View Issue Details

WikiJump to Notes
IDProjectCategoryView StatusDate SubmittedLast Update
0008136mantisbtbugtrackerpublic2007-07-09 11:032008-04-19 04:10
Reporterpolzin Assigned Tograngeway  
PrioritynormalSeveritymajorReproducibilitysometimes
Status closedResolutionfixed 
Product Version1.0.5 
Fixed in Version1.2.0a1 
Summary0008136: Some 
 texts may cause php crash without error message
Description
I had the problem that after some user added a note, all bugnotes where not displayed on the page. I tracked down the problem to an regexp overflow that can be avoided by using


 "/<pre[^>]?>([^<]|[<])*?<\/pre>/" 


instead of 


 "/<pre[^>]?>(.|\n)?<\/pre>/" 


in core/string_api.php/strings_nl2br.


I tried it on different mantis installations and could reproduce it only in one.

The questionable pre-text is added in "Steps to Reproduce".
Steps To Reproduce


¡Õm                    ¡{y¡{y¡{y¡{y                    (   H   xHz    dHzhHz@Hz                ô/z@Hz    ¼ñì¿Cæm                        à6D                    xHz@Hz   @Hzpñì¿ã{y        xHz        DÚm                                @Hz    ¸¬


TagsNo tags attached.
	

	

	

	

		

						Relationships		

		

			
							
		

	

	

		

		

Relationship GraphDependency Graph		


		


		

			

				
parent of 0008661 closedgiallu Possible crash condition leading to blank or incomplete page 
related to 0006666 closedgrangeway SIGSEGV in pcre_config 
			

		

	

	

	












	

				Activities	

	

		
					
	

	

	

	

	

	



	
		
grangeway
		

		

		

			 grangeway		

		

						2007-12-08 19:42					

		

			reporter			 
									
				~0016406			
					

				

		

		

				

		

			
	
	
Hello,


I believe that this is fixed by the commit at http://mantisbt.svn.sourceforge.net/viewvc/mantisbt/trunk/mantisbt/core/string_api.php?r1=4806&r2=4819


The fix will be in 1.2.X releases and also backported to 1.1


Any further problems or comments please let us know

Thanks

Paul