New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Heap corrupted by regex involving (?| ... ) and ($0) #12096
Comments
From @jimavThis is a bug report for perl from james_avera@yahoo.com, The following Perl program causes a fatal error in glibc indicating #!/usr/bin/perl
Here is what appears on the /dev/tty (captured with 'script'): *** glibc detected *** /usr/bin/perl: free(): invalid next size Flags: Site configuration information for perl 5.12.4: Configured by Debian Project at Tue Sep 6 08:08:24 UTC 2011. Summary of my perl5 (revision 5 version 12 subversion 4) configuration: Platform: Locally applied patches: @INC for perl 5.12.4: Environment for perl 5.12.4: PATH=/home/jima/bin:/home/jima/local/bin:/home/jima/jima_tools/linux86_64/bin:/usr/bin:/bin:/usr/sbin:/sbin:/usr/bin/X11:/usr/local/bin:/opt/openoffice.org3/program:/usr/lib/lightdm/lightdm:/usr/local/sbin:/usr/games:. |
From @jimavSending updated bug demo, as an attachment this time. If the alternations inside (?| ... ) are swapped, or a 3rd alternation |
From @jimav |
From [Unknown Contact. See original ticket]Sending updated bug demo, as an attachment this time. If the alternations inside (?| ... ) are swapped, or a 3rd alternation |
@jimav - Status changed from 'new' to 'open' |
From @iabynOn Fri, May 11, 2012 at 04:02:15PM -0700, Jim Avera wrote:
valgrind shows it crashing on 5.12.4 but not on 5.14.0 or later. -- |
From @demerphqOn 13 May 2012 23:40, Dave Mitchell <davem@iabyn.com> wrote:
I seem to recall a fix being applied, but I do not remember the I think it had to do with miscounting the number of capture buffers. cheers, -- |
From @nwc10On Mon, May 14, 2012 at 11:18:18AM +0200, demerphq wrote:
Fixed by: commit fd4be6f [perl #84746] Accessing $2 causes the interpreter to crash Inline Patch
Nicholas Clark |
@iabyn - Status changed from 'open' to 'resolved' |
Migrated from rt.perl.org#112874 (status was 'resolved')
Searchable as RT112874$
The text was updated successfully, but these errors were encountered: