#27 double free in get_perms (only cvs server?)

open
nobody
None
5
2006-09-14
2006-09-14
Anonymous
No

I tracked down double-frees in
cvsacl-1.2.5-for-cvs-1.11.22.tar.gz

They only occur when I try something like this:

CVSROOT=<uname>@<host>:<cvshome>
CVS_RSH=ssh
cvs co <some directory protected by acl in access file>

It then dies in get_perms.
I debugged it, turns out that this is the culprit:

L572:
free(foundall);
free(usr);
free(per);

These cause double-frees. (They are string pointers
into another string that's already allocated, I believe.)

Commenting out these lines makes cvsacl work as expected.

Hope this helps...

Frank

Discussion


Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:

JavaScript is required for this form.





No, thanks