Mailinglist Archive: opensuse-bugs (4173 mails)

< Previous Next >
[Bug 514522] New: ktorrent-3.2.2-1.4: use of memory after free
  • From: bugzilla_noreply@xxxxxxxxxx
  • Date: Thu, 18 Jun 2009 14:11:42 -0600
  • Message-id: <bug-514522-21960@xxxxxxxxxxxxxxxxxxxxxxxx/>
http://bugzilla.novell.com/show_bug.cgi?id=514522


Summary: ktorrent-3.2.2-1.4: use of memory after free
Classification: openSUSE
Product: openSUSE 11.2
Version: Factory
Platform: All
OS/Version: openSUSE 11.1
Status: NEW
Severity: Normal
Priority: P5 - None
Component: Other
AssignedTo: bnc-team-screening@xxxxxxxxxxxxxxxxxxxxxx
ReportedBy: dcb314@xxxxxxxxxxx
QAContact: qa@xxxxxxx
Found By: ---


I just had a look at the source code of factory package ktorrent-3.2.2-1.4
For file mozilla/security/nss-fips/lib/freebl/mpi/utils/sieve.c,
around line 138 is the code

free(p);

fprintf(stderr, "%s: sieving again from %ld ... \n", argv[0], p[cur - 1]);

Clearly broken code - p cannot be read from after it has been freed.
Suggest code rework.

--
Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.

< Previous Next >
Follow Ups