php.net
|
support
|
documentation
|
report a bug
|
advanced search
|
search howto
|
statistics
|
random bug
|
login
go to bug id or search bugs for
Showing 1-30 of 1717
Show Next 30 Entries »
Bugs for Reproducible Crash
ID#
Date
Last Modified
Type
Status
PHP Version
OS
Summary
Assigned
54304
(edit)
2011-03-18 11:21 UTC
2011-09-12 13:22 UTC
Sec Bug
Closed
5.3.6
Linux x86-64
Invalid read in RegexIterator::accept() causes crash
pajoye
54332
(edit)
2011-03-21 09:27 UTC
2011-07-11 05:48 UTC
Sec Bug
Closed
5.3.6
Linux x86-64
Crash in zend_mm_check_ptr // Heap corruption
dmitry
67492
(edit)
2014-06-22 02:01 UTC
2014-06-27 23:17 UTC
Sec Bug
Closed
5.4.29
*
unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion
stas
67498
(edit)
2014-06-23 07:13 UTC
2016-04-30 20:58 UTC
Sec Bug
Closed
5.4.29
phpinfo() Type Confusion Information Leak Vulnerability
stas
68044
(edit)
2014-09-18 13:55 UTC
2014-10-14 17:41 UTC
Sec Bug
Closed
5.5.17
Ubuntu 14.04.1 LTS 32bit
Integer overflow in unserialize() (32-bits only)
68545
(edit)
2014-12-03 23:10 UTC
2014-12-11 20:15 UTC
Sec Bug
Closed
5.6.3
Ubuntu 2.6.32/Debian 3.7
NULL pointer dereference in unserialize.c:var_push_dtor
ab
68552
(edit)
2014-12-05 13:15 UTC
2015-03-18 12:11 UTC
Sec Bug
Closed
5.6.3
Ubuntu 14.04.1 LTS 32bit
heap buffer overflow in enchant_broker_request_dict()
tony2001
68618
(edit)
2014-12-17 21:24 UTC
2015-01-20 20:00 UTC
Sec Bug
Closed
master-Git-2014-12-17 (Git)
Debian 7
out of bounds read crashes php-cgi
stas
68710
(edit)
2015-01-01 22:35 UTC
2015-02-10 15:27 UTC
Sec Bug
Closed
5.4Git-2015-01-01 (Git)
*
Use After Free Vulnerability in PHP's unserialize() (Still Exploitable)
stas
68819
(edit)
2015-01-12 22:53 UTC
2016-02-11 14:08 UTC
Sec Bug
Closed
5.6.4
Linux/MacOS/any?
Fileinfo on specific file causes spurious OOM and/or segfault
ab
69522
(edit)
2015-04-24 08:37 UTC
2015-05-13 23:30 UTC
Sec Bug
Closed
5.6.8
Ubuntu 14.04 32-bit, could not r
heap buffer overflow in unpack()
stas
69958
(edit)
2015-06-29 01:47 UTC
2015-08-09 08:51 UTC
Sec Bug
Closed
master-Git-2015-06-29 (Git)
Segfault in Phar::convertToData on invalid file
kaplan
71527
(edit)
2016-02-04 22:48 UTC
2016-04-25 17:08 UTC
Sec Bug
Closed
5.6.18
Linux
Buffer over-write in finfo_open with malformed magic file.
kaplan
73825
(edit)
2016-12-27 21:26 UTC
2017-01-25 11:11 UTC
Sec Bug
Closed
5.6.29
Linux
Heap out of bounds read on unserialize in finish_nested_data()
stas
26633
(edit)
2003-12-15 12:28 UTC
2011-01-02 13:08 UTC
Req
Closed
4CVS
DG/UX
exec(), system() and backtick give maximum execution time error with Apache
80978
(edit)
2021-04-23 16:48 UTC
2021-04-26 08:47 UTC
Doc
Closed
7.4.16
Fedora 33
array_key_exists() does not work for false/true
nikic
140
(edit)
1998-03-03 14:25 UTC
1998-03-05 11:42 UTC
Bug
Closed
3.0 Latest CVS
A/UX
Apache/PHP unable to start browscap
zeev
145
(edit)
1998-03-04 14:37 UTC
1998-03-05 11:21 UTC
Bug
Closed
3.0b3
Linux
Problems with variables that seem integer
146
(edit)
1998-03-04 18:50 UTC
1998-03-13 06:22 UTC
Bug
Closed
3.0 Latest CVS
FreeBSD 2.2-stable
using exit() in eval() causes crash
zeev
163
(edit)
1998-03-11 16:54 UTC
1998-03-13 06:19 UTC
Bug
Closed
3.0b5
Windows NT
Missing quotation marks causes crash
164
(edit)
1998-03-12 05:09 UTC
1998-03-13 04:52 UTC
Bug
Closed
3.0 Latest CVS
NetBSD-1.3.1
Function call of () (sorta) crashes.
168
(edit)
1998-03-13 14:13 UTC
1998-03-13 14:24 UTC
Bug
Closed
3.0b4
Solaris 2.6
soundex of en empty string doesn't work
181
(edit)
1998-03-17 11:24 UTC
1998-03-17 11:55 UTC
Bug
Closed
3.0b6
Solaris 2.5.1
SIGBUS Coredump from Apache 1.2.5
rasmus
196
(edit)
1998-03-25 12:39 UTC
1998-03-26 08:14 UTC
Bug
Closed
3.0b6
linux
parser error with incorrect eval strings
zeev
202
(edit)
1998-03-26 16:42 UTC
1998-05-22 19:16 UTC
Bug
Closed
3.0 Release Cand
Window95
ImageCreateFromGif() fails.
211
(edit)
1998-03-29 09:24 UTC
1998-03-30 05:54 UTC
Bug
Closed
3.0 Release Cand
Debian/GNU Linux 1.3
Functions min() and max() on arrays crash PHP without trace
ssb
249
(edit)
1998-04-06 12:09 UTC
1998-09-22 10:48 UTC
Bug
Closed
3.0 Latest CVS
Linux
rand causes apache core dump
254
(edit)
1998-04-07 13:34 UTC
1998-04-08 00:49 UTC
Bug
Closed
3.0 Release Candidate 3
Solaris
write outside an array
263
(edit)
1998-04-11 00:10 UTC
1998-04-18 10:12 UTC
Bug
Closed
3.0 Latest CVS
Linux 2.0.33 (Slackware)
ereg() core dump
302
(edit)
1998-04-22 12:03 UTC
1998-05-01 15:48 UTC
Bug
Closed
3.0 Release Candidate 4
HPUX10.10
when logging onto a oracle 7.3.2 database php sucks up all cpu cycles ...
Showing 1-30 of 1717
Show Next 30 Entries »
Copyright © 2001-2025 The PHP Group
All rights reserved.
Last updated: Sat Jul 12 04:01:33 2025 UTC