PHP :: Bug #68741 :: Null pointer dereference
| Bug #68741 | Null pointer dereference | ||||
|---|---|---|---|---|---|
| Submitted: | 2015-01-04 12:16 UTC | Modified: | 2015-03-23 01:21 UTC | ||
| From: | bugreports at internot dot info | Assigned: | laruence (profile) | ||
| Status: | Closed | Package: | *Database Functions | ||
| PHP Version: | master-Git-2015-01-04 (Git) | OS: | Linux Ubuntu 14.04 | ||
| Private report: | No | CVE-ID: | 2015-1352 | ||
[2015-01-04 12:16 UTC] bugreports at internot dot info
Description: ------------ Hi, In /ext/pgsql/pgsql.c: 6447 token = php_strtok_r(table_copy, ".", &tmp); 6448 len = strlen(token); 'token' may return NULL, leading to a null pointer deference. Elsewhere, the result of php_strtok_r() is checked against NULL, and should be here too. A quick look shows that this may be reproducable by running pg_insert() with a NULL table-name.
Patches
Pull Requests
History
AllCommentsChangesGit/SVN commits
[2015-01-08 08:15 UTC] laruence@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: laruence
[2015-03-23 01:21 UTC] stas@php.net
-Summary: Null pointer deference +Summary: Null pointer dereference