|
|
php.net | support | documentation | report a bug | advanced search | search howto | statistics | random bug | login |
PatchesPull RequestsHistoryAllCommentsChangesGit/SVN commits
[2015-11-14 22:55 UTC] ab@php.net
-Status: Open
+Status: Closed
-Assigned To:
+Assigned To: ab
[2015-11-14 22:55 UTC] ab@php.net
[2015-11-20 01:03 UTC] ab@php.net
[2015-12-07 20:59 UTC] fernando at inova2b dot com dot br
[2015-12-07 21:32 UTC] stas@php.net
-Type: Security
+Type: Bug
[2016-07-20 11:35 UTC] davey@php.net
|
|||||||||||||||||||||||||||
Copyright © 2001-2025 The PHP GroupAll rights reserved. |
Last updated: Mon Nov 03 07:00:01 2025 UTC |
Description: ------------ ``` static void zend_throw_or_error(int fetch_type, zend_class_entry *exception_ce, const char *format, ...) /* {{{ */ { va_list va; char *message = NULL; va_start(va, format); zend_vspprintf(&message, 0, format, va); if (fetch_type & ZEND_FETCH_CLASS_EXCEPTION) { zend_throw_error(exception_ce, message); } else { zend_error(E_ERROR, message); } efree(message); va_end(va); } ``` PoC: ``` $db = new PDO('sqlite::memory:'); $st = $db->query('SELECT 1'); $re = $st->fetchObject('%Z'); ``` fix: ``` zend_error(E_ERROR, "%s", message); ```