Test: /ext/standard/tests/strings/bug68710.phpt - Version 7.2.0-dev 
| Security #68710 | Use After Free Vulnerability in PHP's unserialize() (Still Exploitable) | ||||
|---|---|---|---|---|---|
| Submitted: | 2015-01-01 22:35:00 | Modified: | 2015-02-10 15:27:14 | ||
| From: | stas | Assigned: | stas | ||
| Status: | Closed | Package: | Reproducible crash | ||
| PHP Version: | 5.4Git-2015-01-01 (Git) | OS: | * | ||
There are 3 different diffs reported by users for this test.
| Count | Diff |
|---|---|
17 (89%) |
001+ Fatal error: Invalid opcode 137/16/8. in %s/bug68710.php on line 9
001- ===DONE===
|
| 1 (5%) |
002+ [Tue Apr 18 20:33:35 2017] Script: %s/bug68710.php'
003+ /home/travis/build/pmmaga/php-src/Zend/zend_string.h(134) : Freeing 0x00007f6c7d081200 (32 bytes), %s/bug68710.php
004+ Last leak repeated 383 times
005+ === Total 384 memory leaks detected ===
|
| 1 (5%) |
001+ Segmentation fault (core dumped)
001- ===DONE===
002+
003+ Termsig=11
|