review.tizen.org Git - platform/core/multimedia/mmsvc-core.git/commit

author	Jeongmo Yang <jm80.yang@samsung.com>
	Tue, 9 Jun 2020 05:16:22 +0000 (14:16 +0900)
committer	Jeongmo Yang <jm80.yang@samsung.com>
	Tue, 9 Jun 2020 06:14:31 +0000 (15:14 +0900)
commit	a12e241554f6c47ca823561891fcc3cdeeaaf500
tree	41288e343e1476cfbbb2096066b2fe5bc1d8b542	tree \| snapshot
parent	79a3755a10ca2a2544560e3cc92fcc1aabcbc5cf	commit \| diff

Fix ASAN issue : heap-use-after-free

[ASAN report]
==muse-server==10013==ERROR: AddressSanitizer: heap-use-after-free on address 0xb1baa100 at pc 0xb69cb399 bp 0xbed15dfc sp 0xbed15dec
WRITE of size 4 at 0xb1baa100 thread T0
0 0xb69cb396 in ms_ipc_create_msg_dispatch_worker /usr/src/debug/mused-0.3.110/server/src/muse_server_ipc.c:420
1 xb69d3914 in _ms_connection_handler /usr/src/debug/mused-0.3.110/server/src/muse_server_private.c:312 (discriminator 14)

0xb1baa100 is located 0 bytes inside of 4232-byte region [0xb1baa100,0xb1bab188)
freed by thread T393 (msg) here:
0 0xb6aebee2 in free asan_rtl (discriminator 2)
1 0xb69cac14 in _ms_ipc_module_cleanup /usr/src/debug/mused-0.3.110/server/src/muse_server_ipc.c:110
2 0xb69cac14 in _ms_ipc_dispatch_worker /usr/src/debug/mused-0.3.110/server/src/muse_server_ipc.c:312

Thread T393 (msg) created by T0 here:
0 0xb6aec2ee in calloc asan_rtl (discriminator 2)
1 0xb67fc068 in g_malloc0 /usr/src/debug/glib2-2.62.3/_build/../glib/gmem.c:129
2 0xb69d38a0 in _ms_connection_handler /usr/src/debug/mused-0.3.110/server/src/muse_server_private.c:307 (discriminator 9)

[Version] 0.3.118
[Profile] Common
[Issue Type] Bug fix

Change-Id: I988af4df53cc26f849c65a194bfc83ecbb87620d
Signed-off-by: Jeongmo Yang <jm80.yang@samsung.com>

packaging/mused.spec		diff \| blob \| history
server/src/muse_server_ipc.c		diff \| blob \| history