From owner-freebsd-questions@FreeBSD.ORG  Sat Oct 14 18:27:04 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id EA1AD16A412
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Oct 2006 18:27:04 +0000 (UTC) (envelope-from
	SRS0=hf4ZrEDB=D3=asarian-host.net=admin@asarian-host.net)
Received: from mail.asarian-host.net (mail.asarian-host.net [194.109.160.70])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 27F0E43D4C
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Oct 2006 18:27:03 +0000 (GMT) (envelope-from
	SRS0=hf4ZrEDB=D3=asarian-host.net=admin@asarian-host.net)
Received: from anonymizer.asarian-host.net (localhost [127.0.0.1])
	(authenticated bits=0)
	by mail.asarian-host.net (8.13.8/8.13.8) with ESMTP id k9EIR1WK018486
	for <freebsd-questions@freebsd.org>;
	Sat, 14 Oct 2006 20:27:01 +0200 (CEST)
	(envelope-from admin@asarian-host.net)
From: Mark <admin@asarian-host.net>
Received-SPF: pass (asarian-host.net: 127.0.0.1
	is authenticated by a trusted mechanism)
	receiver=anonymizer.asarian-host.net; client-ip=127.0.0.1;
	envelope-from=<admin@asarian-host.net>;
	helo=clientrunner.asarian-host.net;
Message-Id: <200610141827.k9EIQvId018475@asarian-host.net>
Date: Sat, 14 Oct 2006 18:27:01 GMT
X-Authenticated-Sender: admin@asarian-host.net
X-Trace: lMXCBzn1KBEai/M6oLjbtCxAan2gaiIvEZKAZ1XQA8GUL2SSH5RmMtM6pWhKNVG4
X-Complaints-To: abuse@asarian-host.net
X-Abuse-Info: Please be sure to forward a copy of ALL headers,
	otherwise we are unable to process your complaint
Organization: Asarian-host
To: "'FreeBSD-Questions Questions'" <freebsd-questions@freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2962
X-Auth: Asarian-host PGP signature
	iQEVAwUARTEr9TFqW1BleBN9AQGrkAf+Kgo5Wfky4LFCd6SpSJT/vWvZF6hVRoAP
	8wPdBJTuo5O2G8oc6LiPZ4NytxY3K8WF4sv6M+3mzIEB5KMlJ6fi11NN37TiwiRz
	j2N+uWKFXUqbM4j+kauQ55HYks7u5c3v4FpFIyJLeFhe41F+A69e/h3AoaXl16WK
	Hm4HjZK1rPf9GuxUp+jh/SNxkAPDs4P0maXvO3PnpJEuVxS120c44TCXb+n1wPjU
	vyKq7e5khoRHX8poO6VyoPlsQa/kw5UNu9jN1djENzu6EjDNQH0WoW5rc9Ze9lLJ
	v1jq5rV+gozrZJhUhEO2CjsNrwDhntXRPREzRpOMXILcsCptIzXvAg== =V55Q
Subject: "canary mismatch on efree()"
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Oct 2006 18:27:05 -0000


Hello,

I'm running Apache/1.3.37 (Unix) and PHP/4.4.4 with Suhosin-Patch. All of
a sudden I get this in my log:

[Sat Oct 14 19:54:32 2006] [error] ALERT - canary mismatch on efree() -
heap overflow or double efree detected (attacker '192.168.1.4', file
'/www/vhosts/asarian-host.net/htdocs/phpMyAdmin/index.php')

This is not good. If a simple thing like phpMyAdmin causes it, then I will
have to disable the Suhosin-Patch (which propably means recompiling from
scratch, right?).

Barring such drastic action, does anyone have a clue how to solve this? Or
what's causing it even.

Thanks,

- Mark