romenskiy2012/jemalloc
1
0
Fork 0
mirror of https://github.com/jemalloc/jemalloc.git synced 2026-04-14 22:51:50 +03:00
Code Issues Projects Releases Packages Wiki Activity

Add one more check to double free validation.

Browse source
This commit is contained in:
guangli-dai 2025-05-07 16:37:26 -07:00
parent 5e460bfea2
commit 6a8ef75364
1 changed files with 2 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

3
include/jemalloc/internal/arena_inlines_b.h
View file

@ -68,7 +68,8 @@ large_dalloc_safety_checks(edata_t *edata, const void *ptr, size_t input_size) {
"possibly caused by double free bugs.", ptr);
return true;
}
if (unlikely(input_size != edata_usize_get(edata))) {
if (unlikely(input_size != edata_usize_get(edata) ||
input_size > SC_LARGE_MAXCLASS)) {
safety_check_fail_sized_dealloc(/* current_dealloc */ true, ptr,
/* true_size */ edata_usize_get(edata), input_size);
return true;