#29435 [NEW]: Segmentation Fault 11 in strlen()

rob at alterlinks dot fr Wed, 28 Jul 2004 13:37:41 -0700

From:             rob at alterlinks dot fr
Operating system: Linux Mandrake 2.4.19-16
PHP version:      5.0.0
PHP Bug Type:     Reproducible crash
Bug description:  Segmentation Fault 11 in strlen()


Description:
------------
Tested with PHP5.0.0 and later Snapshots with Apache 1.3.31 and 2.0.50,
systematically a Segmentation Fault 11 (error_log Apache), blank page is
shown.
OK with PHP4.3.8.

Result of debug :

[EMAIL PROTECTED] logs]# gdb ../bin/httpd
GNU gdb 5.2.1-2mdk (Mandrake Linux)
Copyright 2002 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and you
are
welcome to change it and/or distribute copies of it under certain
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for
details.
This GDB was configured as "i586-mandrake-linux-gnu"...
(gdb) run -X
Starting program: /usr/local/free_websites/bin/httpd -X

Program received signal SIGSEGV, Segmentation fault.
0x40186bc3 in strlen () from /lib/i686/libc.so.6
(gdb)


Result of bt


#0  0x40186bc3 in strlen () from /lib/i686/libc.so.6
#1  0x40473993 in add_property_string_ex (arg=0x1, key=0x82a4664 "\001",
key_len=0,
    str=0x1 <Address 0x1 out of bounds>, duplicate=135993744) at
/download/php5-200407261830/Zend/zend_API.c:1132
#2  0x4032b406 in zif_mysql_fetch_field (ht=1, return_value=0x82a4664,
this_ptr=0x0, return_value_used=1)
    at /download/php5-200407261830/ext/mysql/php_mysql.c:2250
#3  0x40497feb in zend_do_fcall_common_helper (execute_data=0xbfffd280,
opline=0x820b7dc, op_array=0x824cd28)
    at /download/php5-200407261830/Zend/zend_execute.c:2699
#4  0x40498760 in zend_do_fcall_handler (execute_data=0xbfffd280,
opline=0x820b7dc, op_array=0x824cd28)
    at /download/php5-200407261830/Zend/zend_execute.c:2831
#5  0x4049460c in execute (op_array=0x824cd28) at
/download/php5-200407261830/Zend/zend_execute.c:1391
#6  0x40498184 in zend_do_fcall_common_helper (execute_data=0xbfffd350,
opline=0x4088fb70, op_array=0x829207c)
    at /download/php5-200407261830/Zend/zend_execute.c:2728
#7  0x40498652 in zend_do_fcall_by_name_handler (execute_data=0xbfffd350,
opline=0x4088fb70, op_array=0x829207c)
    at /download/php5-200407261830/Zend/zend_execute.c:2813
#8  0x4049460c in execute (op_array=0x829207c) at
/download/php5-200407261830/Zend/zend_execute.c:1391
#9  0x40470841 in zend_execute_scripts (type=8, retval=0x0, file_count=3)
    at /download/php5-200407261830/Zend/zend.c:1068
#10 0x404295b2 in php_execute_script (primary_file=0xbffff600) at
/download/php5-200407261830/main/main.c:1631
#11 0x404a149e in php_handler (r=0x842ab78) at
/download/php5-200407261830/sapi/apache2handler/sapi_apache2.c:535
#12 0x0807e18b in ap_run_handler (r=0x842ab78) at config.c:152
#13 0x0807e72e in ap_invoke_handler (r=0x6) at config.c:358
#14 0x0806d1fb in ap_process_request (r=0x842ab78) at http_request.c:246
#15 0x08068fef in ap_process_http_connection (c=0x81f2058) at
http_core.c:250
#16 0x08087e2b in ap_run_process_connection (c=0x81f2058) at
connection.c:42
#17 0x0807cbf1 in child_main (child_num_arg=4) at prefork.c:609
#18 0x0807cdad in make_child (s=0x80bb120, slot=0) at prefork.c:649
#19 0x0807ce0e in startup_children (number_to_start=5) at prefork.c:721
#20 0x0807d553 in ap_mpm_run (_pconf=0x80b89f0, plog=0x80f0ad0,
s=0x80b69e8) at prefork.c:940
#21 0x0808299a in main (argc=2, argv=0xbffff994) at main.c:617
#22 0x4012a082 in __libc_start_main () from /lib/i686/libc.so.6
(gdb)

Reproduce code:
---------------
phpMyAdmin script, page sql.php

Expected result:
----------------
Display of contents of Database tables

Actual result:
--------------
Segmentation Fault 11 (no coredump), see gdb results (bt)

-- 
Edit bug report at http://bugs.php.net/?id=29435&edit=1
-- 
Try a CVS snapshot (php4):  http://bugs.php.net/fix.php?id=29435&r=trysnapshot4
Try a CVS snapshot (php5):  http://bugs.php.net/fix.php?id=29435&r=trysnapshot5
Fixed in CVS:               http://bugs.php.net/fix.php?id=29435&r=fixedcvs
Fixed in release:           http://bugs.php.net/fix.php?id=29435&r=alreadyfixed
Need backtrace:             http://bugs.php.net/fix.php?id=29435&r=needtrace
Need Reproduce Script:      http://bugs.php.net/fix.php?id=29435&r=needscript
Try newer version:          http://bugs.php.net/fix.php?id=29435&r=oldversion
Not developer issue:        http://bugs.php.net/fix.php?id=29435&r=support
Expected behavior:          http://bugs.php.net/fix.php?id=29435&r=notwrong
Not enough info:            http://bugs.php.net/fix.php?id=29435&r=notenoughinfo
Submitted twice:            http://bugs.php.net/fix.php?id=29435&r=submittedtwice
register_globals:           http://bugs.php.net/fix.php?id=29435&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=29435&r=php3
Daylight Savings:           http://bugs.php.net/fix.php?id=29435&r=dst
IIS Stability:              http://bugs.php.net/fix.php?id=29435&r=isapi
Install GNU Sed:            http://bugs.php.net/fix.php?id=29435&r=gnused
Floating point limitations: http://bugs.php.net/fix.php?id=29435&r=float

#29435 [NEW]: Segmentation Fault 11 in strlen()

Reply via email to