Bugzilla – Bug 697381
Null pointer dereference in regexp.c
Last modified: 2016-12-12 04:22:53 UTC
Created attachment 13175 [details]
Line 817: g.prog = malloc(sizeof (Reprog));
Line 833: g.prog->flags = cflags;
There was no checking if g.proc is null
Any Update on this?
Should be fixed in commit fd003eceda531e13fbdd1aeb6e9c73156496e569
Author: Tor Andersson <firstname.lastname@example.org>
Date: Fri Dec 2 14:56:20 2016 -0500
Fix 697381: check allocation when compiling regular expressions.
Also use allocator callback function.