php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #63824 segfault when call svn_utf_cstring_to_utf8 failed.
Submitted: 2012-12-21 05:58 UTC Modified: 2013-12-13 07:52 UTC
Votes:1
Avg. Score:2.0 ± 0.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:1 (100.0%)
From: mountkin at gmail dot com Assigned:
Status: Open Package: svn (PECL)
PHP Version: Irrelevant OS: centos
Private report: No CVE-ID: None
 [2012-12-21 05:58 UTC] mountkin at gmail dot com
Description:
------------
The SVN module http://pecl.php.net/package/svn  calls svn_utf_cstring_to_utf8 to 
convert string to utf-8 encoding without checking the return value of 
svn_utf_cstring_to_utf8.  
When svn_utf_cstring_to_utf8 failed, the *dist pointer will be NULL. Thus the 
following call to svn_path_canonicalize would lead to a segfault.

Test script:
---------------
Call functions like svn_fs_is_file with a GBK encoding filename will cause segfault.



Patches

fix-segault-caused-by-svn_utf_cstring_to_utf8 (last revision 2012-12-21 06:00 UTC by mountkin at gmail dot com)

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2012-12-24 07:25 UTC] laruence@php.net
-Assigned To: +Assigned To: wez
 [2013-12-13 07:52 UTC] wez@php.net
-Status: Assigned +Status: Open -Assigned To: wez +Assigned To:
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Wed Dec 04 09:01:30 2024 UTC