Rectify heap corruption due to an uninitialized pointer #2925
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The PR addresses two closely related issues in
publickey_canauth()
innse_libssh2
:nmap/nse_libssh2.cc
Line 580 in 28e47f9
*sig
. This memory is then getting copied elsewhere and automatically freed up bylibssh2
:nmap/libssh2/src/userauth.c
Line 1706 in 28e47f9
nmap/nse_libssh2.cc
Line 613 in 28e47f9
The PR is a more comprehensive version of Julijan Nedic's #2924 and together with PR #2919 represents a fix for #2917.
The PR will be committed after September 6, 2024, unless concerns are raised.