php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

Bug #79902 *** Error in `/usr/bin/php': free(): invalid pointer
Submitted: 2020-07-27 11:38 UTC Modified: 2021-10-10 04:22 UTC
Votes:2
Avg. Score:4.0 ± 1.0
Reproduced:1 of 1 (100.0%)
Same Version:1 (100.0%)
Same OS:1 (100.0%)
From: pranabesh_paul at yahoo dot co dot in Assigned: cmb (profile)
Status: No Feedback Package: SNMP related
PHP Version: 7.3 OS: CentOS 7
Private report: No CVE-ID: None
View Add Comment Developer Edit
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If this is not your bug, you can add a comment by following this link.
If this is your bug, but you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: pranabesh_paul at yahoo dot co dot in
New email:
PHP Version: OS:

 

 [2020-07-27 11:38 UTC] pranabesh_paul at yahoo dot co dot in 
Description:
------------
root@NPD04DVDNCVC01:~ [5.7.2.15] [09:34:24] $ ls

kafka-server-start.sh.orig.1554292897  

*** Error in `/usr/bin/php': free(): invalid pointer: 0x00007facb0529818 ***

======= Backtrace: =========

/lib64/libc.so.6(+0x81609)[0x7facb01e4609]

/usr/lib64/libnetsnmp.so.31(shutdown_mib+0x96)[0x7fac99327026]

/usr/lib64/libnetsnmp.so.31(snmp_shutdown+0x2b)[0x7fac993432cb]

/opt/remi/php73/root/usr/lib64/php/modules/snmp.so(zm_shutdown_snmp+0x10)[0x7fac9960bc20]

/usr/bin/php(+0x2f4617)[0x55c49991b617]

/usr/bin/php(+0x2ed8cc)[0x55c4999148cc]

/usr/bin/php(zend_hash_graceful_reverse_destroy+0x101)[0x55c4999264d1]

/usr/bin/php(+0x2ee6f3)[0x55c4999156f3]

/usr/bin/php(php_module_shutdown+0x32)[0x55c4998b55b2]

/usr/bin/php(+0xee090)[0x55c499715090]

/lib64/libc.so.6(__libc_start_main+0xf5)[0x7facb0185495]

/usr/bin/php(+0xee265)[0x55c499715265]

======= Memory map: ========

55c499627000-55c499a8b000 r-xp 00000000 08:03 2830551                    /opt/remi/php73/root/usr/bin/php

55c499c8a000-55c499d16000 r--p 00463000 08:03 2830551                    /opt/remi/php73/root/usr/bin/php

55c499d16000-55c499d18000 rw-p 004ef000 08:03 2830551                    /opt/remi/php73/root/usr/bin/php

55c499d18000-55c499d35000 rw-p 00000000 00:00 0

55c49ae58000-55c49b35a000 rw-p 00000000 00:00 0                          [heap]

7fac78000000-7fac78021000 rw-p 00000000 00:00 0

7fac78021000-7fac7c000000 ---p 00000000 00:00 0

7fac7d4d4000-7fac7d4de000 r-xp 00000000 08:03 3226119010                 /usr/lib64/libnuma.so.1

7fac7d4de000-7fac7d6de000 ---p 0000a000 08:03 3226119010                 /usr/lib64/libnuma.so.1

7fac7d6de000-7fac7d6df000 r--p 0000a000 08:03 3226119010                 /usr/lib64/libnuma.so.1

7fac7d6df000-7fac7d6e0000 rw-p 0000b000 08:03 3226119010                 /usr/lib64/libnuma.so.1

7fac7d6e0000-7fac85356000 r-xp 00000000 08:03 2161666226                 /usr/lib/oracle/19.3/client64/lib/libociei.so

7fac85356000-7fac85555000 ---p 07c76000 08:03 2161666226                 /usr/lib/oracle/19.3/client64/lib/libociei.so

7fac85555000-7fac85556000 r--p 07c75000 08:03 2161666226                 /usr/lib/oracle/19.3/client64/lib/libociei.so

7fac85556000-7fac85557000 rw-p 07c76000 08:03 2161666226                 /usr/lib/oracle/19.3/client64/lib/libociei.so

7fac85557000-7fac85563000 r-xp 00000000 08:03 3224693215                 /usr/lib64/libnss_files-2.17.so

7fac85563000-7fac85762000 ---p 0000c000 08:03 3224693215                 /usr/lib64/libnss_files-2.17.so

7fac85762000-7fac85763000 r--p 0000b000 08:03 3224693215                 /usr/lib64/libnss_files-2.17.so

7fac85763000-7fac85764000 rw-p 0000c000 08:03 3224693215                 /usr/lib64/libnss_files-2.17.so

7fac85764000-7fac8576a000 rw-p 00000000 00:00 0

7fac870da000-7fac875cd000 r-xp 00000000 08:03 1082344367                 /usr/lib64/mysql/libmysqlclient.so.20.3.11

7fac875cd000-7fac877cd000 ---p 004f3000 08:03 1082344367                 /usr/lib64/mysql/libmysqlclient.so.20.3.11

7fac877cd000-7fac877ec000 r--p 004f3000 08:03 1082344367                 /usr/lib64/mysql/libmysqlclient.so.20.3.11

7fac877ec000-7fac8786f000 rw-p 00512000 08:03 1082344367                 /usr/lib64/mysql/libmysqlclient.so.20.3.11

7fac8786f000-7fac87877000 rw-p 00000000 00:00 0

7fac87877000-7fac878a1000 r-xp 00000000 08:03 1082257141                 /usr/local/lib/libcommand.so

7fac878a1000-7fac87aa0000 ---p 0002a000 08:03 1082257141                 /usr/local/lib/libcommand.so

7fac87aa0000-7fac87aa1000 r--p 00029000 08:03 1082257141                 /usr/local/lib/libcommand.so

7fac87aa1000-7fac87aa2000 rw-p 0002a000 08:03 1082257141                 /usr/local/lib/libcommand.so

7fac87aa2000-7fac87aa6000 r-xp 00000000 08:03 1080566668                 /usr/local/lib/libmasterslave.so

7fac87aa6000-7fac87ca5000 ---p 00004000 08:03 1080566668                 /usr/local/lib/libmasterslave.so

7fac87ca5000-7fac87ca6000 r--p 00003000 08:03 1080566668                 /usr/local/lib/libmasterslave.so

7fac87ca6000-7fac87ca7000 rw-p 00004000 08:03 1080566668                 /usr/local/lib/libmasterslave.so

7fac87ca7000-7fac87ca9000 r-xp 00000000 08:03 1082257471                 /usr/local/lib/libsevone-linkedlist.so

7fac87ca9000-7fac87ea9000 ---p 00002000 08:03 1082257471                 /usr/local/lib/libsevone-linkedlist.so

7fac87ea9000-7fac87eaa000 r--p 00002000 08:03 1082257471                 /usr/local/lib/libsevone-linkedlist.so

7fac87eaa000-7fac87eab000 rw-p 00003000 08:03 1082257471                 /usr/local/lib/libsevone-linkedlist.so

7fac87eab000-7fac87ebf000 r-xp 00000000 08:03 3224708730                 /usr/lib64/liblmdb.so.0.0.0

7fac87ebf000-7fac880be000 ---p 00014000 08:03 3224708730                 /usr/lib64/liblmdb.so.0.0.0

7fac880be000-7fac880bf000 r--p 00013000 08:03 3224708730                 /usr/lib64/liblmdb.so.0.0.0

7fac880bf000-7fac880c0000 rw-p 00014000 08:03 3224708730                 /usr/lib64/liblmdb.so.0.0.0

7fac880c0000-7fac880cf000 r-xp 00000000 08:03 3224691608                 /usr/lib64/libboost_date_time-mt.so.1.53.0

7fac880cf000-7fac882cf000 ---p 0000f000 08:03 3224691608                 /usr/lib64/libboost_date_time-mt.so.1.53.0

7fac882cf000-7fac882d0000 r--p 0000f000 08:03 3224691608                 /usr/lib64/libboost_date_time-mt.so.1.53.0

7fac882d0000-7fac882d1000 rw-p 00010000 08:03 3224691608                 /usr/lib64/libboost_date_time-mt.so.1.53.0

7fac882d1000-7fac882d3000 r-xp 00000000 08:03 3221646913                 /usr/lib64/libboost_random-mt.so.1.53.0

7fac882d3000-7fac884d3000 ---p 00002000 08:03 3221646913                 /usr/lib64/libboost_random-mt.so.1.53.0

7fac884d3000-7fac884d4000 r--p 00002000 08:03 3221646913                 /usr/lib64/libboost_random-mt.so.1.53.0

7fac884d4000-7fac884d5000 rw-p 00003000 08:03 3221646913                 /usr/lib64/libboost_random-mt.so.1.53.0

7fac884d5000-7fac884da000 r-xp 00000000 08:03 1082257671                 /usr/local/lib/libdaemon-client.so

7fac884da000-7fac886d9000 ---p 00005000 08:03 1082257671                 /usr/local/lib/libdaemon-client.so

7fac886d9000-7fac886da000 r--p 00004000 08:03 1082257671                 /usr/local/lib/libdaemon-client.so

7fac886da000-7fac886db000 rw-p 00005000 08:03 1082257671                 /usr/local/lib/libdaemon-client.so

7fac886db000-7fac886f1000 r-xp 00000000 08:03 1081854558                 /usr/local/lib/libsevone-database.so

7fac886f1000-7fac888f0000 ---p 00016000 08:03 1081854558                 /usr/local/lib/libsevone-database.so

7fac888f0000-7fac888f1000 r--p 00015000 08:03 1081854558                 /usr/local/lib/libsevone-database.so

7fac888f1000-7fac888f2000 rw-p 00016000 08:03 1081854558                 /usr/local/lib/libsevone-database.so

7fac888f2000-7fac88922000 r-xp 00000000 08:03 3224759830                 /usr/lib64/libtbb.so.2

7fac88922000-7fac88b21000 ---p 00030000 08:03 3224759830                 /usr/lib64/libtbb.so.2

7fac88b21000-7fac88b23000 r--p 0002f000 08:03 3224759830                 /usr/lib64/libtbAborted

Linux 3.10.0-957.27.2.el7.x86_64 #1 SMP Mon Jul 29 17:46:05 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux

Tried using pcre.jit=0 in php.ini but still did not help.

Test script:
---------------
root@NPD04DVDNCVC01:~ [5.7.2.15] [09:34:24] $ ls

kafka-server-start.sh.orig.1554292897  

*** Error in `/usr/bin/php': free(): invalid pointer: 0x00007facb0529818 ***

======= Backtrace: =========

/lib64/libc.so.6(+0x81609)[0x7facb01e4609]

/usr/lib64/libnetsnmp.so.31(shutdown_mib+0x96)[0x7fac99327026]

/usr/lib64/libnetsnmp.so.31(snmp_shutdown+0x2b)[0x7fac993432cb]

/opt/remi/php73/root/usr/lib64/php/modules/snmp.so(zm_shutdown_snmp+0x10)[0x7fac9960bc20]

/usr/bin/php(+0x2f4617)[0x55c49991b617]

/usr/bin/php(+0x2ed8cc)[0x55c4999148cc]

/usr/bin/php(zend_hash_graceful_reverse_destroy+0x101)[0x55c4999264d1]

/usr/bin/php(+0x2ee6f3)[0x55c4999156f3]

/usr/bin/php(php_module_shutdown+0x32)[0x55c4998b55b2]

/usr/bin/php(+0xee090)[0x55c499715090]

/lib64/libc.so.6(__libc_start_main+0xf5)[0x7facb0185495]

/usr/bin/php(+0xee265)[0x55c499715265]

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2020-07-27 15:26 UTC] cmb@php.net
-Package: Compile Failure +Package: SNMP related -PHP Version: Irrelevant +PHP Version: 7.3
 [2021-09-29 15:58 UTC] cmb@php.net
-Status: Open +Status: Feedback -Assigned To: +Assigned To: cmb
 [2021-09-29 15:58 UTC] cmb@php.net 
Does this still happen with any of the actively supported PHP
versions[1]? If so we need a reproduce script and/or a stack
backtrace with debug symbols[2], although on a quick glance this
might be caused by an earlier memory corruption.  Is OPcache
enabled?  Does it also happen with OPcache disabled?

[1] <https://www.php.net/supported-versions.php>
[2] <https://bugs.php.net/bugs-generating-backtrace.php>
 [2021-10-10 04:22 UTC] php-bugs at lists dot php dot net 
No feedback was provided. The bug is being suspended because
we assume that you are no longer experiencing the problem.
If this is not the case and you are able to provide the
information that was requested earlier, please do so and
change the status of the bug back to "Re-Opened". Thank you.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Thu Apr 25 08:01:28 2024 UTC