsl.so.1 (0x406c3000)
        libxml2.so.2 => /usr/lib/libxml2.so.2 (0x406d9000)
        libc.so.6 => /lib/libc.so.6 (0x40793000)
        /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x80000000)

[2004-12-09 12:05 UTC] derick@php.net

And do you have any other Apache modules loaded?

[2004-12-09 12:24 UTC] jan at horde dot org

Yes:
mod_php4, mod_php3, mod_fastcgi, mod_ssl, mod_setenvif, mod_so, mod_unique_id, mod_expires, mod_auth, mod_access, mod_rewrite, mod_alias, mod_userdir, mod_actions, mod_imap, mod_asis, mod_cgi, mod_dir, mod_autoindex, mod_include, mod_status, mod_negotiation, mod_mime, mod_log_agent, mod_log_config, mod_env, http_core

[2004-12-09 12:50 UTC] derick@php.net

And I want to bet that mod_php3 is linked against an external libgd... this will not work and segfault. If that's not the case, reopen the bug.

[2004-12-09 23:32 UTC] jan at horde dot org

Yep, you were right. Thanks.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Sat Aug 17 09:01:28 2024 UTC