ext/ldap: fix leak on port overflow check. #18645

devnexen · 2025-05-24T20:10:52Z

No description provided.

nielsdos · 2025-05-24T21:06:51Z

ext/ldap/ldap.c

@@ -994,6 +994,7 @@ PHP_FUNCTION(ldap_connect)
 			size_t urllen = hostlen + sizeof( "ldap://:65535" );

 			if (port <= 0 || port > 65535) {
+				zval_ptr_dtor(return_value);


This doesn't "clear out" the return value, so you'll get a double free later I think.
Instead, the proper fix is probably moving the object_init_ex and assignment to ld further down (and then getting rid of the existing zval_ptr_dtor(return_value); under #ifdef LDAP_OPT_X_TLS_NEWCTX

nielsdos · 2025-05-24T21:32:00Z

Can you try to minimize the diff by not re-indenting?

nielsdos · 2025-05-24T21:49:16Z

Don't forget to remove that now-redundant zval_ptr_dtor(return_value); at now-line 1009

github-actions bot added the Extension: ldap label May 24, 2025

nielsdos requested changes May 24, 2025

View reviewed changes

devnexen force-pushed the ldap_check_leaks branch 2 times, most recently from 657f79b to 890c2f0 Compare May 24, 2025 21:44

ext/ldap: fix leak on port overflow check.

df91d36

devnexen force-pushed the ldap_check_leaks branch from 890c2f0 to df91d36 Compare May 24, 2025 22:11

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

ext/ldap: fix leak on port overflow check. #18645

ext/ldap: fix leak on port overflow check. #18645

devnexen commented May 24, 2025

Uh oh!

nielsdos May 24, 2025

Uh oh!

nielsdos commented May 24, 2025

Uh oh!

nielsdos commented May 24, 2025

Uh oh!

Uh oh!

ext/ldap: fix leak on port overflow check. #18645

Are you sure you want to change the base?

ext/ldap: fix leak on port overflow check. #18645

Conversation

devnexen commented May 24, 2025

Uh oh!

nielsdos May 24, 2025

Choose a reason for hiding this comment

Uh oh!

nielsdos commented May 24, 2025

Uh oh!

nielsdos commented May 24, 2025

Uh oh!

Uh oh!