|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2007-01-20 19:35 UTC] tony2001@php.net
[2007-01-21 00:12 UTC] giovanni at giacobbi dot net
|
|||||||||||||||||||||||||||
Copyright © 2001-2024 The PHP GroupAll rights reserved. |
Last updated: Sat Dec 21 17:01:58 2024 UTC |
Description: ------------ The following code snippet produces a double free error. I don't think my glibc/linux versions matter, anyway I can provide them on request. An interesting thing is that the bug manifests itself only at the 65536th iteration. Removing any reference to the $index variable doesn't reproduce the bug any longer. Reproduce code: --------------- function m($index) { is_int($index); global $x; return $x[$index]; } $i = 0; $x = array("x"); while (m($i)) { $p[] = m($i); } Actual result: -------------- *** glibc detected *** php: double free or corruption (fasttop): 0x09d89a08 ***