Date: Tue, 28 Mar 2006 16:06:06 -0800 (PST) From: Matthew Dillon <dillon@apollo.backplane.com> To: Adrian Steinmann <ast@marabu.ch> Cc: Ganbold <ganbold@micom.mng.net>, freebsd-current@freebsd.org, dougb@freebsd.org Subject: Re: bin/94767: [patch] rcorder(8) dumps core when does not use a proper RCng script (dansguardian) Message-ID: <200603290006.k2T066Cr038883@apollo.backplane.com> References: <20060325180630.V31295@pano.marabu.ch> <44279BAC.4020904@micom.mng.net> <B7A23617-C836-46F1-BE61-E3435A3347B0@marabu.ch>
next in thread | previous in thread | raw e-mail | index | archive | help
I commented out the free()'s in DragonFly. The reason is that the
free()s don't take into account the fact that there can be circular
dependancies on those structures. If a circular dependancy occurs,
you wind up with a use-after-free and then a double-free situation.
Commenting out the free() was the easiest solution.
-Matt
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200603290006.k2T066Cr038883>