ID: 46005 Updated by: j...@php.net Reported By: admorten at umich dot edu Status: Closed Bug Type: Apache2 related Operating System: Linux 2.6.21.3 PHP Version: 5.2.6 New Comment:
And now also in PHP_5_2 branch. :) Previous Comments: ------------------------------------------------------------------------ [2008-12-17 11:35:01] s...@php.net This bug has been fixed in CVS. Snapshots of the sources are packaged every three hours; this change will be in the next snapshot. You can grab the snapshot at http://snaps.php.net/. Thank you for the report, and for helping us make PHP better. applied to 5.3+, thanks ------------------------------------------------------------------------ [2008-12-17 11:09:02] s...@php.net It should definitely be estrdup, since SAPI.c uses efree to free it. ------------------------------------------------------------------------ [2008-11-06 18:57:05] admorten at umich dot edu Do you have a backtrace? ------------------------------------------------------------------------ [2008-11-05 10:16:01] k at kelvinlim dot com I encountered this bug as well, as our Apache configuration uses a custom single sign-on authentication module. admorten's patches successfully resolved the issue--but only after I switched back to the use of estrdup. apr_pstrdup does *not* work; instead, it causes my Apache processes (prefork MPM) to segfault. ------------------------------------------------------------------------ [2008-10-10 15:52:32] admorten at umich dot edu I've updated both patches to use apr_pstrdup instead of estrdup when copying r->user into SG(request_info).auth_user, which is how the rest of the request info is copied. URLs are still the same. ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/46005 -- Edit this bug report at http://bugs.php.net/?id=46005&edit=1
