Tizen

29.05.201707.09.2021 / hownot2code

BUG OF THE MONTH | CWE-762 Mismatched Memory Management Routines

V611 The memory was allocated using ‘alloca’ function but was released using the ‘free’ function. Consider inspecting operation logics behind the ‘full_path’ variable. setting-ringtone-remove.c 88

static void __draw_remove_list(SettingRingtoneData *ad)
{
  char *full_path = NULL;
  ....
  full_path = (char *)alloca(PATH_MAX);                  
  ....
  if (!select_all_item) {
    SETTING_TRACE_ERROR("select_all_item is NULL");
    free(full_path);                                     
    return;
  }
  ....  
}

The buffer allocated on the stack using the alloca function could be passed to the free function.

Please click here to see more bugs from this project.

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Google account. ( Log Out / Change )

You are commenting using your Twitter account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this:

How Not To Code

C, C++, C#, Java bad practices: learn how to make a good code by bad example

Tizen

Leave a Reply Cancel reply

Share with:

Like this:

Related

Leave a Reply Cancel reply