PHP :: Bug #1955 :: SEGV for httpd on error

Bug #1955	SEGV for httpd on error_log
Submitted:	1999-08-04 03:13 UTC	Modified:	1999-09-02 18:37 UTC
From:	mtippett at ticons dot com dot au	Assigned:	coar (profile)
Status:	Closed	Package:	Reproducible Crash
PHP Version:	3.0.12	OS:	Solaris 2.6/Apache 1.3.6
Private report:	No	CVE-ID:	None

View Add Comment Developer Edit

[1999-08-04 03:13 UTC] mtippett at ticons dot com dot au

The following snippett intermitently causes a SEGV.

<?
        $string = "+%28E";

        error_log($string,0);
?>

Looking at other effects of having % in error_log strings it would
appear that error_log uses in some way ?printf(), but does not
have % characters escaped before hand.

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[1999-09-02 18:37 UTC] coar at cvs dot php dot net

You're correct; the problem was that the string was being passed to something that
might treat it as a printf format, rather than running it through "%s" first.  Fixed
in CVS.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Sat Apr 27 17:01:29 2024 UTC