Magic-Mirror/radare2
1
0
Fork 0
mirror of https://github.com/radareorg/radare2.git synced 2025-03-01 10:48:05 +00:00
Code Issues Actions 6 Packages Projects Releases Wiki Activity

Fix UAF in aaft (tests_64923) ##crash

Browse Source 
Reported by giantbranch of NSFOCUS TIANJI Lab
This commit is contained in:
Sergi Àlvarez i Capilla 2021-10-29 23:59:54 +02:00 committed by pancake
parent 49b0cebfdf
commit 65448811e5
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
libr/core/anal_tp.c
View File

@ -504,11 +504,12 @@ R_API void r_core_anal_type_match(RCore *core, RAnalFunction *fcn) {
char prev_type[256] = {0};
const char *prev_dest = NULL;
char *ret_reg = NULL;
const char *pc = r_reg_get_name (core->dbg->reg, R_REG_NAME_PC);
if (!pc) {
free (buf);
const char *_pc = r_reg_get_name (core->dbg->reg, R_REG_NAME_PC);
if (!_pc) {
free (buf);
return;
}
char *pc = strdup (_pc);
RRegItem *r = r_reg_get (core->dbg->reg, pc, -1);
if (!r) {
free (buf);
@ -778,4 +779,5 @@ out_function:
free (buf);
r_cons_break_pop();
anal_emul_restore (core, hc, dt, et);
free (pc);
}