|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2011-10-28 19:50 UTC] ralph at ralphschindler dot com
[2011-11-08 04:45 UTC] stas@php.net
[2011-11-08 04:45 UTC] stas@php.net
-Status: Open
+Status: Feedback
[2011-11-19 04:59 UTC] stas@php.net
[2011-11-19 04:59 UTC] stas@php.net
-Status: Feedback
+Status: Closed
-Assigned To:
+Assigned To: stas
[2011-11-19 04:59 UTC] stas@php.net
[2012-04-18 09:47 UTC] laruence@php.net
[2012-07-24 23:38 UTC] rasmus@php.net
[2013-11-17 09:35 UTC] laruence@php.net
|
|||||||||||||||||||||||||||||||||||||
Copyright © 2001-2024 The PHP GroupAll rights reserved. |
Last updated: Thu Nov 21 15:01:30 2024 UTC |
Description: ------------ Stubs who's content before the __HALT_COMPILER(); registers between 1007 - 1023 bytes (or an interval thereof) will force the function phar_open_from_fp() to incorrectly throw an MAPPHAR_ALLOC_FAIL() or: Fatal error: Uncaught exception 'UnexpectedValueException' with message 'internal corruption of phar "xxx/test.phar" (__HALT_COMPILER(); not found)' in xxx/test.php:5 This is due to an incorrect index in the memmove() call inside the function that shifts the buffer to inspect the contents for the __HALT_COMPILER() token. THis bug is exposed when opening a phar and iterating the contents. Attached is a sample phar, test script, and patch Test script: --------------- <?php $phar = __DIR__ . '/test.phar'; foreach (new RecursiveIteratorIterator(new Phar($phar, null, 'test.phar')) as $item) { echo $item . PHP_EOL; } ?> Expected result: ---------------- Iterate the results. Actual result: -------------- Fatal error: Uncaught exception 'UnexpectedValueException' with message 'internal corruption of phar "xxx/test.phar" (__HALT_COMPILER(); not found)' in xxx/test.php:5