aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMiklos Szeredi <mszeredi@suse.cz>2012-07-19 15:05:56 +0200
committerMiklos Szeredi <mszeredi@suse.cz>2012-07-19 15:05:56 +0200
commit3c4c063a2fd5cc6e9ce2b5db82e2a0dfa59b2e40 (patch)
tree8535cd3e7deec15acb3eae4d2728a03640e3f778
parent86439d5ab68431c6246d5f869c7f0483fbf585e0 (diff)
downloadandroid_external_fuse-3c4c063a2fd5cc6e9ce2b5db82e2a0dfa59b2e40.tar.gz
android_external_fuse-3c4c063a2fd5cc6e9ce2b5db82e2a0dfa59b2e40.tar.bz2
android_external_fuse-3c4c063a2fd5cc6e9ce2b5db82e2a0dfa59b2e40.zip
Fix crash caused by freeing a stack address
The failure path of try_get_path2() erronously tried to free the "path1" value (an address on the stack) instead of the allocated string pointed to by "path1". This caused the library to crash. Reported by Itay Perl
Diffstat
-rw-r--r--ChangeLog5
-rw-r--r--lib/fuse.c2
2 files changed, 6 insertions, 1 deletions
diff --git a/ChangeLog b/ChangeLog
index 987b687..4dee6e5 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,8 @@
+2012-07-19 Miklos Szeredi <miklos@szeredi.hu>
+
+ * Fix crash caused by freeing a stack address. Reported by Itay
+ Perl
+
2012-07-04 Miklos Szeredi <miklos@szeredi.hu>
* Fix install of mount.fuse from out-of-tree build. Patch by
diff --git a/lib/fuse.c b/lib/fuse.c
index 644878b..3c7f642 100644
--- a/lib/fuse.c
+++ b/lib/fuse.c
@@ -1162,7 +1162,7 @@ static int try_get_path2(struct fuse *f, fuse_ino_t nodeid1, const char *name1,
struct node *wn1 = wnode1 ? *wnode1 : NULL;
unlock_path(f, nodeid1, wn1, NULL, ticket);
- free(path1);
+ free(*path1);
if (ticket && err != -EAGAIN)
release_tickets(f, nodeid1, wn1, ticket);
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-04-25 02:08:47 +0000