Hi Adrian, On Sun, Feb 26, 2023 at 09:41:31PM +0200, Adrian Bunk wrote: > On Sun, Feb 26, 2023 at 08:31:00PM +0100, Salvatore Bonaccorso wrote: > >... > > On Sun, Feb 26, 2023 at 08:43:11PM +0200, Adrian Bunk wrote: > > > On Sun, Feb 26, 2023 at 07:47:21PM +0200, Adrian Bunk wrote: > > > > On Sun, Feb 26, 2023 at 04:12:35AM +0200, Adrian Bunk wrote: > > > > >... > > > > > In the upstream bug for CVE-2022-48337 there was originally[1] > > > > > + free (new_real_name); > > > > > + free (new_tmp_name); > > > > > in the fix that later disappeared (by accident?). > > > > > > > > > > I would say the CVE-2022-48337 fix introduced a memory leak, > > > > > which might or might not be related to the mips64el problem. > > > > >... > > > > > > > > I've reported this upstream as https://debbugs.gnu.org/61819 > > > > > > This is now fixed upstream with > > > http://git.savannah.gnu.org/cgit/emacs.git/commit/?id=0fde314f6f6e6664cddab1b2f0fe20629cd39d14 > > > > So this would affect as well the current unstable version, adding the > > found version for that as well. > > The memory leak fixed upstream does. > > While I suspect they are the same, there is no proof that this leak is > actually the same as the mips64el installation issue.
Ok right; you are correct we have no proof yet that it is the same, so we cannot directly close right now this bug with a potential pending regression update. Thanks for taking it upstream. Regards, Salvatore