Bug#702551: ssdeep: memleak on error (fuzzy.c)

Subject: Bug#702551: ssdeep: memleak on error (fuzzy.c)
From: niels@thykier.net (Niels Thykier)
Date: Fri, 08 Mar 2013 11:02:10 +0100
Message-id: <[🔎] 20130308100210.5618.77013.reportbug@mikazuki.thykier.net>

Package: ssdeep
Version: 2.7-2
Severity: minor
Tags: upstream

Reading the ssdeep source code I found the following:


"""
  s1 = eliminate_sequences(str1+1);
  s2 = eliminate_sequences(str2+1);
  
  if (!s1 || !s2) return 0;

  // now break them into the two pieces 
  s1_1 = s1;
  s2_1 = s2;
  
  s1_2 = strchr(s1, ':');
  s2_2 = strchr(s2, ':');
  
  if (!s1_2 || !s2_2) {
    // a signature is malformed - it doesn't have 2 parts 
    free(s1); free(s2);
    return 0;
  }
"""

Notice that in the second "if", both s1 and s2 are freed.  But in the
first "if" none of them are despite the fact that s1 may be non-NULL
at that point.

~Niels

Reply to:

Prev by Date: Bug#702470: sleuthkit: sleuthkit is 3 versions behind upstream
Next by Date: No subject
Previous by thread: Bug#702470: sleuthkit: sleuthkit is 3 versions behind upstream
Next by thread: No subject
Index(es):
- Date
- Thread