After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.
Bug 785190 - Invalid free in libmsi_summary_info_finalize
Invalid free in libmsi_summary_info_finalize
Status: RESOLVED FIXED
Product: msitools
Classification: Other
Component: libmsi
0.96
Other Linux
: Normal normal
: 1.0
Assigned To: msitools maintainer(s)
msitools maintainer(s)
Depends on:
Blocks:
 
 
Reported: 2017-07-20 19:39 UTC by Stephen Kitt
Modified: 2017-07-24 09:08 UTC
See Also:
GNOME target: ---
GNOME version: ---


Description Stephen Kitt 2017-07-20 19:39:47 UTC 
Another issue discovered by Jakub Wilk (see https://bugs.debian.org/869082 for details): an invalid string property can cause an invalid free, because the property type is set before we know the property is valid. Thus an invalid string property sets the type, but doesn’t set the string pointer; yet we try to free the invalid string pointer during clean-up.

https://github.com/GNOME/msitools/pull/3 fixes this.
Comment 1 Marc-Andre Lureau 2017-07-24 09:07:22 UTC 
thanks, merged
Comment 2 Marc-Andre Lureau 2017-07-24 09:08:31 UTC 
btw, Stephen, do you think Jakub could share his afl setup ? A basic setup is probably fairly simple to write, but perhaps he has something more elaborate to share. Thanks