From: clemens at gutweiler dot net Operating system: Linux 2.4.19-xfs PHP version: 4.3.8 PHP Bug Type: Reproducible crash Bug description: Segmentation fault
Description: ------------ Segfault of php-cli and apache-sapi (apxs). Reproduce code: --------------- could not extract the reproduce code Expected result: ---------------- no segfault Actual result: -------------- (gdb) run index.php Starting program: /usr/local/bin/php index.php [Thread debugging using libthread_db enabled] [New Thread 16384 (LWP 11311)] Program received signal SIGSEGV, Segmentation fault. [Switching to Thread 16384 (LWP 11311)] 0x40816a8f in strlen () from /lib/libc.so.6 (gdb) bt #0 0x40816a8f in strlen () from /lib/libc.so.6 #1 0x081701ba in add_property_string_ex (arg=0x0, key=0x0, key_len=0, str=0x40 <Address 0x40 out of bounds>, duplicate=1) at /usr/local/src/php-4.3.8/Zend/zend_API.c:978 #2 0x0809e241 in zif_mysql_fetch_field (ht=0, return_value=0x82ab164, this_ptr=0x0, return_value_used=1) at /usr/local/src/php-4.3.8/ext/mysql/php_mysql.c:2165 #3 0x0817c706 in execute (op_array=0x8245b84) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1635 #4 0x0817c477 in execute (op_array=0x8256c3c) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1679 #5 0x0817c477 in execute (op_array=0x8283c18) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1679 #6 0x0817c477 in execute (op_array=0x82837e8) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1679 #7 0x0817c477 in execute (op_array=0x82be804) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1679 #8 0x0817db12 in execute (op_array=0x822e8a4) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:2200 #9 0x0817db12 in execute (op_array=0x82370f4) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:2200 #10 0x0817db12 in execute (op_array=0x822e71c) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:2200 #11 0x0816debb in zend_execute_scripts (type=8, retval=0x0, file_count=3) at /usr/local/src/php-4.3.8/Zend/zend.c:891 #12 0x08141f2f in php_execute_script (primary_file=0xbffffd10) at /usr/local/src/php-4.3.8/main/main.c:1734 #13 0x08181a3c in main (argc=2, argv=0xbffffd94) at /usr/local/src/php-4.3.8/sapi/cli/php_cli.c:822 (gdb) frame 3 #3 0x0817c706 in execute (op_array=0x8245b84) at /usr/local/src/php-4.3.8/Zend/zend_execute.c:1635 1635 ((zend_internal_function *) EX(function_state).function)->handler(EX(opline)->extended_value, EX(Ts)[EX(opline)->result.u.var].var.ptr, EX(object).ptr, return_value_used TSRMLS_CC); (gdb) print (char *)(executor_globals.function_state_ptr->function)->common.function_name $1 = 0x818a859 "mysql_fetch_field" -- Edit bug report at http://bugs.php.net/?id=29252&edit=1 -- Try a CVS snapshot (php4): http://bugs.php.net/fix.php?id=29252&r=trysnapshot4 Try a CVS snapshot (php5): http://bugs.php.net/fix.php?id=29252&r=trysnapshot5 Fixed in CVS: http://bugs.php.net/fix.php?id=29252&r=fixedcvs Fixed in release: http://bugs.php.net/fix.php?id=29252&r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=29252&r=needtrace Need Reproduce Script: http://bugs.php.net/fix.php?id=29252&r=needscript Try newer version: http://bugs.php.net/fix.php?id=29252&r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=29252&r=support Expected behavior: http://bugs.php.net/fix.php?id=29252&r=notwrong Not enough info: http://bugs.php.net/fix.php?id=29252&r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=29252&r=submittedtwice register_globals: http://bugs.php.net/fix.php?id=29252&r=globals PHP 3 support discontinued: http://bugs.php.net/fix.php?id=29252&r=php3 Daylight Savings: http://bugs.php.net/fix.php?id=29252&r=dst IIS Stability: http://bugs.php.net/fix.php?id=29252&r=isapi Install GNU Sed: http://bugs.php.net/fix.php?id=29252&r=gnused Floating point limitations: http://bugs.php.net/fix.php?id=29252&r=float