Edit report at http://bugs.php.net/bug.php?id=53632&edit=1
ID: 53632 Comment by: boris at insert-coin dot org Reported by: exploringbinary at gmail dot com Summary: PHP hangs on numeric value 2.2250738585072011e-308 Status: Closed Type: Bug Package: Math related PHP Version: 5.3.4 Assigned To: scottmac Block user comment: N Private report: N CVE-ID: 2010-4645 New Comment: My script: # cat bug.php <?php $d = 2.2250738585072011e-308; ?> Result: NO HANG. Php version: # php -v PHP 5.1.6 (cli) (built: Nov 29 2010 16:47:37) Copyright (c) 1997-2006 The PHP Group Zend Engine v2.1.0, Copyright (c) 1998-2006 Zend Technologies OS: CentOS 5.4 32-bit Kernel: 2.6.18-164.el5xen CPU: # cat /proc/cpuinfo processor : 0 vendor_id : GenuineIntel cpu family : 15 model : 4 model name : Intel(R) Pentium(R) 4 CPU 3.00GHz stepping : 3 cpu MHz : 3000.084 cache size : 2048 KB fdiv_bug : no hlt_bug : no f00f_bug : no coma_bug : no fpu : yes fpu_exception : yes cpuid level : 5 wp : yes flags : fpu de tsc msr pae cx8 apic cmov pat clflush acpi mmx fxsr sse sse2 ss ht nx constant_tsc up pni cid bogomips : 7505.37 Previous Comments: ------------------------------------------------------------------------ [2011-01-06 02:29:41] liaogz82 at singnet dot com dot sg hang on mine. 32 bit gangzh...@cdpl-pc-08:~$ php -v PHP 5.3.3-1ubuntu9.1 with Suhosin-Patch (cli) (built: Oct 15 2010 14:17:04) Copyright (c) 1997-2009 The PHP Group Zend Engine v2.3.0, Copyright (c) 1998-2010 Zend Technologies gangzh...@cdpl-pc-08:~$ uname -a Linux CDPL-PC-08 2.6.35-24-generic #42-Ubuntu SMP Thu Dec 2 01:41:57 UTC 2010 i686 GNU/Linux ------------------------------------------------------------------------ [2011-01-06 01:38:57] lukemoynihan at gmail dot com As a workaround until I can patch php I have used the following pure php solution: http://stackoverflow.com/questions/4610651/any-problems-with-the-following-work- around-for-php-bug-53632 ------------------------------------------------------------------------ [2011-01-05 19:43:21] paj...@php.net @ cswarth at gmail dot com Thanks for all the feedbacks, we had enough info and details to fix the issue and new releases will be done shortly. ------------------------------------------------------------------------ [2011-01-05 19:39:09] xpipe at hotmail dot de Considering the official Windows binaries are affected by this, will there be new binaries or a new PHP version released to reflect this issue? I'm asking because it is possible to take down vulnerable PHP apps by this as easily as finding a request variable that is actually accessed. Requesting viewtopic.php?f=2.2250738585072011e-308 for phpBB or index.php?q=2.2250738585072011e-308 for Drupal is enough to freeze the PHP installation if it is affected. ------------------------------------------------------------------------ [2011-01-05 16:27:52] jannhorn at googlemail dot com @Tyrael: Seems like it was already fixed for 5.2. http://svn.php.net/viewvc/php/php-src/branches/PHP_5_2/Zend/zend_strtod.c? view=log&pathrev=307095 ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/bug.php?id=53632 -- Edit this bug report at http://bugs.php.net/bug.php?id=53632&edit=1
