On Tue, Dec 06, 2016 at 10:26:59PM +0100, Matthieu Herrb wrote:
This is from https://bugs.freedesktop.org/show_bug.cgi?id=98822
> From: Tobias Stoeckmann
>
> The function IceAuthFileName is vulnerable to a use after free. The
> flaw can be triggered by calling the
From: Tobias Stoeckmann
The function IceAuthFileName is vulnerable to a use after free. The
flaw can be triggered by calling the function three times:
- First call succeeds and stores the path in buf, a dynamically
allocated buffer with size bsize.
- Second call fails