Ubuntu
php5 package

Segmentation fault in timelib_builtin_db()

Bug #306233 reported by ServerAlex
2
Affects Status Importance Assigned to Milestone
php5 (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: php5

After the last PHP update of Ubuntu Hardy my webserver crashes for some scripts. I tracked down this problem to the following crashdump:

*** glibc detected *** /usr/sbin/apache2: double free or corruption (out): 0x00007f2ee86e1b00 ***
======= Backtrace: =========
/lib/libc.so.6[0x7f2eee70908a]
/lib/libc.so.6(cfree+0x8c)[0x7f2eee70cc1c]
/usr/lib/apache2/modules/libphp5.so(timelib_builtin_db+0x278)[0x7f2ee8523278]
/usr/lib/apache2/modules/libphp5.so(get_timezone_info+0x65)[0x7f2ee8507cd5]
/usr/lib/apache2/modules/libphp5.so(php_strftime+0xc3)[0x7f2ee8508e53]
/usr/lib/apache2/modules/libphp5.so[0x7f2ee870a502]
/usr/lib/apache2/modules/libphp5.so(execute+0x173)[0x7f2ee86fb453]
/usr/lib/apache2/modules/libphp5.so(zend_execute_scripts+0x153)[0x7f2ee86dbd93]
/usr/lib/apache2/modules/libphp5.so(php_execute_script+0x21a)[0x7f2ee869800a]
/usr/lib/apache2/modules/libphp5.so[0x7f2ee875c252]
/usr/sbin/apache2(ap_run_handler+0x7a)[0x437d6a]
/usr/sbin/apache2(ap_invoke_handler+0x7c)[0x43b18c]
/usr/sbin/apache2(ap_process_request+0x16e)[0x44786e]
/usr/sbin/apache2[0x444c68]
/usr/sbin/apache2(ap_run_process_connection+0x72)[0x43eec2]
/usr/sbin/apache2[0x44b665]
/usr/sbin/apache2[0x44b915]
/usr/sbin/apache2(ap_mpm_run+0x7d8)[0x44c1a8]
/usr/sbin/apache2(main+0x754)[0x425a44]
/lib/libc.so.6(__libc_start_main+0xf4)[0x7f2eee6b31c4]
/usr/sbin/apache2(apr_global_mutex_lock+0x41)[0x424e79]
======= Memory map: ========
[Mon Dec 08 15:17:29 2008] [notice] child pid 5332 exit signal Aborted (6)

To reproduce this error I just create a php file like this:

<?php
echo strftime('%Y');
?>

Revision history for this message
Mathias Gug (mathiaz) wrote : Re: [Bug 306233] [NEW] Segmentation fault in timelib_builtin_db()

On Mon, Dec 08, 2008 at 02:25:24PM -0000, ServerAlex wrote:
> Public bug reported:
>
> Binary package hint: php5
>
> After the last PHP update of Ubuntu Hardy my webserver crashes for some

Thank you for taking the time to report this bug and helping to make
Ubuntu better. Could you specify which package version you're using?

  status incomplete

--
Mathias Gug
Ubuntu Developer http://www.ubuntu.com

Changed in php5:
status: New → Incomplete
Revision history for this message
ServerAlex (serveralex) wrote :

ii libapache2-mod-php5 5.2.4-2ubuntu5.4
server-side, HTML-embedded scripting languag

2008/12/8, Mathias Gug <email address hidden>:
> On Mon, Dec 08, 2008 at 02:25:24PM -0000, ServerAlex wrote:
>> Public bug reported:
>>
>> Binary package hint: php5
>>
>> After the last PHP update of Ubuntu Hardy my webserver crashes for some
>
> Thank you for taking the time to report this bug and helping to make
> Ubuntu better. Could you specify which package version you're using?
>
> status incomplete
>
> --
> Mathias Gug
> Ubuntu Developer http://www.ubuntu.com
>
>
> ** Changed in: php5 (Ubuntu)
> Status: New => Incomplete
>
> --
> Segmentation fault in timelib_builtin_db()
> https://bugs.launchpad.net/bugs/306233
> You received this bug notification because you are a direct subscriber
> of the bug.
>
> Status in "php5" source package in Ubuntu: Incomplete
>
> Bug description:
> Binary package hint: php5
>
> After the last PHP update of Ubuntu Hardy my webserver crashes for some
> scripts. I tracked down this problem to the following crashdump:
>
> *** glibc detected *** /usr/sbin/apache2: double free or corruption (out):
> 0x00007f2ee86e1b00 ***
> ======= Backtrace: =========
> /lib/libc.so.6[0x7f2eee70908a]
> /lib/libc.so.6(cfree+0x8c)[0x7f2eee70cc1c]
> /usr/lib/apache2/modules/libphp5.so(timelib_builtin_db+0x278)[0x7f2ee8523278]
> /usr/lib/apache2/modules/libphp5.so(get_timezone_info+0x65)[0x7f2ee8507cd5]
> /usr/lib/apache2/modules/libphp5.so(php_strftime+0xc3)[0x7f2ee8508e53]
> /usr/lib/apache2/modules/libphp5.so[0x7f2ee870a502]
> /usr/lib/apache2/modules/libphp5.so(execute+0x173)[0x7f2ee86fb453]
> /usr/lib/apache2/modules/libphp5.so(zend_execute_scripts+0x153)[0x7f2ee86dbd93]
> /usr/lib/apache2/modules/libphp5.so(php_execute_script+0x21a)[0x7f2ee869800a]
> /usr/lib/apache2/modules/libphp5.so[0x7f2ee875c252]
> /usr/sbin/apache2(ap_run_handler+0x7a)[0x437d6a]
> /usr/sbin/apache2(ap_invoke_handler+0x7c)[0x43b18c]
> /usr/sbin/apache2(ap_process_request+0x16e)[0x44786e]
> /usr/sbin/apache2[0x444c68]
> /usr/sbin/apache2(ap_run_process_connection+0x72)[0x43eec2]
> /usr/sbin/apache2[0x44b665]
> /usr/sbin/apache2[0x44b915]
> /usr/sbin/apache2(ap_mpm_run+0x7d8)[0x44c1a8]
> /usr/sbin/apache2(main+0x754)[0x425a44]
> /lib/libc.so.6(__libc_start_main+0xf4)[0x7f2eee6b31c4]
> /usr/sbin/apache2(apr_global_mutex_lock+0x41)[0x424e79]
> ======= Memory map: ========
> [Mon Dec 08 15:17:29 2008] [notice] child pid 5332 exit signal Aborted (6)
>
>
> To reproduce this error I just create a php file like this:
>
> <?php
> echo strftime('%Y');
> ?>
>

Revision history for this message
ServerAlex (serveralex) wrote :

I'm not 100% sure, but I guess I tracked down this problem to the fact
that my apparmor rules blocked access to /usr/share/zoneinfo , which
wasn't a problem with the older php packet versions. Nevertheless the
new versions shouldn't segfault coz the access was denied.

Hope this helps.

2008/12/8 ServerAlex <email address hidden>:
> ii libapache2-mod-php5 5.2.4-2ubuntu5.4
> server-side, HTML-embedded scripting languag
>
> 2008/12/8, Mathias Gug <email address hidden>:
>> On Mon, Dec 08, 2008 at 02:25:24PM -0000, ServerAlex wrote:
>>> Public bug reported:
>>>
>>> Binary package hint: php5
>>>
>>> After the last PHP update of Ubuntu Hardy my webserver crashes for some
>>
>> Thank you for taking the time to report this bug and helping to make
>> Ubuntu better. Could you specify which package version you're using?
>>
>> status incomplete
>>
>> --
>> Mathias Gug
>> Ubuntu Developer http://www.ubuntu.com
>>
>>
>> ** Changed in: php5 (Ubuntu)
>> Status: New => Incomplete
>>
>> --
>> Segmentation fault in timelib_builtin_db()
>> https://bugs.launchpad.net/bugs/306233
>> You received this bug notification because you are a direct subscriber
>> of the bug.
>>
>> Status in "php5" source package in Ubuntu: Incomplete
>>
>> Bug description:
>> Binary package hint: php5
>>
>> After the last PHP update of Ubuntu Hardy my webserver crashes for some
>> scripts. I tracked down this problem to the following crashdump:
>>
>> *** glibc detected *** /usr/sbin/apache2: double free or corruption (out):
>> 0x00007f2ee86e1b00 ***
>> ======= Backtrace: =========
>> /lib/libc.so.6[0x7f2eee70908a]
>> /lib/libc.so.6(cfree+0x8c)[0x7f2eee70cc1c]
>> /usr/lib/apache2/modules/libphp5.so(timelib_builtin_db+0x278)[0x7f2ee8523278]
>> /usr/lib/apache2/modules/libphp5.so(get_timezone_info+0x65)[0x7f2ee8507cd5]
>> /usr/lib/apache2/modules/libphp5.so(php_strftime+0xc3)[0x7f2ee8508e53]
>> /usr/lib/apache2/modules/libphp5.so[0x7f2ee870a502]
>> /usr/lib/apache2/modules/libphp5.so(execute+0x173)[0x7f2ee86fb453]
>> /usr/lib/apache2/modules/libphp5.so(zend_execute_scripts+0x153)[0x7f2ee86dbd93]
>> /usr/lib/apache2/modules/libphp5.so(php_execute_script+0x21a)[0x7f2ee869800a]
>> /usr/lib/apache2/modules/libphp5.so[0x7f2ee875c252]
>> /usr/sbin/apache2(ap_run_handler+0x7a)[0x437d6a]
>> /usr/sbin/apache2(ap_invoke_handler+0x7c)[0x43b18c]
>> /usr/sbin/apache2(ap_process_request+0x16e)[0x44786e]
>> /usr/sbin/apache2[0x444c68]
>> /usr/sbin/apache2(ap_run_process_connection+0x72)[0x43eec2]
>> /usr/sbin/apache2[0x44b665]
>> /usr/sbin/apache2[0x44b915]
>> /usr/sbin/apache2(ap_mpm_run+0x7d8)[0x44c1a8]
>> /usr/sbin/apache2(main+0x754)[0x425a44]
>> /lib/libc.so.6(__libc_start_main+0xf4)[0x7f2eee6b31c4]
>> /usr/sbin/apache2(apr_global_mutex_lock+0x41)[0x424e79]
>> ======= Memory map: ========
>> [Mon Dec 08 15:17:29 2008] [notice] child pid 5332 exit signal Aborted (6)
>>
>>
>> To reproduce this error I just create a php file like this:
>>
>> <?php
>> echo strftime('%Y');
>> ?>
>>
>

Chuck Short (zulcss)
Changed in php5 (Ubuntu):
status: Incomplete → Triaged
Revision history for this message
Chuck Short (zulcss) wrote :

Hi,

I was unable to reproduce this crash on karmic. Please re-open if you were and provide a testscript.

Regards
chuck

Changed in php5 (Ubuntu):
status: Triaged → Fix Released
Revision history for this message
Nikolay Konstantinov (nikolay-konstantinov) wrote :

im not shure if this is the place for that kind of crashes .. but .. here is one
*** glibc detected *** /usr/sbin/apache2: double free or corruption (!prev): 0x00007f23678af300 ***
======= Backtrace: =========
/lib/libc.so.6[0x7f236385fcb8]
/lib/libc.so.6(cfree+0x76)[0x7f2363862276]
/usr/lib/libapr-1.so.0(apr_allocator_destroy+0x45)[0x7f2363d910f3]
/usr/lib/libapr-1.so.0(apr_pool_destroy+0x11a)[0x7f2363d91d88]
/usr/sbin/apache2[0x7f236466ebde]
/usr/sbin/apache2[0x7f236466f133]
/usr/sbin/apache2[0x7f236466f2ea]
/usr/sbin/apache2(ap_mpm_run+0x42c)[0x7f236466f77c]
/usr/sbin/apache2(main+0xa2d)[0x7f236464560d]
/lib/libc.so.6(__libc_start_main+0xe6)[0x7f23638065a6]
/usr/sbin/apache2[0x7f23646446b9]

it appears 2-3 times dayly and its realy anoing ...
any idea how to fix this ?

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.