Apache2 + mod_php ALERT - canary mismatch on efree()

[saber]

Обновлялся регулярно сегодня был ребут в итоге
в логах апача кругом
ALERT - canary mismatch on efree() - heap overflow detected

[Thu Dec 04 21:56:28 2008] [error] [client 10.17.59.252] ALERT - canary mismatch on efree() - heap overflow detected (attacker '10.17.59.252', file '/var/www/krasfun/wp-includes/kses.php', line 964), referer: http://www.krasfun.ru/10-faktov-o-nashem-mozge/

Полез в нет нашёл на багрепорте пхпнет

This bug has been fixed in CVS.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.
 
Thank you for the report, and for helping us make PHP better.

вот информация

Код: [Выделить]

# aptitude show libapache2-mod-php5
Package: libapache2-mod-php5
State: installed
Automatically installed: yes
Version: 5.2.4-2ubuntu5.3
Priority: необязательный
Section: web
Maintainer: Ubuntu Core Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Uncompressed Size: 5743k
Depends: apache2-mpm-prefork (> 2.0.52) | apache2-mpm-itk, apache2.2-common, libbz2-1.0, libc6 (>= 2.4), libcomerr2 (>= 1.33-3), libdb4.6, libkrb53 (>=
         1.6.dfsg.2), libmagic1, libpcre3 (>= 7.4), libssl0.9.8 (>= 0.9.8f-1), libxml2 (>= 2.6.27), mime-support (>= 2.03-1), php5-common (=
         5.2.4-2ubuntu5.3), ucf, zlib1g (>= 1:1.2.3.3.dfsg-1)
Suggests: php-pear
Conflicts: libapache2-mod-php4
Provides: phpapi-20060613+lfs
Description: server-side, HTML-embedded scripting language (apache 2 module)
 This package provides the PHP5 module for the Apache 2 webserver (as found in the apache2-mpm-prefork package).  Please note that this package ONLY works
 with Apache's prefork MPM, as it is not compiled thread-safe.

 The following extensions are built in: bcmath bz2 calendar ctype date dba dom exif filter ftp gettext hash iconv json libxml mbstring mime_magic openssl
 pcre posix Reflection session shmop SimpleXML soap sockets SPL standard sysvmsg sysvsem sysvshm tokenizer wddx xml xmlreader xmlwriter zip zlib.

 PHP5 is an HTML-embedded scripting language. Much of its syntax is borrowed from C, Java and Perl with a couple of unique PHP-specific features thrown in.
 The goal of the language is to allow web developers to write dynamically generated pages quickly.

 Homepage: http://www.php.net/



Также не знаю как решать проблему, либо ставить новые пхп либо откатываться на более старые

[saber]

Прошло дофига времени, и бага снова появилась. 

Сайты не работают иногда, в белую страницу валятся....

[Wed May 05 06:40:39 2010] [error] [client 10.29.11.53] ALERT - canary mismatch on efree() - heap overflow detected (attacker '10.29.11.53', file '/var/www/sitename/index.php')

ubuntu 8.04 LTS со всем апдейтами. эта ошибка описана в багзилле пхп, там говорят ставь 5.3 пхп и радуйся.