PHP :: Bug #51224 :: Buffer overflows in pdc

Bug #51224	Buffer overflows in pdc_odbc driver
Submitted:	2010-03-06 16:21 UTC	Modified:	2010-03-06 16:46 UTC
From:	dominique-php dot net at leuenberger dot net	Assigned:
Status:	Closed	Package:	PDO related
PHP Version:	5.3.2	OS:	openSUSE 11.3 (devel)
Private report:	No	CVE-ID:	None

View Developer Edit

[2010-03-06 16:21 UTC] dominique-php dot net at leuenberger dot net

Description:
------------
While building with gcc 4.5 the followin 'warnings' can be observed in the build log:

1)
In function 'strcpy',
    inlined from 'odbc_handle_set_attr' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_driver.c:349:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
/usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c: In function 'odbc_stmt_param_hook':


2)
In function 'strcpy',
    inlined from 'odbc_stmt_get_attr' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c:798:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
In function 'strcpy',
    inlined from 'odbc_stmt_set_param' at /usr/src/packages/BUILD/php-5.3.0/ext/pdo_odbc/odbc_stmt.c:766:10:
/usr/include/bits/string3.h:107:3: warning: call to __builtin___strcpy_chk will always overflow destination buffer
nation buffer




Test script:
---------------
regular build using gcc 4.5 reveals it.

Expected result:
----------------
No buffer overflow warnings

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports

[2010-03-06 16:46 UTC] dominique-php dot net at leuenberger dot net

Has been fixed in SVN already, commits
284097 and 284099

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2025 The PHP Group All rights reserved.	Last updated: Thu Apr 24 08:01:27 2025 UTC