[PATCH] gzerror() after gzclose_r() is a use after free
David Bremner
david at tethera.net
Tue Apr 14 13:40:02 PDT 2020
Olivier Taïbi <oli at olitb.net> writes:
> As suggested by David Bremner in
> https://notmuchmail.org/pipermail/notmuch/2020/029288.html
> here is a separate patch for bug #2: calling gzerror() (indirectly via
> gzerror_str()) after gzclose_r is a use after free, according to zlib's manual.
>
Looks OK. The commit message could be trimmed, but I can live with the
current version.
d
More information about the notmuch
mailing list