PHP :: Bug #1955 :: SEGV for httpd on error

Bug #1955	SEGV for httpd on error_log
Submitted:	1999-08-04 03:13 UTC	Modified:	1999-09-02 18:37 UTC
From:	mtippett at ticons dot com dot au	Assigned:	coar (profile)
Status:	Closed	Package:	Reproducible Crash
PHP Version:	3.0.12	OS:	Solaris 2.6/Apache 1.3.6
Private report:	No	CVE-ID:	None

View Add Comment Developer Edit

Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.

php.net Username: php.net Password:

Quick Fix:	(description)
	Block user comment
Status:		Assign to:
Package:
Bug Type:
Summary:
From:	mtippett at ticons dot com dot au
New email:
PHP Version:		OS:

New/Additional Comment:

[1999-08-04 03:13 UTC] mtippett at ticons dot com dot au

The following snippett intermitently causes a SEGV.

<?
        $string = "+%28E";

        error_log($string,0);
?>

Looking at other effects of having % in error_log strings it would
appear that error_log uses in some way ?printf(), but does not
have % characters escaped before hand.

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[1999-09-02 18:37 UTC] coar at cvs dot php dot net

You're correct; the problem was that the string was being passed to something that
might treat it as a printf format, rather than running it through "%s" first.  Fixed
in CVS.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Sat Apr 27 18:01:35 2024 UTC