Description
Value set analysis shows that ZEND_MM_SRUN_FREE_COUNTER macro can return a value in the interval [0, 511].
However, bin 0 from ZEND_MM_BINS_INFO has 512 free elements.
So the following check cannot fire:
|
if (ZEND_MM_SRUN_FREE_COUNTER(info) == bin_elements[bin_num]) { |
Found using SAST.
PHP Version
Operating System
No response
Description
Value set analysis shows that
ZEND_MM_SRUN_FREE_COUNTERmacro can return a value in the interval [0, 511].However, bin 0 from
ZEND_MM_BINS_INFOhas 512 free elements.So the following check cannot fire:
php-src/Zend/zend_alloc.c
Line 2196 in c1a6258
Found using SAST.
PHP Version
Operating System
No response