#34731 [NEW]: segmentation fault during request shutdown

Tue, 04 Oct 2005 06:59:41 -0700 

From:             novicky at aarongroup dot cz
Operating system: All
PHP version:      5CVS-2005-10-04 (CVS)
PHP Bug Type:     OCI8 related
Bug description:  segmentation fault during request shutdown

Description:
------------
There is an incorrect session destructor registration. The pointer
registered by zend_list_insert points to a memory block which is then
released by efree. This can lead to segmentation fault when destructor is
called. A proposed patch follows (the same problem is id development
branch)

--- php5-STABLE-200510041238/ext/oci8/oci8.c.ORIG       2005-10-04
15:39:42.301952856 +0200
+++ php5-STABLE-200510041238/ext/oci8/oci8.c    2005-10-04
15:40:58.979935427 +0200
@@ -2879,7 +2879,6 @@
                )
        );

-       session->num = zend_list_insert(session, le_session);
        session->is_open = 1;

        mutex_lock(mx_lock);
@@ -2892,6 +2891,7 @@
                }
        mutex_unlock(mx_lock);

+       session->num = zend_list_insert(session, le_session);
        oci_debug("_oci_open_session new sess=%d
user=%s",session->num,username);

        return session;



-- 
Edit bug report at http://bugs.php.net/?id=34731&edit=1
-- 
Try a CVS snapshot (php4):   http://bugs.php.net/fix.php?id=34731&r=trysnapshot4
Try a CVS snapshot (php5.0): 
http://bugs.php.net/fix.php?id=34731&r=trysnapshot50
Try a CVS snapshot (php5.1): 
http://bugs.php.net/fix.php?id=34731&r=trysnapshot51
Fixed in CVS:                http://bugs.php.net/fix.php?id=34731&r=fixedcvs
Fixed in release:            http://bugs.php.net/fix.php?id=34731&r=alreadyfixed
Need backtrace:              http://bugs.php.net/fix.php?id=34731&r=needtrace
Need Reproduce Script:       http://bugs.php.net/fix.php?id=34731&r=needscript
Try newer version:           http://bugs.php.net/fix.php?id=34731&r=oldversion
Not developer issue:         http://bugs.php.net/fix.php?id=34731&r=support
Expected behavior:           http://bugs.php.net/fix.php?id=34731&r=notwrong
Not enough info:             
http://bugs.php.net/fix.php?id=34731&r=notenoughinfo
Submitted twice:             
http://bugs.php.net/fix.php?id=34731&r=submittedtwice
register_globals:            http://bugs.php.net/fix.php?id=34731&r=globals
PHP 3 support discontinued:  http://bugs.php.net/fix.php?id=34731&r=php3
Daylight Savings:            http://bugs.php.net/fix.php?id=34731&r=dst
IIS Stability:               http://bugs.php.net/fix.php?id=34731&r=isapi
Install GNU Sed:             http://bugs.php.net/fix.php?id=34731&r=gnused
Floating point limitations:  http://bugs.php.net/fix.php?id=34731&r=float
No Zend Extensions:          http://bugs.php.net/fix.php?id=34731&r=nozend
MySQL Configuration Error:   http://bugs.php.net/fix.php?id=34731&r=mysqlcfg

Reply via email to