#518 Potential null pointer dereference

[JumpKnight]

I have found a potential null-pointer-dereference bug in the project (version 3.100) and would like to report it to the maintainers. Can you please help me to check it? The bug trace image is shown in attchments. Thank you for your effort and patience!

At line 968 and 969 in file libmp3lame/id3tag.c, the function id3tag_set_userinfo_latin1 initializes dup as NULL and its address is used as a param of local_strdup. But at line 424 in local_strdup, lame_calloc may fail to allocate memory space to dst (dup), which makes dup remain NULL. Back to the function id3tag_set_userinfo_latin1, it dereferences dup! at line 970 without checking its value, which may lead to a null-pointer dereference vulnerability.