[php-maint] Bug#706091: php5-sybase: PHP5 crashes while using mssql_query with suhosin enabled
Saulo Soares de Toledo
saulotoledo at gmail.com
Wed Apr 24 14:58:24 UTC 2013
Package: php5-sybase
Version: 5.3.3-7+squeeze14
Severity: normal
While trying use mssql_query() function, PHP crashes. The error at logs:
[Wed Apr 24 11:35:08 2013] [error] [client 127.0.0.1] ALERT - canary
mismatch on efree() - heap overflow detected (attacker '127.0.0.1', file
'/var/www/sqlserver_test/index.php')
I found information here:
http://www.suspekt.org/2008/10/12/suhosin-canary-mismatch-on-efree-heap-overflow-detected/
I found a solution who worked for me at https://bugs.php.net/bug.php?id=47877 :
1. Open /etc/php.ini
2. "Decomment" the line "mssql.datetimeconvert = On" and change it to
"mssql.datetimeconvert = Off"
3. Restart Apache
4. The Problem dissappears
-- System Information:
Debian Release: 6.0.7
APT prefers stable
APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=pt_BR.UTF-8, LC_CTYPE=pt_BR.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages php5-sybase depends on:
ii libapache2-mod-php5 [p 5.3.3-7+squeeze14 server-side, HTML-embedded scripti
ii libc6 2.11.3-4 Embedded GNU C Library: Shared lib
ii libsybdb5 0.82-7 libraries for connecting to MS SQL
ii php5-cgi [phpapi-20090 5.3.3-7+squeeze14 server-side, HTML-embedded scripti
ii php5-cli [phpapi-20090 5.3.3-7+squeeze14 command-line interpreter for the p
ii php5-common 5.3.3-7+squeeze14 Common files for packages built fr
php5-sybase recommends no packages.
php5-sybase suggests no packages.
-- no debconf information
More information about the pkg-php-maint
mailing list