bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak

bug-gnu-emacs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak

From:	Adrian Bunk
Subject:	bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak
Date:	Sun, 26 Feb 2023 12:40:45 +0200

In the upstream bug for CVE-2022-48337 there was originally[1]
+          free (new_real_name);
+          free (new_tmp_name);
in the fix that later disappeared (by accident?).

This seems to introduce a memory leak, this memory allocated
by escape_shell_arg_string() is now never freed.

cu
Adrian

[1] https://debbugs.gnu.org/cgi/bugreport.cgi?bug=59817#23

[Prev in Thread]

Current Thread

[Next in Thread]

bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak, Adrian Bunk <=
- bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak, Eli Zaretskii, 2023/02/26

Prev by Date: bug#61350: Eglot over Tramp freezes with large project
Next by Date: bug#61817: 30.0.50; Project.el finds incorrect project roots in git worktrees
Previous by thread: bug#61817: 30.0.50; Project.el finds incorrect project roots in git worktrees
Next by thread: bug#61819: The CVE-2022-48337 fix seems to introduce a memory leak
Index(es):
- Date
- Thread