|  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #45491 bytea values don't get escaped in pg_query_params and pg_execute
Submitted: 2008-07-12 08:32 UTC Modified: 2008-07-12 13:38 UTC
From: php at benjaminschulz dot com Assigned:
Status: Not a bug Package: PostgreSQL related
PHP Version: 5.3CVS-2008-07-12 (CVS) OS: linux, darwin
Private report: No CVE-ID: None
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If this is not your bug, you can add a comment by following this link.
If this is your bug, but you forgot your password, you can retrieve your password here.
Bug Type:
From: php at benjaminschulz dot com
New email:
PHP Version: OS:


 [2008-07-12 08:32 UTC] php at benjaminschulz dot com
It's not possible to pass bytea values to pg_query_params or pg_execute. It seems like ext/pgsql does no escaping where it should. ext/pgsql is built against libpq 8.3.1.

Reproduce code:
$conn = pg_connect(...);
pg_set_client_encoding($conn, 'UTF8');
$res = pg_query_params('SELECT $1::bytea', array("\xf6"));

Expected result:
Some binary string :)

Actual result:
Warning: pg_query_params(): Query failed: ERROR:  invalid byte sequence for encoding "UTF8": 0xf6
HINT:  This error can also happen if the byte sequence does not match the encoding expected by the server, which is controlled by "client_encoding". in ...


Add a Patch

Pull Requests

Add a Pull Request


AllCommentsChangesGit/SVN commitsRelated reports
 [2008-07-12 13:38 UTC]
Thank you for taking the time to write to us, but this is not
a bug. Please double-check the documentation available at and the instructions on how to report
a bug at

pgsql expects a utf-8 string there, got something else and fails -> no PHP issue
PHP Copyright © 2001-2022 The PHP Group
All rights reserved.
Last updated: Fri Aug 12 09:05:46 2022 UTC