From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 29759 invoked by alias); 4 Feb 2008 13:22:37 -0000 Received: (qmail 29543 invoked by uid 48); 4 Feb 2008 13:21:54 -0000 Date: Mon, 04 Feb 2008 13:22:00 -0000 From: "rrt at sc3d dot org" To: glibc-bugs-regex@sources.redhat.com Message-ID: <20080204132153.5718.rrt@sc3d.org> Reply-To: sourceware-bugzilla@sourceware.org Subject: [Bug regex/5718] New: Uninitialised struct member in re_compile_internal causes crash in regfree X-Bugzilla-Reason: CC Mailing-List: contact glibc-bugs-regex-help@sourceware.org; run by ezmlm Precedence: bulk List-Id: List-Subscribe: List-Post: List-Help: , Sender: glibc-bugs-regex-owner@sourceware.org X-SW-Source: 2008-02/txt/msg00000.txt.bz2 regfree frees preg->translate (regcomp.c:629), but if the GNU API was used to initialise the pattern buffer, then translate has not been initialised, so may well contain a bogus value. Fix is to initialise it to NULL in re_compile_internal (say, just after regcomp.c:724), and best workaround I can think of is to make sure that you zero the re_pattern_buffer when allocating it. -- Summary: Uninitialised struct member in re_compile_internal causes crash in regfree Product: glibc Version: unspecified Status: NEW Severity: normal Priority: P2 Component: regex AssignedTo: drepper at redhat dot com ReportedBy: rrt at sc3d dot org CC: glibc-bugs-regex at sources dot redhat dot com,glibc- bugs at sources dot redhat dot com http://sourceware.org/bugzilla/show_bug.cgi?id=5718 ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.