php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #29435 Segmentation Fault 11 in strlen()
Submitted: 2004-07-28 22:37 UTC Modified: 2004-08-16 01:00 UTC
Votes:1
Avg. Score:3.0 ± 0.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:0 (0.0%)
From: rob at alterlinks dot fr Assigned:
Status: No Feedback Package: Reproducible crash
PHP Version: 5.0.0 OS: Linux Mandrake 2.4.19-16
Private report: No CVE-ID: None
View Add Comment Developer Edit
Have you experienced this issue?
Rate the importance of this bug to you:

 [2004-07-28 22:37 UTC] rob at alterlinks dot fr 
Description:
------------
Tested with PHP5.0.0 and later Snapshots with Apache 1.3.31 and 2.0.50, systematically a Segmentation Fault 11 (error_log Apache), blank page is shown.
OK with PHP4.3.8.

Result of debug :

[root@bopper logs]# gdb ../bin/httpd
GNU gdb 5.2.1-2mdk (Mandrake Linux)
Copyright 2002 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you are
welcome to change it and/or distribute copies of it under certain conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for details.
This GDB was configured as "i586-mandrake-linux-gnu"...
(gdb) run -X
Starting program: /usr/local/free_websites/bin/httpd -X

Program received signal SIGSEGV, Segmentation fault.
0x40186bc3 in strlen () from /lib/i686/libc.so.6
(gdb)


Result of bt


#0  0x40186bc3 in strlen () from /lib/i686/libc.so.6
#1  0x40473993 in add_property_string_ex (arg=0x1, key=0x82a4664 "\001", key_len=0,
    str=0x1 <Address 0x1 out of bounds>, duplicate=135993744) at /download/php5-200407261830/Zend/zend_API.c:1132
#2  0x4032b406 in zif_mysql_fetch_field (ht=1, return_value=0x82a4664, this_ptr=0x0, return_value_used=1)
    at /download/php5-200407261830/ext/mysql/php_mysql.c:2250
#3  0x40497feb in zend_do_fcall_common_helper (execute_data=0xbfffd280, opline=0x820b7dc, op_array=0x824cd28)
    at /download/php5-200407261830/Zend/zend_execute.c:2699
#4  0x40498760 in zend_do_fcall_handler (execute_data=0xbfffd280, opline=0x820b7dc, op_array=0x824cd28)
    at /download/php5-200407261830/Zend/zend_execute.c:2831
#5  0x4049460c in execute (op_array=0x824cd28) at /download/php5-200407261830/Zend/zend_execute.c:1391
#6  0x40498184 in zend_do_fcall_common_helper (execute_data=0xbfffd350, opline=0x4088fb70, op_array=0x829207c)
    at /download/php5-200407261830/Zend/zend_execute.c:2728
#7  0x40498652 in zend_do_fcall_by_name_handler (execute_data=0xbfffd350, opline=0x4088fb70, op_array=0x829207c)
    at /download/php5-200407261830/Zend/zend_execute.c:2813
#8  0x4049460c in execute (op_array=0x829207c) at /download/php5-200407261830/Zend/zend_execute.c:1391
#9  0x40470841 in zend_execute_scripts (type=8, retval=0x0, file_count=3)
    at /download/php5-200407261830/Zend/zend.c:1068
#10 0x404295b2 in php_execute_script (primary_file=0xbffff600) at /download/php5-200407261830/main/main.c:1631
#11 0x404a149e in php_handler (r=0x842ab78) at /download/php5-200407261830/sapi/apache2handler/sapi_apache2.c:535
#12 0x0807e18b in ap_run_handler (r=0x842ab78) at config.c:152
#13 0x0807e72e in ap_invoke_handler (r=0x6) at config.c:358
#14 0x0806d1fb in ap_process_request (r=0x842ab78) at http_request.c:246
#15 0x08068fef in ap_process_http_connection (c=0x81f2058) at http_core.c:250
#16 0x08087e2b in ap_run_process_connection (c=0x81f2058) at connection.c:42
#17 0x0807cbf1 in child_main (child_num_arg=4) at prefork.c:609
#18 0x0807cdad in make_child (s=0x80bb120, slot=0) at prefork.c:649
#19 0x0807ce0e in startup_children (number_to_start=5) at prefork.c:721
#20 0x0807d553 in ap_mpm_run (_pconf=0x80b89f0, plog=0x80f0ad0, s=0x80b69e8) at prefork.c:940
#21 0x0808299a in main (argc=2, argv=0xbffff994) at main.c:617
#22 0x4012a082 in __libc_start_main () from /lib/i686/libc.so.6
(gdb)

Reproduce code:
---------------
phpMyAdmin script, page sql.php

Expected result:
----------------
Display of contents of Database tables

Actual result:
--------------
Segmentation Fault 11 (no coredump), see gdb results (bt)

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2004-07-29 00:57 UTC] iliaa@php.net 
Thank you for this bug report. To properly diagnose the problem, we
need a short but complete example script to be able to reproduce
this bug ourselves. 

A proper reproducing script starts with <?php and ends with ?>,
is max. 10-20 lines long and does not require any external 
resources such as databases, etc.

If possible, make the script source available online and provide
an URL to it here. Try avoid embedding huge scripts into the report.
 [2004-08-16 01:00 UTC] php-bugs at lists dot php dot net 
No feedback was provided for this bug for over a week, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Sun May 12 19:01:30 2024 UTC