diff options
author | Simon McVittie <smcv@collabora.com> | 2018-08-17 15:33:10 +0100 |
---|---|---|
committer | Simon McVittie <smcv@collabora.com> | 2018-11-19 11:35:22 +0000 |
commit | 5accf42aabb94e88a02bd27858ce829cd870818b (patch) | |
tree | 3dfa4ccf87f9eb22f07ec716abe0c21f0dedbe72 | |
parent | c018e0b1b28107cac6d243295b7afa8939fdbdcd (diff) | |
download | dbus-5accf42aabb94e88a02bd27858ce829cd870818b.tar.gz |
bus_driver_handle_become_monitor: Don't leak zero-length array of rules
Only privileged users can trigger this leak, so it is not a denial of
service attack.
Signed-off-by: Simon McVittie <smcv@collabora.com>
-rw-r--r-- | bus/driver.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/bus/driver.c b/bus/driver.c index 8015f28b..9b3e43ee 100644 --- a/bus/driver.c +++ b/bus/driver.c @@ -2258,6 +2258,7 @@ bus_driver_handle_become_monitor (DBusConnection *connection, /* Special case: a zero-length array becomes [""] */ if (n_match_rules == 0) { + dbus_free (match_rules); match_rules = dbus_malloc (2 * sizeof (char *)); if (match_rules == NULL) |