Bug 722418

Description of problem:
php-pecl-memcache causes memory corruption during the PHP shutdown stage after fetching a value that needs to be unserialised.  This is causing segmentation faults in our Apache servers when they run PHP code.  See http://pecl.php.net/bugs/bug.php?id=22811 for the bug I filed upstream.


Version-Release number of selected component (if applicable):
Tested with php-pecl-memcache-3.0.4-3.2.el6.2, php-pecl-memcache-3.0.5-3.el6, and a hand-built 3.0.6 package.


How reproducible:

Steps to Reproduce:
1. Install memcached RPM and start on 127.0.0.1
2. Put the following code in a file called "test.php"
3. Run "php test.php" and get a segmentation fault (if not, duplicate the final line a few more times to increase the memory corruption)

test.php code:
<?php
$obj = new StdClass;
$obj->obj = $obj;
$memcache = new Memcache;
$memcache->connect('127.0.0.1', 11211);
$memcache->set('x', $obj, false, 300);
$x = $memcache->get('x');
$x = $memcache->get('x');
$x = $memcache->get('x');
  
Actual results:
Segmentation fault

Expected results:
No output


Additional info:
I included a possible patch in the PECL bug (http://pastebin.com/raw.php?i=p3sJXmEk) but it hasn't been reviewed by anyone familiar with the internals of PHP or the memcache extension.

Also, the 3.0.x series of the memcache extension is still listed as beta on the project page (http://pecl.php.net/package/memcache).  Would it be more appropriate to package the latest stable version (2.2.6) in RHEL 6 instead?  I've confirmed that this bug is not present in that version.