Access of memory past the end of a memory buffer

[gaoethan]

In the API malloc_ex() free_ex() realloc_ex() taking address with &tlsf->fl_bitmap yields a singleton pointer and passing &tlsf->fl_bitmap to function set_bit which uses it as an array. This might corrupt or misinterpret adjacent memory locations. Out-of-bounds access that memory not owned by this buffer will be accessed, causing memory corruption or incorrect computations.

[gaoethan]

This repo hasn't been developed for a long time, so here to mark this issue firstly. thanks.

[mikaelarguedas]

tlsf is a third party package that we don't modify. Please report issues on the upstream repository.
Maybe a new version of this package has been released and, if so, we could consider importing a newer version

[mikaelarguedas]

actually the upstream version got it's last commit 5 years ago so I think this will not change in the near future

[mikaelarguedas]

closing as this won't be fixed in this repository