diff options
author | Nikias Bassen | 2019-08-09 19:59:05 +0200 |
---|---|---|
committer | Nikias Bassen | 2019-08-09 19:59:05 +0200 |
commit | e1a5d60e98b72fe110391da848c77cc36665bd66 (patch) | |
tree | 9b3f2bd9960aa0a2e17c8c6d53e53646d7638eec /fuzz/bplist-crashes/clusterfuzz-testcase-4766291097288704 | |
parent | 811a53aefe4693113ef723783c151e473853a398 (diff) | |
download | libplist-e1a5d60e98b72fe110391da848c77cc36665bd66.tar.gz libplist-e1a5d60e98b72fe110391da848c77cc36665bd66.tar.bz2 |
Make sure to copy hash table entries properly when cloning array/dict nodes
As mentioned in #142, plist_copy_node() was not correctly handling the hash
tables when cloning array or dict nodes; it incorrectly filled the hash table
with the original child node info, which effectively would lead to a
segmentation fault / UaF if the original array/dict would be freed followed
by an attempt to access an element in the new hash table.
Diffstat (limited to 'fuzz/bplist-crashes/clusterfuzz-testcase-4766291097288704')
0 files changed, 0 insertions, 0 deletions