Re: wget2 | Crash: "free(): double free detected in tcache 2" when using

wget-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: wget2 | Crash: "free(): double free detected in tcache 2" when using

From:	@rockdaboot
Subject:	Re: wget2 \| Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650)
Date:	Sun, 07 Jan 2024 11:18:30 +0000



Tim Rühsen commented: 
https://gitlab.com/gnuwget/wget2/-/issues/650#note_1717194969

Thanks for the report :thumbsup: 

The bug has been fixed in c51cc7d7e2543183349b808aa68d9ecfecdb8345.

Interestingly, we have a fuzzer that should have caught this issue. I have to 
review the fuzzer code, maybe it doesn't do the expected.

Indeed, at least the fuzz corpora from OSS-Fuzz doesn't cover the code blocks 
that trigger this issue: 
https://gnuwget.gitlab.io/wget2/fuzz-coverage/builds/gnuwget/wget2/libwget/cookie.c.gcov.html
 (see the red lines in cookie_db_load()).

-- 
Reply to this email directly or view it on GitLab: 
https://gitlab.com/gnuwget/wget2/-/issues/650#note_1717194969
You're receiving this email because of your account on gitlab.com.

[Prev in Thread]

Current Thread

[Next in Thread]

wget2 | Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650), Andrew White (@awhite27), 2024/01/06
- Re: wget2 | Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650), @rockdaboot, 2024/01/07
- Re: wget2 | Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650), @rockdaboot <=

Prev by Date: Re: wget2 | Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650)
Next by Date: wget2 | * .gitignore: Ignore generated files in VPATH builds (!536)
Previous by thread: Re: wget2 | Crash: "free(): double free detected in tcache 2" when using --load-cookies (#650)
Next by thread: wget2 | * .gitignore: Ignore generated files in VPATH builds (!536)
Index(es):
- Date
- Thread