php-seclib: Call to undefined method Crypt_Base::Crypt_Base()
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
phpseclib (Debian) |
Fix Released
|
Unknown
|
|||
phpseclib (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Xenial |
Fix Released
|
Medium
|
Unassigned |
Bug Description
[Impact]
DokuWiki fails with a 500 internal server error when logging in. This is caused by a regression in phpseclib introduced in 1.0.1-3 and subsequently fixed in 1.0.1-4.
/var/log/
[Mon Apr 25 16:09:08.998092 2016] [:error] [pid 10897] [client 127.0.0.1:40832] PHP Fatal error: Uncaught Error: Call to undefined method Crypt_Base:
Stack trace:
#0 /usr/share/
#1 /usr/share/
#2 /usr/share/
#3 /usr/share/
#4 /usr/share/
#5 /usr/share/
#6 /usr/share/
#7 /usr/share/
#8 {main}
thrown in /usr/share/
[Test Case]
1. Install the following packages:
* dokuwiki (0.0.20140929.
* apache2 (2.4.18-2ubuntu3)
* libapache2-
2. Visit http://
3. Log in
[Regression Potential]
The attached minimal diff reverts the patch added in 1.0.1-3, making it identical to 1.0.1-2. This version is known to work according to the upstream Debian bug report.
Client code that subclasses a php-seclib class and calls parent:
The reverted patch was originally added to silence some deprecation warnings:
PHP Deprecated: Methods with the same name as their class will not be constructors in a future version of PHP
These warnings will return with the patch reverted.
Other than warnings, regressions are likely to appear as problems in the packages that depend on php-seclib:
* Packages that directly depend on php-seclib:
- civicrm-common
- collabtive
- dokuwiki
- php-horde-mapi
- php-numbers-words
* Packages that directly recommend php-seclib:
- php-horde-imp
* Packages that indirectly depend on php-seclib:
- drupal7-mod-civicrm (depends on civicrm-common)
- wordpress-civicrm (depends on civicrm-common)
- php-horde-
* Packages that indirectly recommend php-seclib:
- numerous Horde packages
- php-text-captcha (via php-numbers-words)
[Other Info]
== Regression details ==
Discovered in version: 1.0.1-3
Last known good version: 1.0.1-2
Original description:
Facing the same issue as bug #819420 in Debian.
https:/
Appears fixed in Debian's version 1.0.1-4, can we get the fix in Ubuntu Xenial as well?
tags: | added: regression-release xenial |
description: | updated |
description: | updated |
Changed in phpseclib (Debian): | |
status: | Unknown → Fix Released |
description: | updated |
Changed in phpseclib (Ubuntu Xenial): | |
status: | New → Confirmed |
Changed in phpseclib (Ubuntu): | |
importance: | Undecided → Medium |
Changed in phpseclib (Ubuntu Xenial): | |
importance: | Undecided → Medium |
information type: | Public → Public Security |
description: | updated |
description: | updated |
description: | updated |
description: | updated |
Status changed to 'Confirmed' because the bug affects multiple users.