]> git.ipfire.org Git - thirdparty/nftables.git/commitdiff
projects / thirdparty / nftables.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: c69cc1c)
parser_bison: memleak in rate limit parser
authorPablo Neira Ayuso <pablo@netfilter.org>
Wed, 23 Jun 2021 11:40:49 +0000 (13:40 +0200)
committerPablo Neira Ayuso <pablo@netfilter.org>
Wed, 23 Jun 2021 11:42:40 +0000 (13:42 +0200)
Direct leak of 13 byte(s) in 1 object(s) allocated from:
    #0 0x7fb49ad79810 in strdup (/usr/lib/x86_64-linux-gnu/libasan.so.5+0x3a810)
    #1 0x7fb496b8f63a in xstrdup /home/pablo/nftables/src/utils.c:85
    #2 0x7fb496c9a79d in nft_lex /home/pablo/nftables/src/scanner.l:740
    [...]

Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
src/parser_bison.y patch | blob | blame | history

diff --git a/src/parser_bison.y b/src/parser_bison.y
index e405c80af1ffecc472b70356fa4750bcfb1c3a45..872d7cdb92ad247be5a82330d2528cde2829d62d 100644 (file)
--- a/src/parser_bison.y
+++ b/src/parser_bison.y
@@ -4553,6 +4553,7 @@ limit_config              :       RATE    limit_mode      NUM     SLASH   time_unit       limit_burst_pkts
                                uint64_t rate, unit;
 
                                erec = rate_parse(&@$, $4, &rate, &unit);
+                               xfree($4);
                                if (erec != NULL) {
                                        erec_queue(erec, state->msgs);
                                        YYERROR;
Mirror of git://git.netfilter.org/nftables