?? ??? 2017 PHP 7.0.25
- Core:
+ . Fixed bug #75241 (Null pointer dereference in zend_mm_alloc_small()).
+ (Laruence)
. Fixed bug #75236 (infinite loop when printing an error-message). (Andrea)
. Fixed bug #75252 (Incorrect token formatting on two parse errors in one
request). (Nikita)
--- /dev/null
+--TEST--
+Bug #75241 (Null pointer dereference in zend_mm_alloc_small())
+--FILE--
+<?php
+function eh(){}
+
+set_error_handler('eh');
+
+$d->d = &$d + $d->d/=0;
+var_dump($d);
+?>
+--EXPECT--
+float(INF)
if (Z_TYPE(holder) == IS_LONG) { \
if (op == result) { \
zval_ptr_dtor(op); \
+ ZVAL_LONG(op, Z_LVAL(holder)); \
+ } else { \
+ (op) = &(holder); \
} \
- (op) = &(holder); \
} \
break; \
} \
projects / php / commitdiff