ID: 25918 User updated by: tony2001 at phpclub dot net Reported By: tony2001 at phpclub dot net Status: Open Bug Type: Reproducible crash Operating System: Linux 2.4.21 PHP Version: 4CVS-2003-10-20 (stable) New Comment:
the bug was reproduced with this file: http://tony2001.phpclub.net/temp/vp_cmyk.cdr Previous Comments: ------------------------------------------------------------------------ [2003-10-20 04:45:58] tony2001 at phpclub dot net Description: ------------ PHP segfaults. This happens because of simple typo in mime_magic.c. Possible patch: Index: mime_magic.c =================================================================== RCS file: /repository/php-src/ext/mime_magic/mime_magic.c,v retrieving revision 1.13.2.9 diff -u -r1.13.2.9 mime_magic.c --- mime_magic.c 9 Feb 2003 19:10:32 -0000 1.13.2.9 +++ mime_magic.c 20 Oct 2003 08:44:43 -0000 @@ -1848,7 +1848,7 @@ } /* detect memory allocation errors */ - if (!content_type || + if (!*content_type || (state == rsl_encoding && !*content_encoding)) { return MIME_MAGIC_ERROR; } Reproduce code: --------------- $dh=opendir("."); while ($fn=readdir($dh)) { echo mime_content_type($fn)."<br>"; } Expected result: ---------------- mime_content_type should return False in this case Actual result: -------------- #0 0x401366a3 in strlen () from /lib/i686/libc.so.6 #1 0x40241af3 in zif_mime_content_type (ht=0, return_value=0x8138ab4, this_ptr=0x0, return_value_used=0) at /root/CVS/php-src_PHP_4_3/ext/mime_magic/mime_magic.c:332 #2 0x40318e59 in execute (op_array=0x8138a1c) at /root/CVS/php-src_PHP_4_3/Zend/zend_execute.c:1616 #3 0x4030aa66 in zend_execute_scripts (type=8, retval=0x0, file_count=3) at /root/CVS/php-src_PHP_4_3/Zend/zend.c:885 #4 0x402df501 in php_execute_script (primary_file=0xbffff300) at /root/CVS/php-src_PHP_4_3/main/main.c:1729 #5 0x4031cefb in apache_php_module_main (r=0x813177c, display_source_mode=0) at /root/CVS/php-src_PHP_4_3/sapi/apache/sapi_apache.c:54 #6 0x4031da96 in send_php (r=0x813177c, display_source_mode=0, filename=0x0) at /root/CVS/php-src_PHP_4_3/sapi/apache/mod_php4.c:620 #7 0x4031dc55 in send_parsed_php (r=0x813177c) at /root/CVS/php-src_PHP_4_3/sapi/apache/mod_php4.c:635 #8 0x08068eee in ap_invoke_handler () #9 0x0807e83e in process_request_internal () #10 0x0807ec74 in ap_internal_redirect () #11 0x0805e39a in handle_dir () #12 0x08068eee in ap_invoke_handler () #13 0x0807e83e in process_request_internal () #14 0x0807e89b in ap_process_request () #15 0x0807535f in child_main () #16 0x08075511 in make_child () #17 0x08075690 in startup_children () #18 0x08075d00 in standalone_main () #19 0x0807659a in main () #20 0x400d1af7 in __libc_start_main () from /lib/i686/libc.so.6 ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=25918&edit=1
