Hi Bram, On Sat, Apr 15, 2017 at 6:26 AM, Bram Moolenaar <[email protected]> wrote: > > Dominique wrote: > >> afl-fuzz found this case which causes use of >> free memory in vim-8.0563 and older: >> >> $ cat bug.vim >> set efm=E,%W%m, >> cgetexpr ['C'] >> set efm=%C%m >> lexpr '0' >> lopen >> call setqflist([], 'r') >> caddbuf >> >> $valgrind vim -u NONE -N -S bug.vim 2> vg.log >> >> Doing a git bissection, I see that it's >> a regression introduced by patch 7.4.1980: >> >> === >> commit 361c8f0e517e41f1f1d34dae328044406fde80ac >> Author: Bram Moolenaar <[email protected]> >> Date: Sat Jul 2 15:41:47 2016 +0200 >> >> patch 7.4.1980 >> Problem: 'errorformat' is parsed for every call to ":caddexpr". >> Can't add >> to two location lists asynchronously. >> Solution: Keep the previously parsed data when appropriate. (mostly by >> Yegappan Lakshmanan) >> === > > Thanks. Looks it happens because of not resetting qf_last. > I made a patch. >
I just started looking into this. By that time, you have already sent out the patch :-). Thanks, Yegappan -- -- You received this message from the "vim_dev" maillist. Do not top-post! Type your reply below the text you are replying to. For more information, visit http://www.vim.org/maillist.php --- You received this message because you are subscribed to the Google Groups "vim_dev" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
