From 3944ce41c334808eb020238d66153aa6ce89dba0 Mon Sep 17 00:00:00 2001
From: Stanislav Malyshev <stas@php.net>
Date: Wed, 13 Nov 2002 15:13:24 +0000
Subject: [PATCH] semi-fix string offsets crash - now it doesn't crash, but
 still leaks

---
 Zend/zend_execute.c | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/Zend/zend_execute.c b/Zend/zend_execute.c
index 0976b165d5..0fef1418a0 100644
--- a/Zend/zend_execute.c
+++ b/Zend/zend_execute.c
@@ -782,6 +782,15 @@ static void zend_fetch_dimension_address(znode *result, znode *op1, znode *op2,
 	zval *container;
 	zval ***retval = &T(result->u.var).var.ptr_ptr;
 
+	if (!container_ptr) {
+		if(T(op1->u.var).EA.type == IS_STRING_OFFSET) {
+			zend_error(E_WARNING, "Cannot use string offset as an array");
+		}
+		*retval = &EG(error_zval_ptr);
+		SELECTIVE_PZVAL_LOCK(**retval, result);
+		return;
+	}
+	
 	container = *container_ptr;
 
 	if (container == EG(error_zval_ptr)) {
-- 
2.50.1