Ubuntu
php5 package

php5-cgi crashed with SIGSEGV in _zend_mm_free_canary_int()

Bug #589953 reported by Volodymyr Kolesnykov
14
This bug affects 2 people
Affects Status Importance Assigned to Milestone
php5 (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

Binary package hint: php5

# lsb_release -rd
Description: Ubuntu 10.04 LTS
Release: 10.04

# apt-cache policy php5
php5:
  Installed: (none)
  Candidate: 5.3.2-1ubuntu4.2
  Version table:
     5.3.2-1ubuntu4.2 0
        500 http://ua.archive.ubuntu.com/ubuntu/ lucid-updates/main Packages
     5.3.2-1ubuntu4 0
        500 http://ua.archive.ubuntu.com/ubuntu/ lucid/main Packages

# dpkg -l | awk '/php5/ { print $2"\t"$3 }'
php5-cgi 5.3.2-1ubuntu4.2
php5-common 5.3.2-1ubuntu4.2
php5-curl 5.3.2-1ubuntu4.2
php5-dbg 5.3.2-1ubuntu4.2
php5-gd 5.3.2-1ubuntu4.2
php5-mcrypt 5.3.2-0ubuntu1
php5-mysql 5.3.2-1ubuntu4.2
php5-suhosin 0.9.29-1ubuntu1
php5-xcache 1.3.0-5ubuntu1

ProblemType: Crash
DistroRelease: Ubuntu 10.04
Package: php5-cgi 5.3.2-1ubuntu4.2
ProcVersionSignature: Ubuntu 2.6.32-22.36-server 2.6.32.11+drm33.2
Uname: Linux 2.6.32-22-server x86_64
Architecture: amd64
CrashCounter: 1
Date: Sat Jun 5 02:51:38 2010
ExecutablePath: /usr/bin/php5-cgi
ProcCmdline: /usr/bin/php-cgi -q -b /dev/shm/php-fcgi.sock -c /etc/php5/cgi/php.ini
ProcEnviron: PATH=(custom, no user)
SegvAnalysis:
 Segfault happened at: 0x6b50b0 <_zend_mm_free_canary_int+144>: mov 0x0(%r13),%rax
 PC (0x006b50b0) ok
 source "0x0(%r13)" (0x078c4020) not located in a known VMA region (needed readable region)!
 destination "%rax" ok
SegvReason: reading unknown VMA
Signal: 11
SourcePackage: php5
StacktraceTop:
 _zend_mm_free_canary_int (heap=0x24c9360, p=0x38c3fa0) at /build/buildd/php5-5.3.2/Zend/zend_alloc_canary.c:2090
 zend_object_std_dtor (object=0x38c3f58) at /build/buildd/php5-5.3.2/Zend/zend_objects.c:45
 zend_objects_free_object_storage (object=0x38c3f58) at /build/buildd/php5-5.3.2/Zend/zend_objects.c:114
 zend_objects_store_del_ref_by_handle_ex (handle=0, handlers=0x38c3fa0) at /build/buildd/php5-5.3.2/Zend/zend_objects_API.c:220
 zend_objects_store_del_ref (zobject=0x38c1428) at /build/buildd/php5-5.3.2/Zend/zend_objects_API.c:172
Title: php5-cgi crashed with SIGSEGV in _zend_mm_free_canary_int()
UserGroups:

Revision history for this message
Volodymyr Kolesnykov (sjinks) wrote :
visibility: private → public
Revision history for this message
Apport retracing service (apport) wrote :

StacktraceTop:
 ?? ()
 zend_object_std_dtor ()
 zend_objects_free_object_storage ()
 zend_objects_store_del_ref_by_handle_ex ()
 zend_objects_store_del_ref ()

Revision history for this message
Apport retracing service (apport) wrote : Stacktrace.txt
Revision history for this message
Apport retracing service (apport) wrote : ThreadStacktrace.txt
Changed in php5 (Ubuntu):
importance: Undecided → Medium
tags: removed: need-amd64-retrace
Revision history for this message
Chuck Short (zulcss) wrote :

Can you install the php5-dbg package and try to reproduce this?

Thanks
chuck

Changed in php5 (Ubuntu):
status: New → Incomplete
Revision history for this message
Volodymyr Kolesnykov (sjinks) wrote :

php5-dbg was installed (5.3.2-1ubuntu4.2) — that's why the backtrace was so detailed.

The bug does not happen since 10.10.

Revision history for this message
Chuck Short (zulcss) wrote :

Alright im closing this then.

chuck

Changed in php5 (Ubuntu):
status: Incomplete → Fix Released
Revision history for this message
joehopf@gmail.com (joehopf) wrote :

This issue is still occouring on Ubuntu 10.04 LTS server version. so please reopen.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.