hoary: intermittent SIGSEGV from php pages after upgrade to 4.3.10-10ubuntu4.5
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php4 (Ubuntu) |
Fix Released
|
High
|
Martin Pitt |
Bug Description
Binary package hint: libapache2-mod-php4
Early this morning (2006-07-20), I got the security update for php4 (4.3.10-
Since this is a security update that's caused the SIGSEGV (admittedly, this is based on timing, and the actual cause of the SIGSEGV's may not be the security update), I'm checking the "security vulnerability" flag (it's at least arguably a DoS, as my gallery is now only intermittently available).
On a related note, it appears that security.ubuntu.com doesn't keep around older packages, as I don't see a route that lets me downgrade to php4=4:
Here's an strace from one death:
...
fstat64(17, {st_mode=
mmap2(NULL, 6147, PROT_READ, MAP_SHARED, 17, 0) = 0xb75db000
munmap(0xb75db000, 6147) = 0
close(17) = 0
access(
stat64(
gettimeofday(
getpid() = 27932
open("/
fcntl64(17, F_GETFL) = 0x2 (flags O_RDWR)
fstat64(17, {st_mode=
mmap2(NULL, 4096, PROT_READ|
_llseek(17, 0, [0], SEEK_CUR) = 0
close(17) = 0
munmap(0xb75dc000, 4096) = 0
getcwd(
lstat64("/var", {st_mode=
lstat64("/var/www", {st_mode=
lstat64(
lstat64(
lstat64(
lstat64(
lstat64(
lstat64(
lstat64(
open("/
fstat64(17, {st_mode=
lseek(17, 0, SEEK_CUR) = 0
chmod("
write(17, "modules/
close(17) = 0
rename(
fcntl64(12, F_SETFL, O_RDWR|O_NONBLOCK) = 0
read(12, 0x89ce3e0, 8192) = -1 EAGAIN (Resource temporarily unavailable)
fcntl64(12, F_SETFL, O_RDWR) = 0
write(12, "p\0\0\
read(12, "\1\0\0\1", 4) = 4
read(12, "\1", 1) = 1
read(12, "\35\0\0\2", 4) = 4
read(12, "\rg2_Derivativ
read(12, "\1\0\0\3", 4) = 4
read(12, "\376", 1) = 1
read(12, "\1\0\0\4", 4) = 4
read(12, "\376", 1) = 1
--- SIGSEGV (Segmentation fault) @ 0 (0) ---
chdir("
rt_sigaction(
getpid() = 27932
getpid() = 27932
kill(27932, SIGSEGV) = 0
sigreturn() = ? (mask now [])
--- SIGSEGV (Segmentation fault) @ 0 (0) ---
Process 27932 detached
backtrace from a sigsegv'ing apache2 instance (no symbols installed currently)
(gdb) continue
Continuing.
Program received signal SIGSEGV, Segmentation fault. memory_ manager () apache2/ modules/ libphp4. so memory_ manager () apache2/ modules/ libphp4. so shutdown () apache2/ modules/ libphp4. so
[Switching to Thread -1213597280 (LWP 29347)]
0xb78d0c85 in shutdown_
from /usr/lib/
(gdb) bt
#0 0xb78d0c85 in shutdown_
from /usr/lib/
#1 0xb78b18db in php_request_
from /usr/lib/
#2 0x00000000 in ?? ()