Displaying 1 result from an estimated 1 matches for "nft_ctx_clear_vars".
2024 Sep 03
1
[Bug 1772] New: Double free corruption in libnftables
...Product: nftables
Version: 1.0.x
Hardware: x86_64
OS: Ubuntu
Status: NEW
Severity: normal
Priority: P5
Component: nft
Assignee: pablo at netfilter.org
Reporter: nellexplorer at gmail.com
When calling nft_ctx_clear_vars() and then nft_ctx_free() functions
sequentially, double free corruption occurs.
This is due to the fact that after calling xfree(ctx->vars) in the
nft_ctx_clear_vars function, dereferencing the pointer does not occur.
Steps to reproduce:
1. Call nft_ctx_clear_vars();
2. Call nft_ctx_free()....