php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #51224 Buffer overflows in pdc_odbc driver
Submitted: 2010-03-06 16:21 UTC Modified: 2010-03-06 16:46 UTC
From: dominique-php dot net at leuenberger dot net Assigned:
Status: Closed Package: PDO related
PHP Version: 5.3.2 OS: openSUSE 11.3 (devel)
Private report: No CVE-ID: None
 [2010-03-06 16:21 UTC] dominique-php dot net at leuenberger dot net
Description:
------------
While building with gcc 4.5 the followin 'warnings' can be observed in the build log:

1)
In function 'strcpy',
    inlined from 'odbc_handle_set_attr' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_driver.c:349:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
/usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c: In function 'odbc_stmt_param_hook':


2)
In function 'strcpy',
    inlined from 'odbc_stmt_get_attr' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c:798:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
In function 'strcpy',
    inlined from 'odbc_stmt_set_param' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c:766:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
nation buffer




Test script:
---------------
regular build using gcc 4.5 reveals it.

Expected result:
----------------
No buffer overflow warnings


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2010-03-06 16:46 UTC] dominique-php dot net at leuenberger dot net
Has been fixed in SVN already, commits
284097 and 284099
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Thu Dec 26 23:01:28 2024 UTC