Test: /ext/standard/tests/strings/bug72433.phpt - Version 7.0.11-dev

Security #72433	Use After Free Vulnerability in PHP's GC algorithm and unserialize
Submitted:	2016-06-16 14:37:18	Modified:	2016-06-23 12:51:05
From:	3v0n1d3	Assigned:	dmitry
Status:	Closed	Package:	*General Issues
PHP Version:	5.5.36	OS:	*

There is 1 diff reported by users for this test.

Count	Diff
2 (100%)	001+ Segmentation fault (core dumped) 002+ 003+ Termsig=11 001- array(3) { 002- [0]=> 003- array(3) { 004- [0]=> 005- RECURSION 006- [1]=> 007- RECURSION 008- [2]=> 009- object(ArrayObject)#%d (1) { 010- ["storage":"ArrayObject":private]=> 011- RECURSION 012- } 013- } 014- [1]=> 015- array(3) { 016- [0]=> 017- RECURSION 018- [1]=> 019- RECURSION 020- [2]=> 021- object(ArrayObject)#%d (1) { 022- ["storage":"ArrayObject":private]=> 023- RECURSION 024- } 025- } 026- [2]=> 027- object(ArrayObject)#%d (1) { 028- ["storage":"ArrayObject":private]=> 029- array(3) { 030- [0]=> 031- RECURSION 032- [1]=> 033- RECURSION 034- [2]=> 035- RECURSION 036- } 037- } 038- }

Count

Diff

2 (100%)

001+ Segmentation fault (core dumped)

002+

003+ Termsig=11

001- array(3) {

002- [0]=>

003- array(3) {

004- [0]=>

005- *RECURSION*

006- [1]=>

007- *RECURSION*

008- [2]=>

009- object(ArrayObject)#%d (1) {

010- ["storage":"ArrayObject":private]=>

011- *RECURSION*

012- }

013- }

014- [1]=>

015- array(3) {

016- [0]=>

017- *RECURSION*

018- [1]=>

019- *RECURSION*

020- [2]=>

021- object(ArrayObject)#%d (1) {

022- ["storage":"ArrayObject":private]=>

023- *RECURSION*

024- }

025- }

026- [2]=>

027- object(ArrayObject)#%d (1) {

028- ["storage":"ArrayObject":private]=>

029- array(3) {

030- [0]=>

031- *RECURSION*

032- [1]=>

033- *RECURSION*

034- [2]=>

035- *RECURSION*

036- }

037- }

038- }