BUG OF THE MONTH | CWE-762 Mismatched Memory Management Routines

V611 The memory was allocated using ‘alloca’ function but was released using the ‘free’ function. Consider inspecting operation logics behind the ‘full_path’ variable. setting-ringtone-remove.c 88

static void __draw_remove_list(SettingRingtoneData *ad)
  char *full_path = NULL;
  full_path = (char *)alloca(PATH_MAX);                  
  if (!select_all_item) {
    SETTING_TRACE_ERROR("select_all_item is NULL");

The buffer allocated on the stack using the alloca function could be passed to the free function.

Please click here to see more bugs from this project.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.