php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #66873 A reproductible crash in UConverter when given invalid encoding
Submitted: 2014-03-09 20:22 UTC Modified: 2014-03-17 08:21 UTC
From: contact at dimitrifourny dot com Assigned: stas (profile)
Status: Closed Package: Reproducible crash
PHP Version: 5.6.0alpha3 OS: *
Private report: No CVE-ID: None
View Developer Edit
 [2014-03-09 20:22 UTC] contact at dimitrifourny dot com 
Description:
------------
Hello!

I have found a possible security issues.
Can you fix it to make a more stable PHP version please?

Thank you for your good job!

Expected result:
----------------
<?php
    $o = new UConverter(1, 1);
    $o->toUCallback(1, 1, 1, $b);
?>


Actual result:
--------------
A nice crash on Windows 7 x64.

Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2014-03-10 06:24 UTC] pajoye@php.net
-Status: Open +Status: Assigned -Assigned To: +Assigned To: stas
 [2014-03-10 06:24 UTC] pajoye@php.net 
Stas, can you look at it pls?
 [2014-03-11 01:21 UTC] stas@php.net
-Operating System: Windows7 x64 +Operating System: *
 [2014-03-11 01:21 UTC] stas@php.net 
Reproducible on Mac OS X too.
 [2014-03-17 08:20 UTC] stas@php.net 
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=66bf216c66b36c3a5379368747f21470b4dd3d27
Log: Fix bug #66873: check if obj-&gt;src is set
 [2014-03-17 08:20 UTC] stas@php.net
-Status: Assigned +Status: Closed
 [2014-03-17 08:21 UTC] stas@php.net
-Summary: A reproductible crash in PHP 5.6 (5.6.0alpha3) +Summary: A reproductible crash in UConverter when given invalid encoding -Status: Closed +Status: Assigned
 [2014-03-17 08:21 UTC] stas@php.net
-Status: Assigned +Status: Closed
 [2014-03-17 08:21 UTC] stas@php.net 
The fix for this bug has been committed.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.

 For Windows:

http://windows.php.net/snapshots/
 
Thank you for the report, and for helping us make PHP better.
 [2014-03-17 10:06 UTC] ab@php.net 
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=66bf216c66b36c3a5379368747f21470b4dd3d27
Log: Fix bug #66873: check if obj-&gt;src is set
 [2014-03-17 10:19 UTC] ab@php.net 
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=66bf216c66b36c3a5379368747f21470b4dd3d27
Log: Fix bug #66873: check if obj-&gt;src is set
 [2014-04-10 04:47 UTC] tyrael@php.net 
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=66bf216c66b36c3a5379368747f21470b4dd3d27
Log: Fix bug #66873: check if obj-&gt;src is set
 
PHP Copyright © 2001-2025 The PHP Group
All rights reserved. 		Last updated: Fri Oct 24 01:00:02 2025 UTC