Permalink
Browse files

Fix double free().

Found by Brian 'geeknik' Carpenter using AFL.
  • Loading branch information...
0-wiz-0 committed Aug 14, 2017
1 parent f0b8dda commit 2217022b7d1142738656d891e00b3d2d9179b796
Showing with 1 addition and 3 deletions.
  1. +1 −0 THANKS
  2. +0 −3 lib/zip_dirent.c
1 THANKS
@@ -12,6 +12,7 @@ BALATON Zoltan <balaton@eik.bme.hu>
Benjamin Gilbert <bgilbert@backtick.net>
Boaz Stolk <bstolk@aweta.nl>
Bogdan <bogiebog@gmail.com>
Brian 'geeknik' Carpenter <geeknik@protonmail.ch>
Chris Nehren <cnehren+libzip@pobox.com>
Coverity <info@coverity.com>
Dane Springmeyer <dane.springmeyer@gmail.com>
@@ -579,9 +579,6 @@ _zip_dirent_read(zip_dirent_t *zde, zip_source_t *src, zip_buffer_t *buffer, boo
}

if (!_zip_dirent_process_winzip_aes(zde, error)) {
if (!from_buffer) {
_zip_buffer_free(buffer);
}
return -1;
}

1 comment on commit 2217022

@l2dy

This comment has been minimized.

Copy link

l2dy commented on 2217022 Oct 8, 2017

This has been assigned CVE-2017-12858.

Please sign in to comment.