This was released in mantic by the security team as well. Tagging as
such
** Changed in: php8.2 (Ubuntu Mantic)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bu
This bug was fixed in the package php8.1 - 8.1.2-1ubuntu2.17
---
php8.1 (8.1.2-1ubuntu2.17) jammy-security; urgency=medium
* SECURITY UPDATE: Heap buffer-overflow
- debian/patches/CVE-2022-4900.patch: prevent potential buffer
overflow for large valye of php_cli_server_work
Hello Lars-Göran, or anyone else affected,
Accepted php7.4 into focal-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/php7.4/7.4.3-4ubuntu2.21 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
https
Hello Lars-Göran, or anyone else affected,
Accepted php8.1 into jammy-proposed. The package will build now and be
available at
https://launchpad.net/ubuntu/+source/php8.1/8.1.2-1ubuntu2.16 in a few
hours, and then in the -proposed repository.
Please help us by testing this new package. See
https
** Tags removed: verification-done-mantic
** Tags added: verification-needed-mantic
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes SIGSEGVs (signal 11) when running f
So what are you saying, that phpinfo() is causing random segfaults? So
you have a run with just phpinfo() with the php8.2 packages from release
and proposed?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bu
By removing the call to phpinfo(), I could get back to zero errors with
the package in -proposed (and a few thousand with the package in the
release pocket), meaning the observed noise was indeed unrelated to this
bug/fix.
This is ApacheBench, Version 2.3 <$Revision: 1903618 $>
** Changed in: php8.1 (Ubuntu Jammy)
Status: Triaged => In Progress
** Changed in: php7.4 (Ubuntu Focal)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057
Reproducing the issue in mantic with the script provided in the SRU test
plan:
+ echo 'Number of SIGSEGV failures:'
Number of SIGSEGV failures:
+ lxc exec php-fpm-segfault -- sh -c 'cat /var/log/php8.2-fpm.log | grep -c
SIGSEGV'
5102
Which confirms the issue.
When tryong to verify the fix, I go
** Description changed:
[ Impact ]
Running fpm_get_status may result in a segmentation fault.
[ Test Plan ]
The following script is a reproducer for the described bug:
#!/bin/bash
set -eux
trap cleanup EXIT
- UBUNTU_SERIES=${UBUNTU_SERIIES:-mantic}
+ UBUNTU_SERIE
FWIW, the regression tests were flaky or unrelated (re-trigger or
migration-reference/0 got things passing again).
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes SIGS
Thank you, Lars!
I am about to prepare the SRUs for jammy and focal (the mantic one is
already in proposed). Are you referring to the package in mantic-
proposed (with the fix) or the package without the fix? i.e., is this
relevant for the SRU verification?
--
You received this bug notification
Hi guys, thanks for pushing this forward. I've found another issue
related to this but I'm still investigating so not sure yet what to make
of it.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
** Merge proposal linked:
https://code.launchpad.net/~athos-ribeiro/ubuntu/+source/php7.4/+git/php7.4/+merge/464010
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes
** Merge proposal linked:
https://code.launchpad.net/~athos-ribeiro/ubuntu/+source/php8.1/+git/php8.1/+merge/464008
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes
Hello Lars-Göran, or anyone else affected,
Accepted php8.2 into mantic-proposed. The package will build now and be
available at https://launchpad.net/ubuntu/+source/php8.2/8.2.10-2ubuntu2
in a few hours, and then in the -proposed repository.
Please help us by testing this new package. See
https:
** Changed in: php8.2 (Ubuntu Mantic)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes SIGSEGVs (signal 11) when running fpm_get_s
** Description changed:
[ Impact ]
Running fpm_get_status may result in a segmentation fault.
[ Test Plan ]
- WIP
+ The following script is a reproducer for the described bug:
+
+ #!/bin/bash
+
+ set -eux
+
+ trap cleanup EXIT
+
+ UBUNTU_SERIES=${UBUNTU_SERIIES:-mantic}
+ PHP_VE
** Description changed:
+ [ Impact ]
+
+ Running fpm_get_status may result in a segmentation fault.
+
+ [ Test Plan ]
+
+ WIP
+
+ [ Where problems could occur ]
+
+ The change in question is straightforward:
+
+ We are replacing a string interpolation for a string literal because the
+ varia
** Merge proposal linked:
https://code.launchpad.net/~athos-ribeiro/ubuntu/+source/php8.2/+git/php8.2/+merge/463141
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2057576
Title:
php-fpm sometimes
Thanks Lars, I will proceed with the SRUs then!
This is fixed upstream in php-8.3.1, php-8.2.14, and php-8.1.27. Hence,
this should be fixed in noble, but needs fixing in mantic, jammy, and
focal.
** Also affects: php7.4 (Ubuntu Jammy)
Importance: Undecided
Status: New
** Also affects:
Yeah no problem Athos, I feel like maybe you can take it from here. The
official fix is not mine and I haven't even tested that one so I don't
think I'm needed here. Thanks Athos.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https:/
** Also affects: php7.4 (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: php7.4 (Ubuntu Jammy)
Importance: Undecided
Status: New
** Also affects: php7.4 (Ubuntu Mantic)
Importance: Undecided
Status: New
** No longer affects: php7.4 (Ubuntu Jammy)
*
Hey Lars, I guess I missed you on IRC (sry).
To answer your question, yes, since we do have an upstream patch
available, it would be better to just go ahead and backport that one!
Not that it is any better or than your own patch. It is just easier to
deal with changes on the same file/function/lin
Great! All we need for SRUs should be described in
https://wiki.ubuntu.com/StableReleaseUpdates.
We can start with filling the SRU bug template, as described in
https://wiki.ubuntu.com/StableReleaseUpdates#SRU_Bug_Template. We want
to re-write the bug description to include all those fields descr
Yeah sure I can try if you're willing to help. I've tried to learn about
how to work with .deb packages so I know the basics but I'll probably
need some guidance.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.n
Nice catch, Lars :)
Apparently this had been around for a while and was fixed upstream a few months
ago:
https://github.com/php/php-src/commit/df259f88daaf7df5673fd78a0a1b76a1d831d0a2
Since you did all the work here so far, would you like to drive the SRU
by providing debdiffs for mantic, jammy,
I think I've found what causes the SIGSEGV, see line 59 in
sapi/fpm/fpm/fpm_status.c: It uses scoreboard_p after it checks it for
NULL
57scoreboard_p = fpm_scoreboard_acquire(NULL, 1);
58if (!scoreboard_p) {
59zlog(ZLOG_NOTICE, "[pool %s] status: scoreboard already
** Changed in: php7.4 (Ubuntu)
Status: New => Triaged
** Changed in: php7.4 (Ubuntu)
Assignee: (unassigned) => Athos Ribeiro (athos-ribeiro)
** Tags added: server-todo
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https
I've tested on another 20.04.6 and I could reproduce it, here's what I
did:
place this php script somewhere accessible for web-server & php-fpm:
http://localhost/status.php
after a couple of seconds SIGSEGV warnings started to appear in the php-
fpm log.
** Changed in: php7.4 (Ubuntu)
S
Hi Lars,
Thanks for taking the time to report this bug and help making Ubuntu
better.
I suppose you are able to reproduce the issue constantly then?
Would you mind providing a short (reliable) reproducer for the issue I
could use to verify and investigate from a fresh Ubuntu 20.04
installation?
** Description changed:
Like the title says, we do run fpm_get_status a lot. We're trying to get
metrics about our systems performance this way.
lsb_release -rd:
Description: Ubuntu 20.04.6 LTS
Release: 20.04
- apt-cache policy pkgname
+ apt-cache policy php-fpm
php-fpm:
-
32 matches
Mail list logo
