Zsh Mailing List Archive
Messages sorted by:
Reverse Date
,
Date
,
Thread
,
Author
User after Free in zftp module
X-seq
: zsh-workers 52921
From
: Hamidreza <0xxparrot1@xxxxxxxxx>
To
: zsh-workers@xxxxxxx
Subject
: User after Free in zftp module
Date
: Fri, 10 May 2024 11:56:25 +0330
Archived-at
: <https://zsh.org/workers/52921>
List-id
: <zsh-workers.zsh.org>
Hello,
There is a security vulnerablity in zftp module.
At `
https://github.com/zsh-users/zsh/blob/acdcf9d8542a4461c0fceb98fdfef7380a128f78/Src/Modules/zftp.c#L3149`
, `zfsessions` is begin freed but the variable is not set to NULL afterwards which leads to a "Use after Free" bug.
Regards,
Follow-Ups
:
Re: User after Free in zftp module
From:
Peter Stephenson
Messages sorted by:
Reverse Date
,
Date
,
Thread
,
Author