[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Lynx-dev] use-after-free bug in cookie handling
From: |
Thomas Dickey |
Subject: |
Re: [Lynx-dev] use-after-free bug in cookie handling |
Date: |
Thu, 13 Aug 2015 20:05:30 -0400 |
User-agent: |
Mutt/1.5.20 (2009-06-14) |
On Thu, Aug 13, 2015 at 11:04:55PM +0000, Thorsten Glaser wrote:
> Dixi quod…
>
> >This looks like the classical “object removed from list, free’d,
> >then used to continue traversing the list” bug. And, indeed, there
> >is a call to HTList_removeObject() in the loop!
Is this a followup to
https://bugzilla.redhat.com/show_bug.cgi?id=1120925
I don't see any recent threads for your subject.
(I'm currently doing some followup documentation for ncurses6, and
have backlog for vile and xterm and lynx and ...)
--
Thomas E. Dickey <address@hidden>
http://invisible-island.net
ftp://invisible-island.net
signature.asc
Description: Digital signature