subject:"\[patch libICE\] Fix use after free on subsequent calls"

Re: [patch libICE] Fix use after free on subsequent calls

2016-12-06 Thread Matthieu Herrb

On Tue, Dec 06, 2016 at 10:26:59PM +0100, Matthieu Herrb wrote: This is from https://bugs.freedesktop.org/show_bug.cgi?id=98822 > From: Tobias Stoeckmann > > The function IceAuthFileName is vulnerable to a use after free. The > flaw can be triggered by calling the

[patch libICE] Fix use after free on subsequent calls

2016-12-06 Thread Matthieu Herrb

From: Tobias Stoeckmann The function IceAuthFileName is vulnerable to a use after free. The flaw can be triggered by calling the function three times: - First call succeeds and stores the path in buf, a dynamically allocated buffer with size bsize. - Second call fails