Test: /ext/ldap/tests/bug76248.phpt - Version 7.2.28

Security #76248	Malicious LDAP-Server Response causes Crash
Submitted:	2018-04-21 20:48:23	Modified:	2018-04-29 20:48:12
From:	phpldap	Assigned:	stas
Status:	Closed	Package:	LDAP related
PHP Version:	7.2.4	OS:

There are 2 different diffs reported by users for this test.

Count	Diff
3 (75%)	001+ Warning: ldap_bind(): Unable to bind to server: Can't contact LDAP server in %s/bug76248.php on line 14 002+ 003+ Warning: ldap_search(): Search: Can't contact LDAP server in %s/bug76248.php on line 16 004+ 005+ Warning: ldap_get_entries() expects parameter 2 to be resource, boolean given in %s/bug76248.php on line 17 006+ NULL 007+ 008+ Warning: stream_socket_accept(): accept failed: Connection timed out in %s/bug76248.php on line 7 009+ 010+ Warning: fwrite() expects parameter 1 to be resource, boolean given in %s/bug76248.php on line 8 011+ 001- array(2) { 002- ["count"]=> 003- int(1) 004- [0]=> 005- array(2) { 006- ["count"]=> 007- int(0) 008- ["dn"]=> 009- NULL 010- } 011- } 012+ Warning: fflush() expects parameter 1 to be resource, boolean given in %s/bug76248.php on line 9

1 (25%)	001+ Warning: stream_socket_accept(): accept failed: Connection timed out in %s/bug76248.php on line 7 002+ 003+ Warning: fwrite() expects parameter 1 to be resource, boolean given in %s/bug76248.php on line 8 004+ 005+ Warning: fflush() expects parameter 1 to be resource, boolean given in %s/bug76248.php on line 9 006+ 007+ Warning: ldap_bind(): Unable to bind to server: Can't contact LDAP server in %s/bug76248.php on line 14 008+ 009+ Warning: ldap_search(): Search: Can't contact LDAP server in %s/bug76248.php on line 16 010+ 011+ Warning: ldap_get_entries() expects parameter 2 to be resource, boolean given in %s/bug76248.php on line 17 001- array(2) { 002- ["count"]=> 003- int(1) 004- [0]=> 005- array(2) { 006- ["count"]=> 007- int(0) 008- ["dn"]=> 009- NULL 010- } 011- } 012+ NULL