Package: anthy
Version: 1:0.4-3
Dear Maintainers,
We are researching static analysis for recurring vulnerabilities. When using our tool to test on 'anthy', we found a suspicious double-free bug at 'rk_sort_rule' in 'src-util/rkconv.c'. 'rules' allocated in line 645 would be freed twice by 'rk_rules_free' in line 663 (which contains 'free' in line 766) and 'free' in line 664 when going to 'ERROR'. We suggested that 'free' in line 664 should be deleted for the patch.
Thank you for maintaining anthy.
Best regards
|